Cybersecurity, Insurance, Sales and Security - Information Management Today

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

“I remember the first time we were asked for a SOC 2 report, which quickly became the minimum bar requirement in our industry for proof of an effective security program,” he said. It was also a drag on the sales cycle, and then there was the need for maintaining compliance. Growth has definitely been robust. “Our

Compliance

Compliance Security Cybersecurity Marketing

Regulatory Update: NAIC Summer 2021 National Meeting

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance

Insurance e-Delivery Paper Sales

List of Data Breaches and Cyber Attacks in October 2022 – 9.9 Million Records Breached

IT Governance

NOVEMBER 1, 2022

We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112). As always, you can find the full list of data breaches and cyber attacks below, divided into their respective categories. Welcome to our October 2022 review of data breaches and cyber attacks.

Data breaches

Data breaches Ransomware Insurance Phishing

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

How to Find & Choose IT Outsourcing Services

eSecurity Planet

AUGUST 4, 2023

Even a robust IT or security department will find certain tasks or projects beyond their capabilities. But ignoring issues that you lack the time or expertise for can risk operational failure or security incidents. or cybersecurity-focused trade shows (RSA Conference, Black Hat, etc.)

IT

IT Compliance Cybersecurity Communications

US Senators introduce IoT cybersecurity bill

Data Protection Report

AUGUST 3, 2017

On August 1, 2017, US Senators unveiled a bipartisan bill to mandate baseline cybersecurity requirements for internet connected devices purchased by the federal government. Under the proposed law, federal suppliers would be required to monitor and patch cybersecurity vulnerabilities.

IoT

IoT Cybersecurity Insurance Marketing

What Is Integrated Risk Management? Definition & Implementation

eSecurity Planet

APRIL 29, 2024

Business Objectives Business objectives define the goals of an organization beyond simple financial measures of sales and profit. In our examples, the clothing brand secures a segregated design team with physical locks on the doors, extra computer security to prevent digital theft, and a backup solution for their marketing data.

Risk

Risk Compliance Communications Insurance

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

A major focus of cybersecurity as an industry is its efforts to detect, root out, and respond to potential fraudsters attempting to trick companies and people out of their money, data, or both. This made a lot of sense, especially in the earlier days of the Internet where cybersecurity measures were nowhere near as robust as they are today.

Energy and Utilities

Energy and Utilities Phishing Blockchain Cybersecurity

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

JUNE 10, 2021

Insurance companies around the world are now suffering from phishing. Over the past year, an average of over 100 phishing websites were created per insurer. Digital risks to brands such as online fraud, the illegal sale of products and services, and intellectual property infringement are the most widespread crimes on the Internet.

Phishing

Phishing Retail Insurance Risk

How to Develop an Incident Response Plan

eSecurity Planet

DECEMBER 9, 2021

We make IT, security, or any business decision by weighing the risks and the rewards. What investments can we make to drive down costs or increase sales? Or as is often the case with security, what costs can we skip and still escape big penalties later? Be in-line with insurance policies. Yet, it can get worse.

Insurance

Insurance Ransomware Data breaches Cloud

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

There are prohibitions on illegal collection, use, processing, sale, disclosure and transfer of personal information. This aligns with a similar provision in the new Data Security Law. This aligns with other recent guidance putting clearer parameters around use of biometric data in China).

Data Privacy

Data Privacy Privacy Compliance Analytics

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

link] Spear Phishing Attacks Increase 127% As Use of Impersonation Skyrockets Impersonation of users, domains and brands is on the rise, as is the use of malicious links, in response to security vendors improving their ability to detect malicious attachments. Blog post with links: [link] Are Your Users Making Risky Security Mistakes?

Phishing

Phishing Security awareness Compliance Risk

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Consumers will be permitted to request that a business disclose both the categories and specific pieces of the personal information collected.

Privacy

Privacy Sales Compliance Cybersecurity

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Consumers will be permitted to request that a business disclose both the categories and specific pieces of the personal information collected.

