2018, Financial Services and Insurance - Information Management Today

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2

Insurance

Insurance Financial Services Mining Access

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July.

Insurance

Insurance Data breaches Financial Services Passwords

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. 2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. Insurers should: Establish a Formal Cyber Insurance Risk Strategy.

Insurance

Insurance Financial Services Cybersecurity Risk

NYDFS settles with insurance companies over failures in their cybersecurity programs

Data Protection Report

DECEMBER 5, 2024

Threat actors targeted online auto insurance quoting applications, obtaining Nonpublic Information (“NPI”) such as driver’s license numbers and dates of birth, which were then used to file fraudulent unemployment claims during the COVID-19 pandemic. In total, the two insurers agreed to pay $11.3 million for the first insurer, and $1.55

Insurance

Insurance Cybersecurity Risk Encryption

NY Department of Financial Services Issues Reminder for Cybersecurity Filing Deadline

Hunton Privacy

JANUARY 24, 2018

On January 22, 2018, the New York Department of Financial Services (“NYDFS”) issued a press release reminding entities covered by its cybersecurity regulation that the first certification of compliance with the regulation is due on or prior to February 15, 2018.

Financial Services

Financial Services Cybersecurity Compliance Insurance

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance

Insurance Cybersecurity Risk Education

Regulatory Update: NAIC Summer 2018 National Meeting

Data Matters

AUGUST 24, 2018

The National Association of Insurance Commissioners (NAIC) held its Summer 2018 National Meeting in Boston, Massachusetts, from August 4 to 7, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data . The NAIC is also considering insurers’ use of big data in underwriting life insurance products.

Insurance

Insurance Big data e-Delivery Risk

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Data Matters

JANUARY 28, 2022

Other government agencies, like the New York Department of Financial Services and the Federal Trade Commission, are also increasingly focused on the need for broad implementation of MFA. Like an incident response plan, MFA has become a critical element of cybersecurity programs.

Cybersecurity

Cybersecurity Financial Services Authentication Government

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

” PIONEER KITTEN hackers to date have focused their attacks against entities in North American and Israeli, while targeted sectors include technology, government, defense, healthcare, aviation, media, academic, engineering, consulting and professional services, chemical, manufacturing, financial services, insurance, and retail. .

Access

Access Financial Services Retail Insurance

NYDFS settles cybersecurity regulation matter for $1.8 million

Data Protection Report

JUNE 2, 2021

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. NYDFS Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Financial Services Phishing

Q&A: Why SOAR startup Syncurity is bringing a ‘case-management’ approach to threat detection

The Last Watchdog

MARCH 1, 2019

Some 27 percent of IT professionals who partook in a survey conducted by next-gen firewall supplier Imperva at RSA 2018 reported receiving more than 1 million security alerts daily. In many cases the tedious, first-level correlating of SIEM logs to sift out threats has moved beyond human capability. Sutton: Syncurity has several innovations.

Digital transformation

Digital transformation Marketing Analytics Risk

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

We expect each of these trends to continue in 2018. As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR. The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. Data breach litigation risks.

Privacy

Privacy Cybersecurity Data breaches GDPR

NYDFS settles cybersecurity regulation matter for $3 million

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. NSC), relating to violations of three different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2020. NYDFS Cybersecurity Regulation.

Cybersecurity

Cybersecurity Financial Services Phishing Compliance

BELGIUM: Belgian DPA provides first status update after six months of GDPR

DLA Piper Privacy Matters

NOVEMBER 26, 2018

The top five industry sectors notifying data breaches are: 1) health care, 2) insurance, 3) public administrations and defense, 4) telecoms and 5) financial services. 2551 notifications of the appointment of a DPO (compared to 989 before May 2018). The other released figures are also remarkable.

