Data Breach Today

MARCH 27, 2020

Maze Gang Claims Insurer Is a Victim, Emsisoft Reports Switzerland-based global insurance firm Chubb acknowledges that it's investigating a "security incident."

Insurance 236

Insurance Security Ransomware IT 236

Schneier on Security

JULY 1, 2021

Here’s one more contribution to that issue: a research paper that the insurance industry is hurting more than it’s helping. Although it is a societal problem, cyber insurers have received considerable criticism for facilitating ransom payments to cybercriminals.

Insurance 68

Insurance Ransomware Marketing Government 68

Data Breach Today

MAY 28, 2021

Also: Debating the Issue of Banning Ransom Payments In this week's panel discussion, four editors at Information Security Media Group discuss cyber insurance, persistent ransomware attacks and whether ransom payments should be banned

Insurance 145

Insurance Ransomware Information Security Security 145

Data Breach Today

DECEMBER 16, 2019

Why do some companies lag on addressing security issues

Insurance 206

Insurance Security 206

IG Guru

MAY 21, 2021

The post Insurer AXA to Stop Paying for Ransomware Crime Payments in France via Insurance Journal appeared first on IG GURU. “The word to get out today is that, regarding ransomware, we don’t pay and we won’t pay,” cybercrime prosecutor Johanna Brousse said at the hearing. Only the U.S.

Insurance 60

Insurance Cybersecurity Ransomware Risk 60

Schneier on Security

SEPTEMBER 10, 2019

Good paper on cybersecurity insurance: both the history and the promise for the future. From the conclusion: Policy makers have long held high hopes for cyber insurance as a tool for improving security. Cyber insurance appears to be a weak form of governance at present. However, the cost of external response services is covered, which suggests insurers believe ex-post responses to be more effective than ex-ante mitigation.

Insurance 86

Insurance Cybersecurity Paper Marketing 86

eSecurity Planet

MAY 27, 2021

The explosion of ransomware and similar cyber incidents along with rising associated costs is convincing a growing number of insurance companies to raise the premiums on their cyber insurance policies or reduce coverage, moves that could further squeeze organizations under siege from hackers.

Insurance 65

Insurance Risk Data science Cybersecurity 65

The Last Watchdog

AUGUST 24, 2020

Purchasing life insurance once meant going to an insurer’s office or booking an appointment with an insurance agent. Today’s generation is used to getting everything done fast and easy, so life insurance providers had to get with the times and cover all customers’ needs and requirements. Now everyone has the possibility to purchase life insurance from the comfort of their home by simply going online and looking for the policies that will fit their needs.

Insurance 147

Insurance IT Security Access 147

Security Affairs

JULY 9, 2021

Insurance giant CNA notifies customers of a data breach after the Phoenix CryptoLocker ransomware attack suffered in March. US insurance giant CNA is notifying customers of a data breach after the ransomware attack that it suffered in March.

Insurance 83

Insurance Data breaches Ransomware Encryption 83

Data Breach Today

SEPTEMBER 3, 2019

Security Experts Express Skepticism That Criminals Would Bother Do criminal organizations prefer to target organizations that hold cyber insurance policies? A ProPublica report suggests that because cyber insurance policyholders are more likely to pay ransoms, they're a more frequent target. But some cybersecurity experts have expressed skepticism

Insurance 172

Insurance Ransomware Cybersecurity Security 172

Adam Levin

SEPTEMBER 7, 2020

With the average cost of a data breach exceeding three million dollars, cyber insurance has become a necessity for SMBs. The post SMBs and Cyber Insurance – Third Certainty #27 appeared first on Adam Levin.

Insurance 56

Insurance Data breaches Cybersecurity Security 56

Data Breach Today

JANUARY 31, 2020

Coverage Required Because Attack Caused 'Physical Loss or Damage' A federal judge has ruled that an insurer providing a "business owner's insurance policy" to a company that sustained a ransomware attack and was forced to replace most of its IT infrastructure must pay for the damages the security incident caused.

Insurance 151

Insurance Ransomware IT Security 151

IT Governance

OCTOBER 15, 2020

Cyber threats are so numerous that it’s impossible to prevent security incidents altogether. That’s why they organisations increasingly relying on cyber insurance policies to cover the costs when data breaches and cyber attacks occur. But just how helpful is cyber insurance?

