Data Breach Today

MARCH 27, 2020

Maze Gang Claims Insurer Is a Victim, Emsisoft Reports Switzerland-based global insurance firm Chubb acknowledges that it's investigating a "security incident."

Insurance 256

Insurance Data breaches Security Ransomware 256

Data Breach Today

APRIL 21, 2022

Lynn Peachey, the director of business development at Arete Incident Response, says that insurance companies have made "a pretty quick turnaround in terms of trying to respond to the ransomware epidemic."

Insurance 219

Insurance Data breaches Ransomware Security 219

Schneier on Security

FEBRUARY 28, 2022

Tarah Wheeler and Josephine Wolff analyze a recent court decision that the NotPetya attacks are not considered an act of war under the wording of Merck’s insurance policy, and that the insurers must pay the $1B+ claim.

Insurance 87

Insurance Cybersecurity Security 87

Hunton Privacy

MAY 4, 2022

In April 2022, two states enacted insurance data security legislation based on the National Association of Insurance Commissioners (“NAIC”) Insurance Data Security Model Law (MDL-668). Cyber Insurance Cybersecurity Information Security U.S.

Insurance 95

Insurance Privacy Compliance Risk 95

Schneier on Security

JULY 1, 2021

Here’s one more contribution to that issue: a research paper that the insurance industry is hurting more than it’s helping. Although it is a societal problem, cyber insurers have received considerable criticism for facilitating ransom payments to cybercriminals.

Insurance 93

Insurance Ransomware Security Marketing 93

Data Breach Today

MAY 28, 2021

Also: Debating the Issue of Banning Ransom Payments In this week's panel discussion, four editors at Information Security Media Group discuss cyber insurance, persistent ransomware attacks and whether ransom payments should be banned

Insurance 226

Insurance Ransomware Data breaches Information Security 226

Data Breach Today

APRIL 4, 2022

Insurance 213

Insurance Data breaches Access Security 213

Data Breach Today

DECEMBER 16, 2019

Why do some companies lag on addressing security issues

Insurance 206

Insurance Data breaches Security 206

Krebs on Security

MAY 16, 2020

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S.

Insurance 285

Insurance Security Government IT 285

DXC

MARCH 21, 2022

With the top 10 insurers worldwide currently still relying on mainframes, legacy systems continue to be the heartbeat of insurance processing. Increasingly, insurers are looking to modernize existing infrastructure, move to cloud, or both, to support business transformation initiatives.

Insurance 52

Insurance Cloud Security Access 52

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance. When security fails, cyber insurance can become crucial for ensuring continuity.

Insurance 71

Insurance Risk Ransomware Cybersecurity 71

Hunton Privacy

JUNE 9, 2022

On May 27, 2022, Vermont Governor Phil Scott signed H.515 , making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law (“MDL-668”). Information Security Program Requirements.

Insurance 92

Insurance Privacy Financial Services Compliance 92

Schneier on Security

SEPTEMBER 10, 2019

Good paper on cybersecurity insurance: both the history and the promise for the future. From the conclusion: Policy makers have long held high hopes for cyber insurance as a tool for improving security. Cyber insurance appears to be a weak form of governance at present. However, the cost of external response services is covered, which suggests insurers believe ex-post responses to be more effective than ex-ante mitigation.

Insurance 68

Insurance Cybersecurity Security Paper 68

IT Governance

MAY 24, 2022

Organisations must always look for cost-effective ways to address the cyber security risks they face. One of the most common ways to mitigate the risk of a cyber security incident is cyber insurance. Despite the benefits of cyber insurance, it is surprisingly undervalued.

Insurance 92

Insurance Government IT Data breaches 92

KnowBe4

NOVEMBER 17, 2022

The latest data shows that historically massive rate increases seen over the last few years are beginning to come down, primarily due to insurers having a solid understanding of the risk. Security Awareness Training Cybercrime

Insurance 67

Insurance Risk Security awareness Security 67

Dark Reading

SEPTEMBER 21, 2022

After one company suffered a breach that could have been headed off by the MFA it claimed to have, insurers are looking to confirm claimed cybersecurity measures

Insurance 91

Insurance Cybersecurity IT Security 91

Schneier on Security

JANUARY 25, 2022

The insurance company Ace American has to pay for the losses: On 6th December 2021, the New Jersey Superior Court granted partial summary judgment (attached) in favour of Merck and International Indemnity, declaring that the War or Hostile Acts exclusion was inapplicable to the dispute.