GDPR

GDPR Data breaches Financial Services Insurance

Belgian DPA Publishes Post-GDPR Activity Review

Hunton Privacy

NOVEMBER 26, 2018

On November 23, 2018, the Belgian Data Protection Authority (the “Belgian DPA”) published a review of its activities since the EU General Data Protection Regulation (“GDPR”) became applicable on May 25, 2018 (the “Review”). The Review is available in French and in Dutch.

GDPR

GDPR Data breaches Financial Services Insurance

ABBYY Reports 15% Annual Global Revenue Growth in 2018

Info Source

MARCH 6, 2019

March 6, 2019 – ABBYY, a global leader in enterprise content IQ technologies and solutions, today announced it achieved 15% revenue growth in 2018, building upon the momentum from an exceptional 2017. ABBYY relies heavily on partners for its success, and 2018 was no exception. MILPITAS, Calif., billion today.

Unstructured data

Unstructured data Digital transformation Marketing Financial Services

How Marriott Customers Can Protect Themselves From The Latest Breach

Adam Levin

APRIL 6, 2020

This is the second major data breach that Marriott has experienced in recent years; in 2018, the company announced that the information of 327 million customers of subsidiary Starwoodhad been compromised in a similar incident. . The post How Marriott Customers Can Protect Themselves From The Latest Breach appeared first on Adam Levin.

Data breaches

Data breaches Passwords Financial Services Insurance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. Further reading : Top Data Loss Prevention (DLP) Solutions Best Encryption Software Top 8 Cyber Insurance Companies Best Incident Response Tools and Software.

Data Privacy

Data Privacy Compliance Privacy Security

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

NYDFS Files First Cybersecurity Enforcement Action

Hunton Privacy

JULY 24, 2020

On Wednesday, July 22, the New York Department of Financial Services (the “NYDFS”) announced that it had filed administrative charges against First American Title Insurance Co. under the NYDFS Cybersecurity Regulation , marking the agency’s first enforcement action since the rules went into effect in March 2017.

Cybersecurity

Cybersecurity Risk Financial Services Insurance

Kofax Declares 2018 the Year of the Robot

Info Source

JANUARY 12, 2018

With interest in RPA technology and demand for Kapow at an all-time high, Kofax has declared 2018 the Year of the Robot. . Kofax certified more than 165 resellers in its global channel partner program to address increasing demand for RPA software, particularly in the financial services and logistics sectors.

Digital transformation

Digital transformation Financial Services Compliance Insurance

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. SEC Statement and Guidance on Public Company Cybersecurity Disclosures. 20, 2017).

Cybersecurity

Cybersecurity Financial Services Risk Compliance

New York Publishes FAQs and Key Dates for Cybersecurity Regulation

Hunton Privacy

APRIL 27, 2017

Earlier this month, the New York State Department of Financial Services (“NYDFS”) recently published FAQs and key dates for its cybersecurity regulation (the “NYDFS Regulation”) for financial institutions that became effective on March 1, 2017. March 1, 2018 – the one year transitional period ends.

Cybersecurity

Cybersecurity Compliance Financial Services Insurance

Financial Stability Board to Develop International Cybersecurity Lexicon

Hunton Privacy

MARCH 23, 2018

On March 20, 2018, the Financial Stability Board (“FSB”) delivered a note to finance ministers and central bank governors from the world’s top 20 economic powers, known as the G-20. The note provides a progress update on the FSB’s work to develop a common vocabulary of cyber terms. .

Cybersecurity

Cybersecurity Financial Services Insurance Communications

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance

Insurance Paper Risk Big data

The biggest ‘technology disruptor’ will be the consumer

CGI

AUGUST 7, 2018

Tue, 08/07/2018 - 23:17. Insurers should stop focussing on digital engagement with customers and instead focus on developing their role as an important provider of services to and with those organisations that have a daily role in customer lives. The biggest ‘technology disruptor’ will be the consumer.

Insurance

Insurance Financial Services Customer Experience Analytics

Intelligent Automation Provider, Captricity, Relaunches as Vidado

Info Source

JANUARY 24, 2019

The company’s new brand, Vidado, reflects the move of modern businesses toward transparency, speed-to-market, and customer-centricity, and builds on the company’s strongest quarter in company history (Q4 2018) and strongest year overall (2018) in terms of financial performance and customer acquisition.