Insurance 89

Insurance Data breaches Risk Ransomware 89

Adam Levin

DECEMBER 8, 2020

The personal information of thousands of Israeli citizens has been compromised as the result of a cyberattack on Shirbit, a leading insurance company. . The post Major Israeli Insurance Company Hacked appeared first on Adam Levin.

Insurance 52

Insurance Marketing Government Access 52

Security Affairs

APRIL 20, 2021

Car insurance provider Geico has suffered a data breach, attackers have stolen the driver’s licenses for policyholders for several weeks. Geico, the second-largest auto insurer in the U.S., If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Insurance 98

Insurance Sales Data breaches Access 98

Data Breach Today

JUNE 26, 2019

Dominion National Says Recently Discovered Incident Dates Back to 2010 A dental and vision insurer's revelation that it recently discovered a 9-year-old data security incident offers an extreme example of the difficulty some organizations have in detecting data breaches

Insurance 130

Insurance Data breaches Security IT 130

IG Guru

APRIL 16, 2020

Professor Daneil Solove interviews Kimberly Horn about Cyber Insurance and Ransomeware here. The post Ransomware and the Role of Cyber Insurance via Teach Privacy appeared first on IG GURU.

Insurance 63

Insurance Ransomware Privacy Risk 63

Data Breach Today

FEBRUARY 6, 2018

Policies Offer Incentives for Good Information Security Practices Apple and Cisco say they've partnered with insurers Aon and Allianz to offer cyber insurance policies for organizations that meet best security practices and use products from the technology companies. The partnership follows increasing interest in cyber insurance as a hedge against hacking risks

Insurance 126

Insurance Risk Information Security Security 126

Data Matters

FEBRUARY 2, 2021

Most cybersecurity professionals are aware of the New York Department of Financial Service’s requirement imposed on DFS-licensed entities to certify their cybersecurity program’s compliance on an annual basis (by April 15th of each year), but less well known is that numerous other states impose similar requirements on regulated insurance entities and that deadline for many states is coming up on February 15, 2021.

Insurance 70

Insurance Financial Services Compliance Risk 70

Security Affairs

SEPTEMBER 29, 2020

Gallagher (AJG) insurance giant disclosed a ransomware attack, the security breach took place on Saturday. Gallagher (AJG) global insurance brokerage firm confirmed that it was his with a ransomware attack on Saturday, September 26. US-based Arthur J.

Insurance 113

Insurance Ransomware Data breaches Cybersecurity 113

The Last Watchdog

JANUARY 20, 2020

To help mitigate the risk of financial losses, more companies are turning to cyber insurance. Related: Bots attack business logic Cyber insurance, like other forms of business insurance, is a way for companies to transfer some of numerous potential liability hits associated specifically with IT infrastructure and IT activities. In other words, you are just about as likely to suffer from a security or data breach as you are to experience a hurricane or earthquake.

Insurance 179

Insurance Cybersecurity Risk Data breaches 179

Collibra

APRIL 9, 2021

Recapping a discussion moderated by Stijn Christiaens and featuring insurance data experts from Deloitte UK . Insurance is a data-intensive business. Insurance companies need data to better assess risks and price policies competitively, but also profitably.

Insurance 56

Insurance Data science Analytics Communications 56

WIRED Threat Level

JUNE 12, 2021

Security Security / Security NewsWhile major carriers like AXA have backed away from covering ransoms, don't expect the industry at large to break the vicious cycle.

Insurance 72

Insurance Ransomware Security 72

InfoGoTo

SEPTEMBER 16, 2020

Hardly a day goes by that we don’t hear about large-scale security incidents and breaches in the headlines. Other organizations are doing all the right things with security. One thing that can mitigate this risk is cyber insurance. Benefits of Cyber Insurance.

Insurance 70

Insurance Data breaches Sales Education 70

Security Affairs

MAY 21, 2021

The US insurance giant CNA Financial reportedly paid a $40 million ransom to restore access to its files following a ransomware attack. According to Bloomberg , CNA Financial opted to pay the ransom two weeks after the security breach because it was not able to restore its operations.

Insurance 69

Insurance Access IT Security 69

Dark Reading

AUGUST 15, 2019

More businesses are recognizing the need for cyber insurance as part of an overall security strategy. Here are some key points to consider when evaluating, purchasing, and relying on a policy

Insurance 85

Insurance Security 85

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. While acknowledging that “[e]ach insurer’s cyber insurance risk will vary based [on] many factors,” the Framework nonetheless describes seven practices that authorized property/casualty insurers should use to manage their cyber insurance risk. Manage and Eliminate Exposure to Silent Cyber Insurance Risk.

