Krebs on Security

JUNE 4, 2019

Securities and Exchange Commission , LabCorp. 1, 2018 and March 30, 2019. AMCA has advised LabCorp that Social Security Numbers and insurance identification information are not stored or maintained for LabCorp consumers.” But today’s disclosure by LabCorp. In a filing today with the U.S. ” ANALYSIS.

Insurance 272

Insurance Data Privacy Access Security 272

Krebs on Security

MAY 31, 2019

That measure, which went into effect in March 2019 and is considered among the toughest in the nation, requires financial companies to regularly audit and report on how they protect sensitive data, and provides for fines in cases where violations were reckless or willful. No authentication was needed to access the digitized records.

Financial Services 233

Financial Services Insurance Sales Authentication 233

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. The experts detected 8.3

Insurance 110

Insurance Data breaches Financial Services Passwords 110

The Last Watchdog

APRIL 30, 2019

I had the chance at RSA 2019 to visit with George Wrenn, founder and CEO of CyberSaint Security , a cybersecurity software firm that plays directly in this space. Then you have the folks whose security programs have run out of steam and they’re looking for a way to prove that they’re doing due care,” Wrenn said.

Cybersecurity 173

Cybersecurity Insurance Security Privacy 173

Krebs on Security

APRIL 15, 2019

The security experts said Wipro’s customers traced malicious and suspicious network reconnaissance activity back to partner systems that were communicating directly with Wipro’s network. “Wipro has a multilayer security system,” the company wrote. On Friday, Apr. “A total of 44.4 “A total of 44.4

IT 270

IT Insurance Communications Phishing 270

Hunton Privacy

AUGUST 6, 2019

On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194 (the “Bill”), which requires insurers licensed in the state (“licensees”) to put in place data security programs and report cybersecurity events. Key provisions of the Bill include: Information Security Program. Incident Response Plan.

Insurance 81

Insurance Security Cybersecurity Information Security 81

Krebs on Security

JULY 9, 2021

Tracey Santor is the bond product manager for Travelers , which insures a large number of financial institutions against this type of crime. In 2019, the average amount stolen in a traditional bank robbery was just $1,797, according to the FBI. In nearly all cases, the perpetrators are done in less than five minutes.

Insurance 351

Insurance Mining IT Risk 351

Hunton Privacy

JANUARY 2, 2019

New cybersecurity rules for insurance companies licensed in South Carolina are set to take effect in part on January 1, 2019. The new law is the first in the United States to be enacted based on the data security model law drafted by the National Association of Insurance Commissioners.

Insurance 77

Insurance Cybersecurity Data breaches Encryption 77

IT Governance

AUGUST 25, 2022

Lloyd’s of London has announced that its insurance policies will no longer cover losses resulting from certain nation-state cyber attacks or acts of war. In a memo sent to the organisation’s insurance syndicates , Underwriting Director Tony Chaudhry said that Lloyd’s remains “strongly supportive” of policies that cover cyber attacks.

Insurance 102

Insurance IT Government Risk 102

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 68

Insurance Security Cybersecurity Data breaches 68

Data Matters

JULY 30, 2018

In October 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. On May 3, 2018, South Carolina became the first state to enact this Model Law, in the form of the South Carolina Insurance Data Security Act (H.B.

Insurance 60

Insurance Security Cybersecurity Data breaches 60

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. What was leaked? Drug prescription listings).

Insurance 122

Insurance Passwords Libraries Access 122

IT Governance

JANUARY 29, 2019

Although there will be some debate about the usefulness of including the 772,904,991 records from the Collection #1 breach – which comprises data stolen from a number of historic data breaches – even without them, the number of breached records still stands at just under 1 billion records for January 2019. Bobby Yee, D.P.M Data breach.

Data breaches 111

Data breaches Ransomware Phishing Privacy 111

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. The March 7, 2019, exposure drafts of the CFR Model Laws have been revised to address those comments as well as certain other comments received from interested parties.

Insurance 68

Insurance Blockchain Big data Risk 68

Security Affairs

APRIL 24, 2020

Experts from BadPackets pointed out that attackers might have exploited the Pulse Secure VPN CVE-2019-11510 to compromise the company. BadPackets reported that SeaChange had a Pulse Secure VPN server ( [link] ) vulnerable to CVE-2019-11510 from April 24, 2019 until March 24, 2020. Pierluigi Paganini.

Ransomware 135

Ransomware Insurance Data breaches Encryption 135

Krebs on Security

JULY 27, 2020

In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft. based cyber intelligence firm Hold Security has been monitoring the communications between and among a businesses ID theft gang apparently operating in Georgia and Florida but targeting businesses throughout the United States.

Energy and Utilities 361

Energy and Utilities Computer and Electronics Insurance Risk 361

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance 68

Insurance Paper Risk Analytics 68

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

IT Governance

JUNE 27, 2019

After a rampant start to the year for data breaches and cyber attacks, it’s about time we went one month without at least one massive security incident. June 2019’s total of 39,713,046 breached records is the lowest since May last year – the month that the GDPR (General Data Protection Regulation) came into effect. Hackers stole $1.75

Data breaches 111

Data breaches Personal data Ransomware GDPR 111

Krebs on Security

SEPTEMBER 27, 2019

1, 2019 to Aug. NatPay said its insurance should help cover the losses it incurred when MyPayrollHR’s banks froze the company’s accounts. Court records indicate Mann hasn’t yet entered a plea, but that he was ordered to be released today under a $200,000 bond secured by a family home and two vehicles.