Artificial Intelligence

Artificial Intelligence Healthcare Marketing Financial Services

Transition period under New York Cybersecurity Regulation ends March 1, 2019

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Compliance date for next set of DFS cybersecurity regulations is September 4, 2018.

Cybersecurity

Cybersecurity Compliance Financial Services Risk

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

Healthcare and financial services are the most attacked industries. Through the years, we’ve seen several strains of ransomware make headlines: CryptoLocker in 2013, Locky in 2016, WannaCry and Hermes in 2017, GandCrab in 2018, and now, Ryuk joins the pack of notable names in criminal malware. Ransomware facts.

Ransomware

Ransomware Encryption Insurance Cloud

February 15 deadline looms for first DFS Cybersecurity Certification

Data Protection Report

FEBRUARY 8, 2018

February 15, 2018, is quickly approaching and any entity subject to New York’s cybersecurity regulation (23 NYCRR Part 500) must file its first annual certification of compliance with the New York State Department of Financial Services (DFS) by that date.

Cybersecurity

Cybersecurity Financial Services Compliance Insurance

Office of Foreign Assets Control: Making or Facilitating Ransomware Payments May Violate U.S. Sanctions

Data Matters

OCTOBER 8, 2020

November 2018: two Iranian creators of SamSam ransomware. financial institutions or firms that perform “critical financial services.”. Since 2015, the U.S. government has repeatedly sanctioned cybercriminals for their actions. Notable sanctions designations include. 1, 2020, [link].

Ransomware

Ransomware Compliance Risk Government

ABBYY Opens Office in Hong Kong to Strengthen Presence in Asia

Info Source

JULY 16, 2019

billion in 2019, an almost 80% increase over 2018, and $15.06 The retail industry and banking are the biggest spenders on AI in the region, with use cases such as fraud analysis and customer-facing process automation enabling self-service and improving customer experience. billion in 2022. and Tech Mahindra.

Customer Experience

Customer Experience Financial Services Marketing Retail

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Data Matters

FEBRUARY 25, 2021

The FCA has provided new guidance for PIs and EMIs using the “insurance or comparable guarantee” method of safeguarding. This includes a requirement that the insurance policy or comparable guarantee must pay out for the full amount of any claim regardless of how the relevant insolvency event occurs (including if the firm is at fault).

Authentication

Authentication Paper Risk Insurance

NYDFS settles with EyeMed for $4.5 million

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Nevertheless, EyeMed certified its compliance with the Cybersecurity Regulation annually, from 2018-2021.

Cybersecurity

Cybersecurity Personal data Risk Financial Services

Survey Says…Cybersecurity Remains A Critical Challenge For Business

Privacy and Cybersecurity Law

MARCH 23, 2018

On March 14, 2018, IBM Security announced the results of a new global study on organizational cybersecurity readiness and resiliency entitled “The 2018 Cyber Resilient Organization.” 23% of respondents say they do not currently have a CISO or security leader. Is this confidence misplaced?

Cybersecurity

Cybersecurity Data breaches Artificial Intelligence IoT

The blockchain bowling alley: How distributed ledger technology goes mainstream

CGI

JULY 20, 2018

Fri, 07/20/2018 - 02:40. What’s more, it’s poised to spill over from financial services into a wide range of industries. Another use case is the insurance claims process where a blockchain could document property insured and pay claims more quickly. harini.kottees…. Immutability of record.

Blockchain

Blockchain Financial Services Insurance Manufacturing

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

The GDPR replaces Directive 95/46/EC and will become applicable in May 2018. Telecommunication and technology companies were the most represented respondents, followed by insurance and financial services companies, as well as pharmaceutical and healthcare companies. and less than half operate in South America and Asia.