Financial Services 71

Financial Services Insurance Risk Ransomware 71

Hunton Privacy

AUGUST 6, 2019

On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194 (the “Bill”), which requires insurers licensed in the state (“licensees”) to put in place data security programs and report cybersecurity events. Key provisions of the Bill include: Information Security Program. The information security program must “mitigate. The state insurance commissioner may take “necessary or appropriate” action to enforce the new law.

Insurance 67

Insurance Passwords Risk Access 67

Krebs on Security

MAY 24, 2019

The Web site for Fortune 500 real estate title insurance giant First American Financial Corp. The digitized records — including bank account numbers and statements, mortgage and tax records, Social Security numbers, wire transaction receipts, and drivers license images — were available without authentication to anyone with a Web browser. based First American is a leading provider of title insurance and settlement services to the real estate and mortgage industries.

Insurance 209

Insurance Mining Authentication Sales 209

Threatpost

MARCH 26, 2021

Malware Web SecurityThe incident, which forced the company to disconnect its systems, caused significant business disruption.

Insurance 114

Insurance Ransomware IT Security 114

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. By doing so, Ohio joins South Carolina as the second state to have adopted the Model Law and the fourth state – along with Connecticut and New York – to have enacted cybersecurity regulations for insurance companies. This means all insurers, agencies, and brokers doing business in Ohio are covered.

Insurance 64

Insurance Compliance Encryption Authentication 64

Dark Reading

JUNE 11, 2018

More insurers are teaming up with security ratings firms to learn more about their clients, define policies, and determine coverage

Insurance 65

Insurance Security 65

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. By doing so, Michigan joins Ohio and South Carolina as the third state to adopt the Model Law and the fifth state – along with Connecticut and New York – to have enacted cybersecurity regulations focused on insurance companies.

Insurance 64

Insurance FOIA Encryption Authentication 64

Threatpost

JANUARY 7, 2021

Breach Cloud Security Malware Vulnerabilities Cyber Insurance Cybersecurity Healthcare poll ransomwareProvide your views on ransomware and how to deal with it in our anonymous Threatpost poll.

Ransomware 109

Ransomware Security IT Insurance 109

Andrew Hay

JULY 26, 2018

Though the breaches are concerning, the real story is that the financial institution suing its insurance provider for refusing to fully cover the losses. From the article: In its lawsuit (PDF), National Bank says it had an insurance policy with Everest National Insurance Company for two types of coverage or “riders” to protect it against cybercrime losses. This, unfortunately, is the nature of insurance.

Insurance 43

Insurance Computer and Electronics Information Security IT 43

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Group-IB, an international company that specializes in preventing cyber attacks, and a Swiss insurance broker ASPIS SA that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges cybersecurity, allowing the exchanges’ clients to ensure their assets.

Insurance 78

Insurance Risk Marketing Cybersecurity 78

The Guardian Data Protection

APRIL 21, 2018

Carole Cadwalladr just wanted to insure her car. In fact, I had no idea about either the question or the answer when I submitted a “subject access request” to Eldon Insurance Services in December last year. Data protection Data and computer security Brexit Cambridge Analytica Insurance industry Insurance Twitter InternetSix months later, she found a mass of personal details held by a firm she had never contacted that is run by Leave.EU’s

Insurance 84

Insurance Access IT Security 84

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. 2 (2021) regarding “Cyber Insurance Risk Framework” (the “Guidelines”), calling on insurers to take more stringent measures in underwriting cyber risks. sought coverage for expenses under its property insurance policy.

Insurance 48

Insurance Risk Education Financial Services 48

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. The insurance firm is notifying the impacted customers, but it did not disclose the number of affected users.

Insurance 87

Insurance Passwords Financial Services Phishing 87

Threatpost

JULY 19, 2018

In this InfoSec Insider cyber insurance expert Nick Sanna discusses how to balance threat exposures and protecting assets with insurance against hacking, breaches and vulnerabilities. Hacks Vulnerabilities Web Security Cyber Insurance Factor Analysis of Information Risk Maersk NotPetya

Insurance 65

Insurance Risk Security 65