Blog, Insurance and Security - Information Management Today

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Non-profit health insurer Point32Health suffered a ransomware attack and has taken systems offline in response to the incident. Non-profit health insurer Point32Health has taken systems offline in response to a ransomware attack that took place on April 17. ” reads the statement published by the insurer.

Insurance

Insurance Ransomware Cybersecurity Education

Cyber Insurance and the Changing Global Risk Environment

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance. If the technology were to become unavailable, the resulting business impact could be mitigated with cyber insurance.

Insurance

Insurance Risk Cybersecurity Ransomware

China-linked Moshen Dragon abuses security software to sideload malware

Security Affairs

MAY 3, 2022

The threat actor systematically utilized software distributed by security vendors to sideload ShadowPad and PlugX variants.” The attackers focused on the hijacking of programs belonging to security vendors, including Symantec, TrendMicro, BitDefender, McAfee and Kaspersky. .”Once To nominate, please visit:?

Security

Security Military Insurance Cybersecurity

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

GUEST ESSAY: Cyber insurance 101 — for any business operating in today’s digital environment

The Last Watchdog

JANUARY 20, 2020

To help mitigate the risk of financial losses, more companies are turning to cyber insurance. Related: Bots attack business logic Cyber insurance, like other forms of business insurance, is a way for companies to transfer some of numerous potential liability hits associated specifically with IT infrastructure and IT activities.

Insurance

Insurance Data breaches Cybersecurity Risk

Security Affairs newsletter Round 362 by Pierluigi Paganini

Security Affairs

APRIL 24, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 362 by Pierluigi Paganini appeared first on Security Affairs. Patch them now! Patch them now! Pierluigi Paganini.

Security

Security Phishing Ransomware Insurance

German IT provider Bitmarck hit by cyberattack

Security Affairs

MAY 1, 2023

Bitmarck, one of the largest IT service providers for social insurance carriers in Germany, announced yesterday that it has suffered a cyber attack. The incident impacted statutory health insurance companies that have their IT operated by BITMARCK. Our early warning systems have reported an attack on BITMARCK’s internal systems.

IT

IT Insurance Data breaches Education

Danish news agency Ritzau hit by ransomware, but did not pay the ransom

Security Affairs

NOVEMBER 26, 2020

The news agency has transferred its emergency distribution to clients to six live blogs that provide a better overview. “If The agency launched an investigation into the incident with the help of an external security firm and its insurance company. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Ransomware

Ransomware Insurance Encryption IT

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Cybersecurity Authentication

Why Cyber Insurance is Essential in 2022

IT Governance

MAY 24, 2022

Organisations must always look for cost-effective ways to address the cyber security risks they face. With more than 1,200 publicly disclosed data breaches last year , and organisations spending almost £3 million on average responding to security incidents , effective risk management is a top priority. The benefits of cyber insurance.

Insurance

Insurance Data breaches GDPR Ransomware

Cyber insurance: A guide for businesses

IT Governance

OCTOBER 15, 2020

Cyber threats are so numerous that it’s impossible to prevent security incidents altogether. That’s why they organisations increasingly relying on cyber insurance policies to cover the costs when data breaches and cyber attacks occur. But just how helpful is cyber insurance? What is cyber insurance?

Insurance

Insurance Data breaches Risk Security

NAIC Insurance Data Security Law Annual Certifications: Is Yours Due By February 15?

Data Matters

FEBRUARY 2, 2021

The National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law has been adopted in at least 11 states, with several others (including New York) having implemented either older or similar laws or administrative guidance. appeared first on Data Matters Privacy Blog.

Insurance

Insurance Security Compliance Privacy

Security Affairs newsletter Round 226

Security Affairs

AUGUST 11, 2019

The best news of the week with Security Affairs. Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. American Insurance firm State Farm victim of credential stuffing attacks. Once again thank you! Pierluigi Paganini.

Security

Security Data breaches Military IoT

How Much Cyber Liability Insurance Do You Need?

IT Governance

AUGUST 23, 2022

Cyber liability insurance helps organisations cover the financial costs of a data breach. Without insurance, organisations spend £3.6 million on average recovering from security incidents. By purchasing cyber liability insurance, organisations gain the resources they need at a fraction of the cost.

Insurance

Insurance Data breaches e-Delivery Risk

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The Last Watchdog

JUNE 9, 2022

Phishing emails may ask for personal information like a log-in or Social Security number to authenticate your account, or they may urge you to share your credit card payment details. A criminal exploiting someone’s medical or insurance details to make fraudulent claims is known as medical identity theft. Romance Scam.

Privacy

Privacy Security Phishing Insurance

30 million Americans affected by the Astoria Company data breach

Security Affairs

MARCH 25, 2021

Astoria Company LLC is a lead generation company that leverages on a network of websites to collect information on a person that may be looking for discounted car loans, different medical insurance, or even payday loans. Collected data si shared with a number of partner sites (such as insurance or loan agencies), that pay per lead referral.

Data breaches

Data breaches Sales Insurance Marketing

SuperCare Health discloses a data breach that Impacted +300K people

Security Affairs

APRIL 11, 2022

SuperCare Health disclosed a security breach that has led to the exposure of personal information belonging to its patients, patients/members of its partner organizations and others. The security breach was discovered on July 27, 2021, when the company IT personnel noticed unauthorized activity on some systems. Pierluigi Paganini.

