IT Governance

APRIL 11, 2023

Welcome to our April 2023 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. More than 2 million people are signed up to YouTube’s Partner Program, which enables them to collect ad revenue.

Phishing 104

Phishing Passwords Ransomware Insurance 104

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. The post Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

Insurance 100

Insurance Security Cybersecurity Information Security 100

Security Affairs

FEBRUARY 3, 2024

Cleaning products giant Clorox estimates the economic impact of the cyber attack that hit the company in August 2023 at $49 million. According to a filing with SEC, Clorox estimates the economic impact of the cyber attack that hit the company in August 2023 at $49 million.

Insurance 116

Insurance Sales Ransomware Marketing 116

IT Governance

OCTOBER 31, 2023

Publicly disclosed data breaches and cyber attacks France says Russian state hackers breached numerous critical networks Date of breach: From second half of 2021 (reported 26 October 2023). Reeds Spring district alerts families to cybersecurity data breach Date of breach: 26 April 2023 (reported 26 October 2023).

Data Privacy 52

Data Privacy Privacy Security Data breaches 52

IT Governance

NOVEMBER 20, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Date of breach: 26 October 2023 Breached organisation: Homeland, Inc., An investigation found that there was unauthorised access to its network between 18 and 23 May 2023.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Security Affairs

JANUARY 4, 2024

Healthcare technology company HealthEC disclosed a data breach that exposed the personal information of 4.5 HEC discovered that an unknown actor gained access to some of its systems between July 14, 2023 and July 23, 2023, and copied some files. The files contained information belonging to some of HEC’s clients.

Data breaches 122

Data breaches Artificial Intelligence Insurance Access 122

Security Affairs

JULY 11, 2024

The ransomware attack that hit Dallas County in October 2023 has impacted more than 200,000 individuals exposing their personal information. In October 2023 the Play ransomware group hit Dallas County, Texas, and added the city to its Tor leak site claiming the theft of sensitive documents from multiple departments.

Ransomware 106

Ransomware Data breaches Cybersecurity Insurance 106

Security Affairs

MAY 14, 2024

The Singing River Health System revealed that the ransomware attack that hit the organization in August 2023 impacted 895,204 people. At the end of August 2023, the systems at three hospitals and other medical facilities operated by Singing River Health System (SRHS) were hit by a Rhysida ransomware attack. reported BankInfoSecurity.

Ransomware 104

Ransomware Data breaches Insurance Paper 104

Hunton Privacy

NOVEMBER 8, 2023

On November 1, 2023, New York Governor Hochul announced that the New York State Department of Financial Services (“NYDFS”) amended its Cybersecurity Regulation applicable to covered financial institutions. Notably, however, the new reporting requirements will take effect sooner, on December 1, 2023.

Cybersecurity 72

Cybersecurity IT Compliance Financial Services 72

Security Affairs

APRIL 8, 2024

The data breach occurred on May 30, 2023, and was discovered on February 7, 2024. GMA”) was the victim of a sophisticated cyberattack involving your personal information.” “On May 30, 2023, we detected unusual activity on our internal network, and we promptly took steps to mitigate the incident.

Data breaches 121

Data breaches Insurance Cybersecurity Government 121

Security Affairs

SEPTEMBER 13, 2024

The investigation determined that the breach occurred on January 8, 2023. It also added that “the information for a limited number of individuals included clinical images of patients during treatment.” In March 2023, a lawsuit was filed. ” reported the law firm. “The settlement in J. .

Data breaches 98

Data breaches Ransomware Insurance Education 98

Security Affairs

NOVEMBER 10, 2023

The security breach exposed the sensitive personal information of 2,192,515 people. The company became aware of anomalous activity on or about August 22, 2023, and immediately launched an investigation with the help of third-party forensic experts. It is a $6.6 The company also notified U.S. ” continues the notice.