Financial Services 269

Financial Services Insurance Cloud IT 269

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops. No going back.

Security 145

Security Digital transformation Financial Services Risk 145

Security Affairs

NOVEMBER 13, 2020

The company disclosed this security breach this week, data was stored on an unsecured external storage service and they were accessed by an external party. The company pointed out that the data breach did not expose Social Security numbers or financial account information. million Texas drivers appeared first on Security Affairs.

Data breaches 142

Data breaches Insurance Access Security 142

IT Governance

FEBRUARY 26, 2019

I count this month’s total of leaked records to be 692,853,046, bringing 2019’s total to 2,462,038,109. Artsy Alerts Users of Data-Security Breach; Report Claims Hacked Information for Sale. Eskom data leak exposes sensitive customer information – Security researcher. Coffee Meets Bagel notifies users of breach.

Data breaches 109

Data breaches Sales Phishing Ransomware 109

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation 147

Digital transformation Compliance Risk Security 147

IT Governance

JULY 6, 2020

Beaming’s Five Years in Cyber Security found that 1.5 million organisations fell victim to cyber crime in 2019. On the plus side, the average cost of breaches has fallen from £26,000 per incident in 2015 to £6,000 in 2019 – although that’s offset by the increase in the overall number of incidents.

Information Security 137

Information Security Phishing IoT Insurance 137

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. 2019 Revisions to the Credit for Reinsurance Model Law and the Credit for Reinsurance Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. 2019 Revisions to the Credit for Reinsurance Model Law and the Credit for Reinsurance Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. Pierluigi Paganini. Pierluigi Paganini.

Access 129

Access Financial Services Retail Insurance 129

Security Affairs

MAY 13, 2020

Magellan Health, a for-profit managed health care and insurance firm, was the victim of a ransomware attack. Magellan Health is a for-profit managed health care and insurance firm that ranks 417 on the Fortune 500 list of the largest US corporations by total revenue. Magellan Health Inc. Pierluigi Paganini.

Data breaches 144

Data breaches Ransomware Insurance Passwords 144

Security Affairs

JANUARY 21, 2020

Security firms have monitored the activities of a dozen groups at least since 2010. . According to a joint report published by RiskIQ and FlashPoint in 2019 , some groups are more advanced than others, in particular, the gang tracked as Group 4 appears to be very sophisticated. The malware was completely removed on November 11, 2019.

Data breaches 137

Data breaches Retail Cloud Insurance 137

IT Governance

MARCH 20, 2024

In the UK, cyber security has been dropping down the board’s list of priorities. The UK government’s Cyber Security Breaches Survey 2023 confirms this trend. Fewer directors, trustees and other senior managers of both UK businesses and charities see cyber security as a high priority in 2023 compared to 2022. Specifically, a 13.4%

Security 106

Security Data breaches Government Insurance 106

Krebs on Security

AUGUST 3, 2020

The leaked Blacklist customer database points to various companies you might expect to see using automated calling systems to generate business, including real estate and life insurance providers, credit repair companies and a long list of online advertising firms and individual digital marketing specialists.

Marketing 337

Marketing Passwords Sales Insurance 337

Security Affairs

MAY 1, 2020

The hackers claim to have compromised the Banco BCR’s network in August 2019, and had the opportunity to exfiltrate its information before encrypting the files. Banco BCR has yet to disclose the security breach. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link].

Ransomware 145

Ransomware Encryption Insurance Data breaches 145

Krebs on Security

AUGUST 17, 2023

Security experts investigating 16Shop found the service used an application programming interface (API) to manage its users, an innovation that allowed its proprietors to shut off access to customers who failed to pay a monthly fee, or for those attempting to copy or pirate the phishing kit.

Phishing 200

Phishing Passwords Insurance Data breaches 200

Hunton Privacy

JULY 1, 2022

(“Carnival”), the world’s largest cruise-ship operator, for violations of the Cybersecurity Regulation (23 NYCRR Part 500) in connection with four cybersecurity events between 2019 and 2021, including two ransomware events. .

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Krebs on Security

JUNE 30, 2021

Ronnie Tokazowski is a threat researcher at Agari , a security firm that has closely tracked many of the groups behind these advanced fee schemes [KrebsOnSecurity interviewed Tokazowski in 2018 after he received a security industry award for his work in this area]. ” ANY METHOD THAT WORKS.

Insurance 284

Insurance IT Education Government 284

Hunton Privacy

OCTOBER 14, 2019

Recent headlines underscore the security challenges faced by public-facing businesses. Join us on October 28, 2019, at 12:00 p.m. The SAFETY Act, administered by the Department of Homeland Security, is coming of age as an important tool to reduce risk and limit liability. Bruce Cohen, SVP, Client Executive, Lockton Companies.

Insurance 49

Insurance Security Retail Risk 49