Insurance 64

Insurance Security Risk Government 64

Data Breach Today

SEPTEMBER 8, 2021

Vishaal Hariprasad Also Address How Ransomware Is Changing Security On Aug. 25, President Joe Biden invited about 25 technology, insurance, finance and education executives to the White House to discuss pressing cybersecurity issues such as supply chain and critical infrastructure.

Insurance 158

Insurance Education Data breaches Ransomware 158

Data Matters

OCTOBER 20, 2022

Treasury Department is seeking public comment on the need and scope for a potential federal insurance response to catastrophic cyber incidents, akin to the one put in place for terrorism insurance after the attacks of September 11, 2001. The U.S.

Insurance 85

Insurance Marketing Risk Government 85

eSecurity Planet

MAY 27, 2021

The explosion of ransomware and similar cyber incidents along with rising associated costs is convincing a growing number of insurance companies to raise the premiums on their cyber insurance policies or reduce coverage, moves that could further squeeze organizations under siege from hackers.

Insurance 92

Insurance Risk Data science Cybersecurity 92

Data Matters

OCTOBER 20, 2022

Treasury Department is seeking public comment on the need and scope for a potential federal insurance response to catastrophic cyber incidents, akin to the one put in place for terrorism insurance after the attacks of September 11, 2001. The U.S.

Insurance 78

Insurance Privacy Data breaches Cybersecurity 78

Data Breach Today

JUNE 26, 2019

Dominion National Says Recently Discovered Incident Dates Back to 2010 A dental and vision insurer's revelation that it recently discovered a 9-year-old data security incident offers an extreme example of the difficulty some organizations have in detecting data breaches

Insurance 149

Insurance Data breaches Security IT 149

KnowBe4

DECEMBER 7, 2022

Recent attacks are helping cyber insurers better understand what security strategies need to be in place and how to price policies based on the risk those policies cover. Security Awareness Training

Insurance 86

Insurance Risk Security awareness Security 86

IG Guru

MAY 21, 2021

The post Insurer AXA to Stop Paying for Ransomware Crime Payments in France via Insurance Journal appeared first on IG GURU. “The word to get out today is that, regarding ransomware, we don’t pay and we won’t pay,” cybercrime prosecutor Johanna Brousse said at the hearing. Only the U.S.

Insurance 53

Insurance Cybersecurity Ransomware Risk 53

Dark Reading

MARCH 23, 2022

Here's what a cybersecurity lawyer thinks security pros need to know in light of Russia's invasion of Ukraine

Insurance 87

Insurance Cybersecurity Security 87

Dark Reading

JUNE 16, 2022

Cyber insurance is more than a policy for paying off ransomware gangs. It's designed to be something you transfer risk to when security controls fail

Insurance 87

Insurance Ransomware Risk Security 87

Data Breach Today

SEPTEMBER 3, 2019

Security Experts Express Skepticism That Criminals Would Bother Do criminal organizations prefer to target organizations that hold cyber insurance policies? A ProPublica report suggests that because cyber insurance policyholders are more likely to pay ransoms, they're a more frequent target. But some cybersecurity experts have expressed skepticism

Insurance 175

Insurance Data breaches Ransomware Cybersecurity 175

IT Governance

AUGUST 23, 2022

Cyber liability insurance helps organisations cover the financial costs of a data breach. Without insurance, organisations spend £3.6 million on average recovering from security incidents. What does cyber insurance include? First-party vs third-party insurance.