Data breaches 118

Data breaches Ransomware Insurance Manufacturing 118

Security Affairs

MAY 29, 2023

MCNA Dental is one of the largest US dental care and oral health insurance providers. The security breach exposed the personal information of current or former provider of dental/orthodontic care to members of certain state Medicaid and Children’s Health Insurance Programs, for which MCNA provides dental benefits and services.

Ransomware 92

Ransomware Insurance Data breaches Government 92

IT Governance

MARCH 1, 2023

Welcome to our February 2023 list of data breaches and cyber attacks. IT Governance is dedicated to helping organisations tackle the threat of cyber crime and other information security weaknesses. Our research identified 106 publicly disclosed incidents accounting for 29,582,356 breached records this month.

Data breaches 122

Data breaches Ransomware e-Delivery Government 122

Security Affairs

MAY 27, 2024

Prescription service company Sav-Rx disclosed a data breach after 2023 cyberattack. The company is notifying 2,812,336 individuals impacted by the security breach in the United States. “On October 8, 2023, we identified an interruption to our computer network. million people in the United States.

Data breaches 119

Data breaches Cybersecurity Insurance Access 119

Security Affairs

DECEMBER 9, 2023

Norton Healthcare disclosed a data breach after a ransomware attack that hit the organization on May 9, 2023. The security breach exposed personal information belonging to patients, employees, and dependents. ” reads the notice of security incident. ” reads the notice of security incident.

Data breaches 125

Data breaches Ransomware Insurance Access 125

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance 66

Insurance Security Cybersecurity FOIA 66

Security Affairs

JANUARY 6, 2024

Law firm Orrick, Herrington & Sutcliffe disclosed a data breach that took place in early 2023, which impacted roughly 600,000 individuals. Orrick explained that it immediately took steps to block the unauthorized access and launched an investigation into the security incident. ” reads the data breach notification.

Data breaches 116

Data breaches Insurance Access Cybersecurity 116

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries.

Data breaches 96

Data breaches e-Discovery Ransomware Insurance 96

Security Affairs

NOVEMBER 12, 2023

Threat actors exploited the zero-day vulnerability CVE-2023-34362 to hack the file transfer platform and steal the data of the organization. Threat actors exploited the zero-day vulnerability CVE-2023-34362 to hack the file transfer platform and steal the data of the organization. ” reads the notice of Security Incident.

Data breaches 120

Data breaches Insurance Education Cybersecurity 120

Security Affairs

APRIL 4, 2024

US cancer center City of Hope suffered a data breach that impacted 800,000 individuals, personal and health information was compromised. City of Hope suffered a data breach, the organization started notifying 827149 individuals that their personal and health information was compromised. medical record number).”

Data breaches 108

Data breaches Insurance Security Government 108

Security Affairs

NOVEMBER 2, 2023

“On October 12, 2023, Rightway informed Okta that an unauthorized actor gained access to an eligibility census file maintained by Rightway in its provision of services to Okta. “The investigation revealed that your personal information was contained in the impacted file. .

Data breaches 126

Data breaches Insurance Access Authentication 126

Security Affairs

JUNE 2, 2023

In April, the non-profit health insurer Point32Health took systems offline in response to a ransomware attack that took place on April 17. The insurer immediately launched an investigation into the incident with the help of third-party cybersecurity experts to determine the extent of the incident. between June 2020 and present.

Ransomware 93

Ransomware Insurance Data breaches Cybersecurity 93

Security Affairs

SEPTEMBER 4, 2023

The BaFin is responsible for overseeing banks, insurance companies, investment firms, and other financial institutions. BaFin also regulates the securities markets and the financial services industry. BaFin also regulates the securities markets and the financial services industry.

Financial Services 135

Financial Services Military Insurance Marketing 135

Daymark

DECEMBER 5, 2023

On October 30, 2023, the US Securities and Exchange Commission (SEC) announced fraud charges against SolarWinds and its former chief information security officer (CISO), alleging that “ SolarWinds’ public statements about its cybersecurity practices and risks were at odds with its internal assessments.”

