2018 and Insurance - Information Management Today

Premium Hikes Spur Improved US Cyber Insurance Loss Ratios

Data Breach Today

APRIL 15, 2022

Declining Loss Ratios Means Insurance Premium Increases Might Moderate in Late 2022 A surprising improvement in loss ratios for cyber insurance providers in 2021 means the rapid rise in premiums might at last subside later this year.

Insurance

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. The experts detected 8.3

Insurance

Insurance Data breaches Financial Services Passwords

First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records

Krebs on Security

MAY 24, 2019

The Web site for Fortune 500 real estate title insurance giant First American Financial Corp. based First American is a leading provider of title insurance and settlement services to the real estate and mortgage industries. billion in 2018. In August 2018, financial industry giant Fiserv Inc. Image: Linkedin.

Insurance

Insurance Authentication Mining Sales

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. According to CryptoIns analysts, the crypto assets insurance market is expected to reach $7 billion by 2023. Why do crypto exchanges’ users need insurance?

Insurance

Insurance Risk Marketing Cybersecurity

GUEST ESSAY: Cyber insurance 101 — for any business operating in today’s digital environment

The Last Watchdog

JANUARY 20, 2020

To help mitigate the risk of financial losses, more companies are turning to cyber insurance. Related: Bots attack business logic Cyber insurance, like other forms of business insurance, is a way for companies to transfer some of numerous potential liability hits associated specifically with IT infrastructure and IT activities.

Insurance

Insurance Data breaches Cybersecurity Risk

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019.

Insurance

Insurance Financial Services Mining Access

Oreo Maker Settles With Insurer Over NotPetya Damages Claim

Data Breach Today

NOVEMBER 2, 2022

When A Cyberattack Is Cyberwar Still Being Litigated Five Years After NotPetya Wave Cookie and cracker giant Mondelez International settled litigation launched in 2018 against Zurich Insurance after the underwriter denied a claim for property damages stemming from the NotPetya malware wave.

Insurance

Insurance Healthcare IT

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

Security Affairs

JANUARY 6, 2019

The Dark Overlord hacking group claims to have stolen a huge trove of documents from the British insurance company Hiscox, Hackers stole “hundreds of thousands of documents,” including tens of thousands files related to the 9/11 terrorist attacks.

Insurance

Insurance Data breaches Sales Government

Zurich refuses to pay Mondelez for NotPetya damages because it’s ‘an act of war’

Security Affairs

JANUARY 14, 2019

Zurich American Insurance Company is refusing to refund its client because consider the attack as “an act of war” that is not covered by its policy. The overall damages that insurance firms would probably have to cover reach over $80bn. SecurityAffairs – Mondelez, cyber insurance). Pierluigi Paganini.

Insurance

Insurance Ransomware Sales Government

AccuDoc Data Breach impacted 2.6 Million Atrium Health patients

Security Affairs

NOVEMBER 28, 2018

the individual paying for a patient’s bill), including name, date of birth, address, insurance policy details, medical record number, invoice number, account balance, date of service and, in some cases, social security number. Luke’s Physician Network. Hackers accessed to personal information on patients and guarantors (i.e.

Data breaches

Data breaches Insurance Archiving Access

Cyber Insurers Pull Back Amid Increase in Cyber Attacks, Costs

eSecurity Planet

MAY 27, 2021

The explosion of ransomware and similar cyber incidents along with rising associated costs is convincing a growing number of insurance companies to raise the premiums on their cyber insurance policies or reduce coverage, moves that could further squeeze organizations under siege from hackers. Insurers Assessing Risks.

Insurance

Insurance Ransomware Risk Data science

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. 13, 2018 and Mar. 28, 2018, a claim Citrix initially denied but later acknowledged.

Passwords

Passwords Access Insurance Government

Data Breach: Turkish legal advising company exposed over 15,000 clients

Security Affairs

FEBRUARY 26, 2021

Inova is an actuarial consultancy company, which means they compile statistical analysis and calculate insurance risks and premiums. Document sent to the insurance company by the victim’s lawyer. Inova has been operating since 2012 and has handled thousands of cases since then. Sketch of the accident from the police report.

Data breaches

Data breaches Insurance Paper Access

Experts: Breach at IT Outsourcing Giant Wipro

Krebs on Security

APRIL 15, 2019

In March 2018, Wipro said it passed the $8 billion mark in annual IT services revenue. In September 2018, the Nebraska Department of Health and Human Services issued a cease-and-desist letter to Wipro, ordering it to stop work on the upgrade to the state’s Medicaid enrollment system, and to vacate its state offices.

IT

IT Insurance Communications Phishing

British Airways GDPR Lawsuit: The Potential Impact

Data Breach Today

JANUARY 19, 2021

A Substantial Settlement Could Build Data Security Momentum British Airways could face a substantial compensation payout as a result of an ongoing group lawsuit over its 2018 data breach, the first of its kind under GDPR.

GDPR

GDPR Insurance Data breaches Security

Saint Ambrose Catholic Parish – Crooks stole $1.75M in BEC Attack

Security Affairs

APRIL 30, 2019

. “We are working closely with the Diocese and its insurance program to file a claim in the hopes that Marous Brothers Construction can receive their payment quickly and we can bring this important project for our parish to a positive completion,” Stec said in the letter. ” Stec added. billion” reads the report.

Insurance

Insurance Phishing Passwords Cloud

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

Ransomware Bites Dental Data Backup Firm

Krebs on Security

AUGUST 29, 2019

-based PerCSoft is a cloud management provider for Digital Dental Record (DDR), which operates an online data backup service called DDS Safe that archives medical records, charts, insurance documents and other personal information for various dental offices across the United States. ” Read the full ProPublica piece here. .

Ransomware

Ransomware Insurance Encryption Cloud

The Riviera Beach City pays $600,000 in ransom

Security Affairs

JUNE 20, 2019

On Monday, city officials participating to a rapid meeting unanimously voted to use the city’s insurance to pay a ransom of 65 bitcoins (~$603,000). “The payment is being covered by insurance.” ” continues the AP.

Ransomware

Ransomware Insurance Encryption Government

Tens of Million patients impacted by the AMCA data breach

Security Affairs

JUNE 5, 2019

Securities and Exchange Commission (SEC) Quest revealed that the attackers broke into the web payment portal of the American Medical Collection Agency between August 1, 2018 and March 30, 2019. ” AMCA confirmed that Social Security Numbers and insurance identification information are maintained for LabCorp consumers.

Data breaches

Data breaches Insurance Sales Security

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Krebs on Security

JUNE 4, 2019

1, 2018 and March 30, 2019. AMCA has advised LabCorp that Social Security Numbers and insurance identification information are not stored or maintained for LabCorp consumers.” Many readers wrote in to say they’d never heard of First American, but it is the largest title insurance company in the United States.

Insurance

Insurance Security Data Privacy Access

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

” PIONEER KITTEN hackers to date have focused their attacks against entities in North American and Israeli, while targeted sectors include technology, government, defense, healthcare, aviation, media, academic, engineering, consulting and professional services, chemical, manufacturing, financial services, insurance, and retail. .

Access

Access Financial Services Retail Insurance

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. In its lawsuit (PDF), National Bank says it had an insurance policy with Everest National Insurance Company for two types of coverage or “riders” to protect it against cybercrime losses. million total. THE LAWSUIT.

Insurance

Insurance Computer and Electronics Phishing Access

Alabama Hospital chain paid ransom to resume operations after ransomware attack

Security Affairs

OCTOBER 13, 2019

The hospital chain hasn’t revealed the amount it has paid to the crooks to decrypt the data, it seems that an insurance covered the cost. “As time goes by, and we determine the full impact of this, we will be very grateful we had cyber insurance in place.” ” continues the post.

Ransomware

Ransomware Insurance Paper Government

A CISO Sizes Up Healthcare Security Threats for 2018

Data Breach Today

NOVEMBER 15, 2017

In the year ahead, cyber threats to the healthcare sector will continue to evolve from attacks primarily involving the theft of health data to assaults aimed at disrupting organizations' operations, predicts Sean Murphy, CISO of health insurer Premera Blue Cross.

Insurance

Insurance Security

Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week

Security Affairs

JUNE 26, 2019

Crooks made a request of a ransom a week after the initial infection, they contacted the Lake City’s insurance provider, the League of Cities, which negotiated a payment of 42 bitcoins. In July 2018, another Palm Beach suburb, Palm Springs, decided to pay a ransom, but it was not able to completely recover all its data.

Ransomware

Ransomware Insurance Government IT

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

Many things have changed since 2018, such as the names of the companies in the Fortune 100 list. This is actually down from five of the Fortune 100 in 2018, the last time KrebsOnSecurity performed this analysis.

Security

Security Risk Insurance Cybersecurity

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Compared to its predecessors, the sixth “Hi-Tech Crime Trends” report is the first to contain chapters devoted to the main industries attacked and covers the period from H2 2018 to H1 2019, as compared to the period from H2 2017 to H1 2018. The threat actor mainly targets insurance, consulting, and construction companies.

IT

IT Military Cybersecurity Phishing

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The Last Watchdog

JUNE 9, 2022

According to the Federal Trade Commission (FTC), seniors lost $500 each on computer tech assistance scams in 2018. A criminal exploiting someone’s medical or insurance details to make fraudulent claims is known as medical identity theft. Internet and email fraud. In each case, the victim is liable for thousands of dollars.

Privacy

Privacy Security Phishing Insurance

The city of Racine was offline following a ransomware attack

Security Affairs

FEBRUARY 4, 2020

“MIS worked over the weekend with the city’s cybersecurity insurer “to develop a detailed plan to restore and recover systems without spreading the ransomware,” according to a statement from Powell. “We In July 2018, another Palm Beach suburb, Palm Springs, decided to pay a ransom, but it was not able to completely recover all its data.

Ransomware

Ransomware Government Insurance Cybersecurity

Ohio Adopts National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance

Insurance Security Cybersecurity Data breaches

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance

Insurance Financial Services Cybersecurity Risk

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance

Insurance Cybersecurity Risk Education

Michigan Adopts National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance

Insurance Security Cybersecurity FOIA

E-Verify’s “SSN Lock” is Nothing of the Sort

Krebs on Security

JULY 4, 2020

One of the most-read advice columns on this site is a 2018 piece called “ Plant Your Flag, Mark Your Territory ,” which tried to impress upon readers the importance of creating accounts at websites like those at the Social Security Administration , the IRS and others before crooks do it for you.

Passwords

Passwords Authentication Insurance Mining

South Carolina Becomes the First State to Enact the National Association of Insurance Commissioners (NAIC) Insurance Data Security Model Law

Data Matters

JULY 30, 2018

In October 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. On May 3, 2018, South Carolina became the first state to enact this Model Law, in the form of the South Carolina Insurance Data Security Act (H.B. See CT Gen Stat § 38a-999b (2015) ; 23 NYCRR 500.

Insurance

Insurance Security Cybersecurity Data breaches

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

Social insurance numbers. The post List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked appeared first on IT Governance Blog. The crook gained control of FSIN’s internal files and email system and stole data including: Information on residential school survivors. Youth athletes and coaches.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

Social insurance numbers. The post List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked appeared first on IT Governance Blog. The crook gained control of FSIN’s internal files and email system and stole data including: Information on residential school survivors. Youth athletes and coaches.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

RaidForums Gets Raided, Alleged Admin Arrested

Krebs on Security

APRIL 12, 2022

.” Prosecutors say Coelho also personally sold stolen data on the platform, and that Omnipotent directly facilitated illicit transactions by operating a fee-based “ Official Middleman ” service, a kind of escrow or insurance service that denizens of RaidForums were encouraged to use when transacting with other criminals.

Sales

Sales Data breaches Government Access

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

The Last Watchdog

OCTOBER 29, 2018

the Health Insurance Portability and Accountability Act (HIPAA)), the answer is generally that a company should implement a “reasonable data privacy and security program” under all circumstances. The technologies existing in 2018 will undoubtedly differ from those that exist in 2020. Insurability.

Security

Security Data Privacy Privacy Data breaches

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Thales Cloud Protection & Licensing

MARCH 6, 2018

This year, the major regulation that will be implemented, is the European Union’s General Data Protection Regulation (GDPR) , which takes effect on May 25, 2018. The post 2018 Global Data Regulations & Compliance Heat Up – Are you Ready? You can find more information on the Thales website about GDPR and compliance.

Compliance

Compliance GDPR Encryption Data Privacy

Student loan company that stole millions from consumers leaks sensitive phone calls, SSNs, tax records

Security Affairs

JUNE 5, 2020

Some of the call recordings take place in early- to mid-2018. Of the recordings we analyzed, most of them seem to have taken place in early- to mid-2018. However, one proof of income document was submitted on January 21, 2020. On April 29, we unsuccessfully tried to contact representatives from the Student Advocates Group.

Access

Access Security Marketing IT

Insurance Occurrence Assurance?

Andrew Hay

JULY 26, 2018

Though the breaches are concerning, the real story is that the financial institution suing its insurance provider for refusing to fully cover the losses. According to the lawsuit, in June 2018 Everest determined both the 2016 and 2017 breaches were covered exclusively by the debit card rider, and not the $8 million C&E rider.

Insurance

Insurance Computer and Electronics Information Security Security

1M compromised cards available for free in the underground market

Security Affairs

AUGUST 8, 2021

All material from 2018-2019. Figure 5 – Screenshot from Group-IB Threat Intelligence & Attribution system Nevertheless, according to Group-IB’s findings, despite the post author’s claim that the cards were compromised from 2018-2019, 97% of the records in the database are still valid. Valid at 3%.

Marketing

Marketing Sales IT Insurance

Premium Hikes Spur Improved US Cyber Insurance Loss Ratios

American Insurance firm State Farm victim of credential stuffing attacks

Webinars

Trending Sources

First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records

Webinars

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

GUEST ESSAY: Cyber insurance 101 — for any business operating in today’s digital environment

NY Charges First American Financial for Massive Data Leak

Oreo Maker Settles With Insurer Over NotPetya Damages Claim

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

Zurich refuses to pay Mondelez for NotPetya damages because it’s ‘an act of war’

AccuDoc Data Breach impacted 2.6 Million Atrium Health patients

Cyber Insurers Pull Back Amid Increase in Cyber Attacks, Costs

Hackers Were Inside Citrix for Five Months

Data Breach: Turkish legal advising company exposed over 15,000 clients

Experts: Breach at IT Outsourcing Giant Wipro

British Airways GDPR Lawsuit: The Potential Impact

Saint Ambrose Catholic Parish – Crooks stole $1.75M in BEC Attack

First American Financial Pays Farcical $500K Fine

Ransomware Bites Dental Data Backup Firm

The Riviera Beach City pays $600,000 in ransom

Tens of Million patients impacted by the AMCA data breach

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Alabama Hospital chain paid ransom to resume operations after ransomware attack

A CISO Sizes Up Healthcare Security Threats for 2018

Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Group-IB presents its annual report on global threats to stability in cyberspace

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The city of Racine was offline following a ransomware attack

Ohio Adopts National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Michigan Adopts National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law

E-Verify’s “SSN Lock” is Nothing of the Sort

South Carolina Becomes the First State to Enact the National Association of Insurance Commissioners (NAIC) Insurance Data Security Model Law

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

RaidForums Gets Raided, Alleged Admin Arrested

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Student loan company that stole millions from consumers leaks sensitive phone calls, SSNs, tax records

Insurance Occurrence Assurance?

1M compromised cards available for free in the underground market

Stay Connected