GDPR

GDPR Data Privacy Compliance Privacy

ABBYY Announces Plans to Buy Process Intelligence ISV

Info Source

AUGUST 5, 2019

TimelinePI focuses on the healthcare, financial services, and insurance industries, and offers solutions in areas like human resources, procurement, and robotic process automation (RPA), which is an area of crossover with ABBYY. Integration with BPM systems is another shared area of focus.

Analytics

Analytics Marketing Financial Services Insurance

The blockchain bowling alley – how distributed ledger technology goes mainstream

CGI

MAY 15, 2018

Tue, 05/15/2018 - 06:17. What’s more, it’s poised to spill over from financial services into a wide range of industries. Another use case is the insurance claims process where a blockchain could document property insured and pay claims more quickly. Many technologies have come and gone over the past decades.

Blockchain

Blockchain Financial Services Insurance Manufacturing

The blockchain bowling alley: How distributed ledger technology goes mainstream

CGI

JULY 28, 2018

Sat, 07/28/2018 - 02:40. What’s more, it’s poised to spill over from financial services into a wide range of industries. Another use case is the insurance claims process where a blockchain could document property insured and pay claims more quickly. adrian.alleyne…. Immutability of record.

Blockchain

Blockchain Financial Services Insurance Manufacturing

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

We have heard the California Consumer Privacy Act of 2018 (CCPA) called all these things and more since its enactment on June 28, ?2018. Groundbreaking. Unprecedented. Our experience to date has confirmed the compliance challenge ahead for organizations that engage with the residents of the world’s fifth-largest economy.

Privacy

Privacy Compliance GDPR Data breaches

NY Charges First American Financial for Massive Data Leak

First American Financial Pays Farcical $500K Fine

Trending Sources

American Insurance firm State Farm victim of credential stuffing attacks

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

NYDFS settles with insurance companies over failures in their cybersecurity programs

NY Department of Financial Services Issues Reminder for Cybersecurity Filing Deadline

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Regulatory Update: NAIC Summer 2018 National Meeting

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Iran-linked APT group Pioneer Kitten sells access to hacked networks

NYDFS settles cybersecurity regulation matter for $1.8 million

Q&A: Why SOAR startup Syncurity is bringing a ‘case-management’ approach to threat detection

Privacy and Cybersecurity Top 10 for 2018

NYDFS settles cybersecurity regulation matter for $3 million

BELGIUM: Belgian DPA provides first status update after six months of GDPR

Belgian DPA Publishes Post-GDPR Activity Review

ABBYY Reports 15% Annual Global Revenue Growth in 2018

How Marriott Customers Can Protect Themselves From The Latest Breach

Security Compliance & Data Privacy Regulations

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

NYDFS Files First Cybersecurity Enforcement Action

Kofax Declares 2018 the Year of the Robot

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

New York Publishes FAQs and Key Dates for Cybersecurity Regulation

Financial Stability Board to Develop International Cybersecurity Lexicon

Regulatory Update: NAIC Summer 2019 National Meeting

The biggest ‘technology disruptor’ will be the consumer

Intelligent Automation Provider, Captricity, Relaunches as Vidado

Transition period under New York Cybersecurity Regulation ends March 1, 2019

Ransomware Protection in 2021

February 15 deadline looms for first DFS Cybersecurity Certification

Office of Foreign Assets Control: Making or Facilitating Ransomware Payments May Violate U.S. Sanctions

ABBYY Opens Office in Hong Kong to Strengthen Presence in Asia

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

NYDFS settles with EyeMed for $4.5 million

Survey Says…Cybersecurity Remains A Critical Challenge For Business

The blockchain bowling alley: How distributed ledger technology goes mainstream

CIPL and AvePoint Release Global GDPR Readiness Report

ABBYY Announces Plans to Buy Process Intelligence ISV

The blockchain bowling alley – how distributed ledger technology goes mainstream

The blockchain bowling alley: How distributed ledger technology goes mainstream

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

Stay Connected