Insurance 82

Insurance Government IT Data breaches 82

KnowBe4

DECEMBER 30, 2022

Analysis of the year’s breaches shows Finance and Insurance businesses are the most targeted and have lost a material count of records as a result. Social Engineering Security Awareness Training

Insurance 77

Insurance Data breaches Security awareness Security 77

Data Breach Today

JANUARY 31, 2020

Coverage Required Because Attack Caused 'Physical Loss or Damage' A federal judge has ruled that an insurer providing a "business owner's insurance policy" to a company that sustained a ransomware attack and was forced to replace most of its IT infrastructure must pay for the damages the security incident caused.

Insurance 151

Insurance Data breaches Ransomware IT 151

The Last Watchdog

AUGUST 24, 2020

Purchasing life insurance once meant going to an insurer’s office or booking an appointment with an insurance agent. Today’s generation is used to getting everything done fast and easy, so life insurance providers had to get with the times and cover all customers’ needs and requirements. Now everyone has the possibility to purchase life insurance from the comfort of their home by simply going online and looking for the policies that will fit their needs.

Insurance 132

Insurance IT Security Access 132

Schneier on Security

APRIL 12, 2018

Good article about how difficult it is to insure an organization against Internet attacks, and how expensive the insurance is. Typically in insurance we use the past as prediction for the future, and in cyber that's very difficult to do because no two incidents are alike," said Lori Bailey, global head of cyberrisk for the Zurich Insurance Group. In my new book -- out in September -- I write: There are challenges to creating these new insurance products.

Insurance 46

Insurance Cybersecurity Retail Data breaches 46

Data Matters

FEBRUARY 2, 2021

Most cybersecurity professionals are aware of the New York Department of Financial Service’s requirement imposed on DFS-licensed entities to certify their cybersecurity program’s compliance on an annual basis (by April 15th of each year), but less well known is that numerous other states impose similar requirements on regulated insurance entities and that deadline for many states is coming up on February 15, 2021.

Insurance 96

Insurance Financial Services Compliance Risk 96

Security Affairs

JULY 9, 2021

Insurance giant CNA notifies customers of a data breach after the Phoenix CryptoLocker ransomware attack suffered in March. US insurance giant CNA is notifying customers of a data breach after the ransomware attack that it suffered in March.

Data breaches 109

Data breaches Insurance Ransomware Encryption 109

Security Affairs

APRIL 20, 2021

Car insurance provider Geico has suffered a data breach, attackers have stolen the driver’s licenses for policyholders for several weeks. Geico, the second-largest auto insurer in the U.S., If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Insurance 107

Insurance Sales Data breaches Access 107

Data Breach Today

FEBRUARY 6, 2018

Policies Offer Incentives for Good Information Security Practices Apple and Cisco say they've partnered with insurers Aon and Allianz to offer cyber insurance policies for organizations that meet best security practices and use products from the technology companies. The partnership follows increasing interest in cyber insurance as a hedge against hacking risks

Insurance 126

Insurance Data breaches Risk Information Security 126

Adam Levin

DECEMBER 8, 2020

The personal information of thousands of Israeli citizens has been compromised as the result of a cyberattack on Shirbit, a leading insurance company. . The post Major Israeli Insurance Company Hacked appeared first on Adam Levin.

Insurance 52

Insurance Marketing Government Access 52

Adam Levin

SEPTEMBER 7, 2020

With the average cost of a data breach exceeding three million dollars, cyber insurance has become a necessity for SMBs. The post SMBs and Cyber Insurance – Third Certainty #27 appeared first on Adam Levin.

Insurance 52

Insurance Data breaches Cybersecurity Security 52

IT Governance

OCTOBER 15, 2020

Cyber threats are so numerous that it’s impossible to prevent security incidents altogether. That’s why they organisations increasingly relying on cyber insurance policies to cover the costs when data breaches and cyber attacks occur. But just how helpful is cyber insurance?

Insurance 85

Insurance IT Government Data breaches 85

Schneier on Security

MARCH 8, 2019

This will complicate things: To complicate matters, having cyber insurance might not cover everyone's losses. Zurich American Insurance Company refused to pay out a $100 million claim from Mondelez, saying that since the U.S. I get that $100 million is real money, but the insurance industry needs to figure out how to properly insure commercial networks against this sort of thing. cybersecurity hacking insurance malware ransomware russia war

Insurance 66

Insurance Military Cybersecurity Security 66