Insurance 62

Insurance Cybersecurity Risk Information Security 62

Security Affairs

SEPTEMBER 23, 2023

In May 2023, a ransomware attack hit the IT systems at the City of Dallas , Texas. The City confirmed the security incident and is working to recover from the ransomware attack that impacted its services, including the police department. During this time, Royal performed data exfiltration and ransomware delivery preparation activities.”

Ransomware 115

Ransomware Encryption Systems administration Cybersecurity 115

Security Affairs

NOVEMBER 23, 2023

On July 26, 2023, threat actors hacked the company’s MOVEit Transfer server. “On July 26, 2023, Welltok was alerted to an earlier alleged compromise of our MOVEit Transfer server in connection with software vulnerabilities made public by the developer of the MOVEit Transfer tool. .” million patients in the U.S.

Data breaches 103

Data breaches Insurance Ransomware Education 103

Security Affairs

MAY 12, 2024

The alert provides Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) obtained from law enforcement investigations and reports from third-party security firms. As of May 2024, Black Basta has impacted over 500 organizations worldwide. ” reads the CSA.

Ransomware 124

Ransomware Blockchain Retail Insurance 124

Security Affairs

SEPTEMBER 28, 2023

The company provides HVAC (heating, ventilation, and air conditioning), solutions for building automation, fire and security systems, and components for energy management. The company provides HVAC (heating, ventilation, and air conditioning), solutions for building automation, fire and security systems, and components for energy management.

Ransomware 125

Ransomware Insurance Cybersecurity Encryption 125

Security Affairs

JANUARY 19, 2024

In December 2023, VF Corp announced it was the victim of a ransomware attack and was forced to take some systems down to contain the threat. Now the company confirmed attackers stole corporate and personal information impacting 35.5 On December 13, 2023, VF Corp detected unauthorized access to a portion of its infrastructure.

Data breaches 123

Data breaches Passwords Retail Insurance 123

Krebs on Security

APRIL 27, 2023

This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. But after being presented with a document including the Social Security number of a health professional in D.C.

Access 295

Access Information Security Authentication Communications 295

Security Affairs

FEBRUARY 28, 2024

The advisory updates to the FBI FLASH BlackCat/ALPHV Ransomware Indicators of Compromise released on April 19, 2022 and on December 19, 2023. “From mid-December 2023 onward, the healthcare sector has emerged as the most frequently targeted among the approximately 70 disclosed victims.” ” reads the joint advisory.

Ransomware 116

Ransomware Government Insurance Manufacturing 116

Security Affairs

DECEMBER 28, 2022

The chief executive of insurance giant Zurich warns that cyber attacks, rather than natural catastrophes, will become uninsurable. Mario Greco, chief executive of insurer giant Zurich, has warned that cyber attacks will become soon “uninsurable.”.

Insurance 95

Insurance Risk Ransomware IT 95

Security Affairs

JULY 13, 2024

On May 2023, Rite Aid suffered another cyberattack, it was one of the hundreds of organizations that were breached in the MOVEit hacking campaign by the Cl0p ransomware gang. Suddenly at the end of negotiations once we both came to an agreement they stopped communications.

Data breaches 127

Data breaches Ransomware Insurance Cybersecurity 127

Security Affairs

AUGUST 20, 2024

branch of Toyota, stealing 240GB of files containing information on Toyota employees, customers, contracts, and financial details. branch of Toyota, stealing 240GB of files containing information on Toyota employees, customers, contracts, and financial details. The threat actor ZeroSevenGroup claims to have breached a U.S.

Data breaches 99

Data breaches Financial Services Archiving Passwords 99

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed.

Security 203

Security Insurance Cybersecurity Customer Experience 203

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 102

Artificial Intelligence Data breaches Security Ransomware 102