Privacy

Privacy Sales Education Compliance

Nevada, New York and other states follow California’s CCPA

Data Protection Report

JUNE 6, 2019

On May 29, 2019, Nevada enacted an amendment to its online privacy law, requiring businesses to offer consumers a right to opt-out of the sale of their personal information. Although the concept of providing consumers certain privacy rights is similar, the law has some significant differences from the CCPA, including the definition of “sale”.

Sales

Sales Privacy Insurance Manufacturing

How To Start Your Own Cybersecurity Business

Cyber Info Veritas

MAY 16, 2018

Starting your business as a cybersecurity consultant is an important decision to make when you consider that your income will be based on how much effort you put into your client’s business. The whole point of you being there is to understand how to work and operate a business, not just how to work cybersecurity.

Cybersecurity

Cybersecurity Insurance Marketing IT

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Adopting the NIST Cybersecurity Framework.

Cybersecurity

Cybersecurity Risk Passwords Authentication

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

This means it will be just as important for your sales and marketing teams to be aware of the GDPR requirements as it will be for your customer support teams. Cyber liability insurance policies, for example, should still provide cover in respect of liabilities arising under the law pre-GDPR even though that law is no longer current.

GDPR

GDPR Personal data Compliance Data breaches

SEC Updates Guidance On Cybersecurity Risk And Incident Disclosure Requirements

Privacy and Cybersecurity Law

MARCH 26, 2018

The United States Securities and Exchange Commission (SEC) recently published updated interpretative guidance concerning the duty of covered public companies to disclose certain material cybersecurity risks and incidents when filing with the SEC. Cybersecurity Disclosure Obligations – Generally. Summary of New Guidance.

Risk

Risk Cybersecurity Insurance Compliance

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Info Source

DECEMBER 8, 2023

In our vertical market sizing and analysis, we cover horizontal use cases e.g., accounting, HR management, as well as vertical specific use cases e.g., bank account opening, mortgage processing and insurance claims processing. The Healthcare segment is the third largest sector based on demand for Capture & IDP Solution sales in 2022.

Marketing

Marketing Customer Experience Energy and Utilities Digital transformation

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

The rules also define “Third-party identity verification service” as “a security process offered by an independent third-party who verifies the identity of the consumer making a request to the business.” Article 4 of the proposed rules explicitly allows the business to use a third-party service to verify the consumer’s identity.

Sales

Sales Retail Privacy Access

The Hacker Mind Podcast: Tales From A Ransomware Negotiator

ForAllSecure

MAY 30, 2023

Mark Lance, the VP of DFIR and Threat intelligence for GuidePoint Security, provides The Hacker Mind with stories of ransomware cases he’s handled. One other thing: the Conti source code was also leaked, allowing security companies to create their own decryption services for anyone infected with the Conti ransomware. By no means.

Ransomware

Ransomware Encryption Authentication Communications

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

We’re also introducing two new categories this week: ‘AI’ and ‘Key dates’. An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

Rather, to be covered by the VCDPA, an entity must either “(i) during a calendar year, control or process personal data of at least 100,000 consumers or (ii) control or process personal data of at least 25,000 consumers and derive over 50 percent of gross revenue from the sale of personal data.”. Exemptions. Controllers must. 6501 et seq.).

Personal data

Personal data GDPR Sales Privacy

Information Management Today

Automated Security and Compliance Attracts Venture Investors

Regulatory Update: NAIC Summer 2021 National Meeting

Webinars

Trending Sources

List of Data Breaches and Cyber Attacks in October 2022 – 9.9 Million Records Breached

Webinars

How to Find & Choose IT Outsourcing Services

US Senators introduce IoT cybersecurity bill

What Is Integrated Risk Management? Definition & Implementation

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

Global Scamdemic: Scams Become Number One Online Crime

How to Develop an Incident Response Plan

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Nevada, New York and other states follow California’s CCPA

How To Start Your Own Cybersecurity Business

An Approach to Cybersecurity Risk Oversight for Corporate Directors

GDPR is upon us: are you ready for what comes next?

SEC Updates Guidance On Cybersecurity Risk And Incident Disclosure Requirements

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Mic Drop: California AG releases long-awaited CCPA Rulemaking

The Hacker Mind Podcast: Tales From A Ransomware Negotiator

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected