2019 and Insurance - Information Management Today

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

Security Affairs

SEPTEMBER 29, 2020

Gallagher (AJG) insurance giant disclosed a ransomware attack, the security breach took place on Saturday. Gallagher (AJG) global insurance brokerage firm confirmed that it was his with a ransomware attack on Saturday, September 26. Gallagher (AJG) insurance giant discloses ransomware attack appeared first on Security Affairs.

Insurance

Insurance Ransomware Data breaches Cybersecurity

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. The experts detected 8.3

Insurance

Insurance Data breaches Financial Services Passwords

First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records

Krebs on Security

MAY 24, 2019

The Web site for Fortune 500 real estate title insurance giant First American Financial Corp. based First American is a leading provider of title insurance and settlement services to the real estate and mortgage industries. First American Financial Corp. Image: Linkedin. Santa Ana, Calif.-based billion in 2018.

Insurance

Insurance Authentication Mining Sales

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. Drug prescription listings).

Insurance

Insurance Passwords Libraries Access

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. billion in 2019.

Insurance

Insurance Financial Services Mining Access

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. But in a letter sent to affected individuals dated Feb. 13, 2018 and Mar.

Passwords

Passwords Access Insurance Government

Volkswagen discloses data breach, 3.3 million customers impacted

Security Affairs

JUNE 12, 2021

According to a letter sent by the company to the Maine Attorney General and reported by TechCrunch , the subsidiary company left customer data spanning 2014 to 2019 unsecured online between August 2019 and May 2021. “This included information gathered for sales and marketing purposes from 2014 to 2019. .”

Data breaches

Data breaches Sales Insurance Marketing

Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack

Krebs on Security

AUGUST 14, 2020

billion in 2019. The “RCM” portion of its name refers to “revenue cycle management,” an industry which tracks profits throughout the life cycle of each patient, including patient registration, insurance and benefit verification, medical treatment documentation, and bill preparation and collection from patients.

Ransomware

Ransomware Insurance Phishing IT

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 This week, the U.S. billion last year.

Insurance

Insurance Risk Financial Services Mining

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” ” reads the report published by Crowdstrike. Pierluigi Paganini.

Access

Access Financial Services Retail Insurance

Healthcare giant Magellan Health discloses data breach after ransomware attack

Security Affairs

MAY 13, 2020

Magellan Health, a for-profit managed health care and insurance firm, was the victim of a ransomware attack. Magellan Health is a for-profit managed health care and insurance firm that ranks 417 on the Fortune 500 list of the largest US corporations by total revenue. Magellan Health Inc.

Data breaches

Data breaches Ransomware Insurance Passwords

Vertafore data breach exposed data of 27.7 million Texas drivers

Security Affairs

NOVEMBER 13, 2020

“The files, which included driver information for licenses issued before February 2019, contained Texas driver license numbers, as well as names, dates of birth, addresses and vehicle registration histories. ” states the data breach notification published by the software provider.

Data breaches

Data breaches Insurance Access Security

Zurich chief warned that cyber attacks will become uninsurable

Security Affairs

DECEMBER 28, 2022

The chief executive of insurance giant Zurich warns that cyber attacks, rather than natural catastrophes, will become uninsurable. Mario Greco, chief executive of insurer giant Zurich, has warned that cyber attacks will become soon “uninsurable.”. What will become uninsurable is going to be cyber,” Mario Greco told the Financial Times.

Insurance

Insurance Risk Ransomware IT

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

According to a joint report published by RiskIQ and FlashPoint in 2019 , some groups are more advanced than others, in particular, the gang tracked as Group 4 appears to be very sophisticated. Forensics experts hired by the company discovered that the malicious code was likely planted on September 16, 2019.

Data breaches

Data breaches Retail Cloud Insurance

Threat actors offer for sale data for 50 millions of Moscow drivers

Security Affairs

OCTOBER 24, 2021

Stolen data spans from 2006 and 2019, local media outlets have confirmed their authenticity. “The cybercriminals put up for sale for $ 800 a database of 50 million lines with the data of drivers that were registered in Moscow and the Moscow region from 2006 to 2019. . ” continues the post.

Sales

Sales Insurance Analytics Authentication

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Security Affairs

MAY 1, 2020

The hackers claim to have compromised the Banco BCR’s network in August 2019, and had the opportunity to exfiltrate its information before encrypting the files. Maze Ransomware ransomware operators recently disclose other attacks against different organizations, including IT services giant Cognizant , and cyber insurer Chubb.

Ransomware

Ransomware Encryption Insurance Data breaches

The man behind Cardplanet credit card market sentenced to 9 years in prison

Security Affairs

JUNE 27, 2020

In 2019, Burkov was accused of running the online criminal marketplace, Cardplanet, according to the investigators, the site helped crooks to organize more than $20 million in credit card fraud. The membership also requested a sum of money, normally $5,000, as insurance.

Marketing

Marketing Sales Insurance Access

NY Investigates Exposure of 885 Million Mortgage Documents

Krebs on Security

MAY 31, 2019

That measure, which went into effect in March 2019 and is considered among the toughest in the nation, requires financial companies to regularly audit and report on how they protect sensitive data, and provides for fines in cases where violations were reckless or willful. ”

Financial Services

Financial Services Insurance Sales Authentication

DoJ indicted a member of China-based hacking group behind Anthem hack

Security Affairs

MAY 9, 2019

The group is also responsible for the 2015 Health Insurer Anthem data breach. The US Department of Justice indicted Fujie Wang (32), a member of sophisticated Chinese hacking group that breached at several US companies, including the health insurer Anthem Inc. back in 2015. ” reads the press release published by DoJ.

Insurance

Insurance Data breaches Phishing Privacy

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Security Affairs

MAY 9, 2020

BEC attacks continue to threaten organizations worldwide, according to the last Internet Crime Complaint Center (IC3) report , the FBI recorded 23,775 BEC attacks in 2019 that resulted in an estimated US$1.77 SilverTerrier has been active since at least 2014, it is a collective of over hundreds of individual threat actors.

Government

Government Energy and Utilities Insurance Phishing

Ransomware attack on MGM Resorts costs $110 Million

Security Affairs

OCTOBER 6, 2023

.” The Company states that its cybersecurity insurance will cover the financial losses and future expenses, however, the full scope of the costs and related impacts has yet to be determined.

Ransomware

Ransomware Insurance Cybersecurity IT

Hackers breached into system that interacts with HealthCare.gov

Security Affairs

OCTOBER 21, 2018

“The system that was hacked is used by insurance agents and brokers to directly enroll customers. Starting November 1, people can log in to HealthCare.gov, fill out an application, and enroll in a 2019 Marketplace health plan. 1 for health care coverage under the Affordable Care Act.” ” reported the Associated Press.

Insurance

Insurance Personal data Access Security

The Riviera Beach City pays $600,000 in ransom

Security Affairs

JUNE 20, 2019

On Monday, city officials participating to a rapid meeting unanimously voted to use the city’s insurance to pay a ransom of 65 bitcoins (~$603,000). “The payment is being covered by insurance.” ” continues the AP. million to hackers — about $2,400 per attack.

Ransomware

Ransomware Insurance Encryption Government

Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week

Security Affairs

JUNE 26, 2019

“On Monday June 10th, 2019, the City of Lake City was targeted by a malware attack known as ‘Triple Threat.'” Crooks made a request of a ransom a week after the initial infection, they contacted the Lake City’s insurance provider, the League of Cities, which negotiated a payment of 42 bitcoins.

Ransomware

Ransomware Insurance Government IT

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Krebs on Security

JUNE 4, 2019

1, 2018 and March 30, 2019. AMCA has advised LabCorp that Social Security Numbers and insurance identification information are not stored or maintained for LabCorp consumers.” Many readers wrote in to say they’d never heard of First American, but it is the largest title insurance company in the United States.

Insurance

Insurance Security Data Privacy Access

Tens of Million patients impacted by the AMCA data breach

Security Affairs

JUNE 5, 2019

Securities and Exchange Commission (SEC) Quest revealed that the attackers broke into the web payment portal of the American Medical Collection Agency between August 1, 2018 and March 30, 2019. ” AMCA confirmed that Social Security Numbers and insurance identification information are maintained for LabCorp consumers.

Data breaches

Data breaches Insurance Sales Security

Crooks stole millions from Bitrue Cryptocurrency Exchange

Security Affairs

JUNE 27, 2019

— Bitrue (@BitrueOfficial) June 27, 2019. — Bitrue (@BitrueOfficial) June 27, 2019. The exchange claims the funds of impacted individuals are insured and it has promised that everyone will get their money back. The attackers transferred 9.3 million XRP (worth roughly $4 million) and 2.5

Insurance

Insurance Risk Access Security

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Group-IB, has analyzed key recent changes to the global cyberthreat landscape in the “Hi-Tech Crime Trends 2019/2020” report. According to Group-IB’s experts, the most frustrating trend of 2019 was the use of cyberweapons in military operations. As for 2019, it has become the year of covert military operations in cyberspace.

IT

IT Military Cybersecurity Phishing

Alabama Hospital chain paid ransom to resume operations after ransomware attack

Security Affairs

OCTOBER 13, 2019

The hospital chain hasn’t revealed the amount it has paid to the crooks to decrypt the data, it seems that an insurance covered the cost. “As time goes by, and we determine the full impact of this, we will be very grateful we had cyber insurance in place.” ” continues the post.

Ransomware

Ransomware Insurance Paper Government

Cybersecurity Rules for Insurance Companies to Take Effect in South Carolina

Hunton Privacy

JANUARY 2, 2019

New cybersecurity rules for insurance companies licensed in South Carolina are set to take effect in part on January 1, 2019. The new law is the first in the United States to be enacted based on the data security model law drafted by the National Association of Insurance Commissioners.

Insurance

Insurance Cybersecurity Data breaches Encryption

The city of Racine was offline following a ransomware attack

Security Affairs

FEBRUARY 4, 2020

“MIS worked over the weekend with the city’s cybersecurity insurer “to develop a detailed plan to restore and recover systems without spreading the ransomware,” according to a statement from Powell. “We L ocal authorities and feds have launched an investigation into the incident.

Ransomware

Ransomware Government Insurance Cybersecurity

Medical info of 49,351 patients exposed in Alomere Health hospital breach

Security Affairs

JANUARY 7, 2020

Exposed data include names, addresses, dates of birth, medical record numbers, health insurance information and diagnosis and treatment details information. Attackers also accessed Social Security numbers and driver’s license numbers for some patients. . The Alomere Health hospital started notifying impacted patients on January 3, 2020.

Insurance

Insurance Access Security IT

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

IT Governance

AUGUST 25, 2022

Lloyd’s of London has announced that its insurance policies will no longer cover losses resulting from certain nation-state cyber attacks or acts of war. In a memo sent to the organisation’s insurance syndicates , Underwriting Director Tony Chaudhry said that Lloyd’s remains “strongly supportive” of policies that cover cyber attacks.

Insurance

Insurance IT Government Risk

Experts: Breach at IT Outsourcing Giant Wipro

Krebs on Security

APRIL 15, 2019

Another curious, if only coincidental, development: On April 4, 2019, the government of India sold “enemy” shares in Wipro worth approximately $166 million. “The buyers were state-owned Life Insurance Corporation of India (LIC), New India Assurance and General Insurance Corporation. . “A total of 44.4

IT

IT Insurance Communications Phishing

Oregon Department of Human Services data breach impacted 645,000 clients

Security Affairs

JUNE 20, 2019

. “The state is also providing 12 months of identity theft monitoring and recovery services, which includes a $1 million insurance reimbursement policy to impacted individuals.” The department was hit by a phishing campaign on January 8, 2019, and at least nine employees have been deceived in the attack.

Data breaches

Data breaches Phishing Insurance Risk

Spike in “Chain Gang” Destructive Attacks on ATMs

Krebs on Security

JULY 9, 2021

Tracey Santor is the bond product manager for Travelers , which insures a large number of financial institutions against this type of crime. In 2019, the average amount stolen in a traditional bank robbery was just $1,797, according to the FBI. In nearly all cases, the perpetrators are done in less than five minutes.

Insurance

Insurance Mining IT Risk

Hackers Steal $41 Million worth of Bitcoin from Binance Exchange

Security Affairs

MAY 8, 2019

The good news for the customers is that its Secure Asset Fund for Users ( SAFU ) emergency insurance fund will cover the incident in full. “We have discovered a large scale security breach today, May 7, 2019 at 17:15:24 (UTC). — CZ Binance (@cz_binance) May 8, 2019. Much appreciated!

Data breaches

Data breaches Phishing Insurance Authentication

Ohio Supreme Court Says Ransomware Is Not Physical Damage

Data Breach Today

DECEMBER 27, 2022

Justices Rule Against Software Developer in Bid to Use Insurance to Cover Attack An Ohio software developer that attempted to use business insurance to pay for a 2019 ransomware attack was stymied by the Ohio Supreme Court.

Ransomware

Ransomware Insurance

First American Financial exposed 16 years’ worth of personal and financial documents

Security Affairs

MAY 27, 2019

The US real-estate insurance biz, First American Financial, accidentally leaked customers’ highly personal files online, hundreds of millions of documents. The US real-estate insurance company First American Financial Corp. accidentally leaked hundreds of millions of documents. billion in 2018. billion in 2018.

Insurance

Insurance Access Security Privacy

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Security Affairs

JANUARY 18, 2023

Researchers found about 435,000 payslips, 300 tax filings, 3,800 insurance payment documents, and 21,000 salary sheets belonging to various companies using the HR platform’s services. Worryingly, it also allowed threat actors to modify the data, changing salary amounts and details of bank accounts used for salary payments.

Privacy

Privacy Insurance Personal data Access

New Hampshire Governor Signs Insurance Data Security Law

Hunton Privacy

AUGUST 6, 2019

On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194 (the “Bill”), which requires insurers licensed in the state (“licensees”) to put in place data security programs and report cybersecurity events. The state insurance commissioner may take “necessary or appropriate” action to enforce the new law.

Insurance

Insurance Security Cybersecurity Information Security

Swarmshop – What goes around comes around: hackers leak other hackers’ data online

Security Affairs

APRIL 8, 2021

The cardshop has been operating since at least April 2019, and by March 2021, it had more than 12K user base and over 600K payment card records on sale. Group-IB notified the national CERTs in the above-mentioned countries about the breach so they could take the necessary steps to mitigate the threat. ever since.

Passwords

Passwords Insurance Personal data Sales

US DoJ charges Iranian hackers for attacks on US satellite companies

Security Affairs

SEPTEMBER 18, 2020

The hacking campaign has been active since July 2015 and continued until at least February 2019. . According to a recently published CISA’s report , Iranian hackers from an unnamed APT group are employing several known web shells, in attacks on IT, government, healthcare, financial, and insurance organizations across the United States.

Government

Government Insurance Phishing Security

Experian’s Credit Freeze Security is Still a Joke

Krebs on Security

APRIL 26, 2021

The first question asked about a new mortgage I supposedly took out in 2019 (I didn’t), and the answer was none of the above. According to Experian’s FAQ, when locked your Experian credit file remains accessible to a host of companies, including: -Potential employers or insurance companies. But Experian is hardly alone.

Security

Security Authentication Access Insurance

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

American Insurance firm State Farm victim of credential stuffing attacks

Webinars

Trending Sources

First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records

Webinars

Thousands of Humana customers have their medical data leaked online by threat actors

NY Charges First American Financial for Massive Data Leak

Hackers Were Inside Citrix for Five Months

Volkswagen discloses data breach, 3.3 million customers impacted

Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack

First American Financial Pays Farcical $500K Fine

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Healthcare giant Magellan Health discloses data breach after ransomware attack

Vertafore data breach exposed data of 27.7 million Texas drivers

Zurich chief warned that cyber attacks will become uninsurable

US-based children’s clothing maker Hanna Andersson discloses a data breach

Threat actors offer for sale data for 50 millions of Moscow drivers

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

The man behind Cardplanet credit card market sentenced to 9 years in prison

NY Investigates Exposure of 885 Million Mortgage Documents

DoJ indicted a member of China-based hacking group behind Anthem hack

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Ransomware attack on MGM Resorts costs $110 Million

Hackers breached into system that interacts with HealthCare.gov

The Riviera Beach City pays $600,000 in ransom

Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Tens of Million patients impacted by the AMCA data breach

Crooks stole millions from Bitrue Cryptocurrency Exchange

Group-IB presents its annual report on global threats to stability in cyberspace

Alabama Hospital chain paid ransom to resume operations after ransomware attack

Cybersecurity Rules for Insurance Companies to Take Effect in South Carolina

The city of Racine was offline following a ransomware attack

Medical info of 49,351 patients exposed in Alomere Health hospital breach

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

Experts: Breach at IT Outsourcing Giant Wipro

Oregon Department of Human Services data breach impacted 645,000 clients

Spike in “Chain Gang” Destructive Attacks on ATMs

Hackers Steal $41 Million worth of Bitcoin from Binance Exchange

Ohio Supreme Court Says Ransomware Is Not Physical Damage

First American Financial exposed 16 years’ worth of personal and financial documents

Myrocket HR platform’s data leak turns into privacy nightmare for employees

New Hampshire Governor Signs Insurance Data Security Law

Swarmshop – What goes around comes around: hackers leak other hackers’ data online

US DoJ charges Iranian hackers for attacks on US satellite companies

Experian’s Credit Freeze Security is Still a Joke

Stay Connected