Data breaches

Data breaches Cybersecurity Insurance Security

First American Financial exposed 16 years’ worth of personal and financial documents

Security Affairs

MAY 27, 2019

The US real-estate insurance biz, First American Financial, accidentally leaked customers’ highly personal files online, hundreds of millions of documents. The US real-estate insurance company First American Financial Corp. At the time of writing, First American Financial has updated its website and secured the documents.

Insurance

Insurance Access Security Privacy

San Bernardino County Sheriff’s Department paid a $1.1M ransom

Security Affairs

MAY 7, 2023

The Los Angeles Times reported that San Bernardino County paid half the total of the ransom ($511,852), while the remaining part was covered by the insurance carrier. The ransom was paid to “restore the system’s full functionality and secure any data involved in the breach.” ransom appeared first on Security Affairs.

Ransomware

Ransomware Insurance Encryption Security

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

The Last Watchdog

MARCH 13, 2023

So how will this affect chief information security officers (CISOs) and security programs? Given the perennial skills and staffing shortage in security, it’s unlikely that CISOs will be asked to make deep budget or staffing cuts, yet they may not come out of this period unscathed. Demonstrate secure practices to customers.

Security

Security Insurance Cybersecurity Customer Experience

What are the benefits of cyber security as a service?

IT Governance

DECEMBER 14, 2021

With organisations’ cyber security requirements becoming more complex and the threat of cyber attacks growing each year, many decision-makers are turning towards cyber security as a service. This approach, also known as managed cyber security, works by outsourcing cyber security to a third party. You’ll save money.

Security

Security Insurance Data breaches Information Security

PharMerica data breach impacts more than 5.8 million individuals

Security Affairs

MAY 15, 2023

Upon discovering the cybersecurity incident, we promptly began an internal investigation and engaged cybersecurity advisors to investigate and secure our computer systems.” In response to the incident, the company enhanced its technical security measures. million individuals appeared first on Security Affairs.

Data breaches

Data breaches Cybersecurity Insurance Ransomware

Regulatory Update: National Association of Insurance Commissioners Spring 2024 National Meeting

Data Matters

APRIL 10, 2024

The National Association of Insurance Commissioners (NAIC) held its Spring 2024 National Meeting (Spring Meeting) March 15 through 18, 2024. The post Regulatory Update: National Association of Insurance Commissioners Spring 2024 National Meeting appeared first on Data Matters Privacy Blog.

Insurance

Insurance Privacy Security IT

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

IT Governance

AUGUST 25, 2022

Lloyd’s of London has announced that its insurance policies will no longer cover losses resulting from certain nation-state cyber attacks or acts of war. In a memo sent to the organisation’s insurance syndicates , Underwriting Director Tony Chaudhry said that Lloyd’s remains “strongly supportive” of policies that cover cyber attacks.

Insurance

Insurance IT Government Risk

How generative AI delivers value to insurance companies and their customers

IBM Big Data Hub

DECEMBER 1, 2023

Insurers struggle to manage profitability while trying to grow their businesses and retain clients. Large, well-established insurance companies have a reputation of being very conservative in their decision making, and they have been slow to adopt new technologies.

Insurance

Insurance Digital transformation Customer Experience Cloud

Many Public Salesforce Sites are Leaking Private Data

Krebs on Security

APRIL 27, 2023

Until being contacted by this reporter on Monday, the state of Vermont had at least five separate Salesforce Community sites that allowed guest access to sensitive data, including a Pandemic Unemployment Assistance program that exposed the applicant’s full name, Social Security number, address, phone number, email, and bank account number.

Access

Access Information Security Authentication Communications

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security. However, despite the critical status of bank infrastructure on the national level, the security of crucial data was not ensured.

Personal data

Personal data Phishing Risk Communications

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

The Last Watchdog

OCTOBER 29, 2018

The headlines immediately attempted to lay the blame, in large part, on the fact that Equifax’s chief information security officer was a music major and did not have a background in technology. The FTC considers that ‘reasonable security’ doesn’t mean ‘perfect security.’ Even the best security program is not bulletproof.

Security

Security Data Privacy Privacy Data breaches

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

Security Affairs

MAY 13, 2019

Security researcher Bob Diachenko discovered an unprotected Elasticsearch server exposing personally identifiable information belonging to nearly 90% of Panama citizens. Exposed data includes full names, birth dates, national ID numbers, medical insurance numbers, and other personal data. The database contained 3.4 Pierluigi Paganini.

Authentication

Authentication Insurance Personal data Ransomware

U.S. Treasury Department Seeks Public Comment On Potential Federal Cyber Insurance Program

Data Matters

OCTOBER 20, 2022

Treasury Department is seeking public comment on the need and scope for a potential federal insurance response to catastrophic cyber incidents, akin to the one put in place for terrorism insurance after the attacks of September 11, 2001. The request, published by the Federal Insurance Office (FIO) in the U.S. Background.

Insurance

Insurance Marketing Cybersecurity Risk

GUEST ESSAY: How to secure ‘Digital Twins’ to optimize asset use, while reducing exposures

The Last Watchdog

AUGUST 8, 2022

Clearly, it is crucial that any digital twins (or other complex systems) are secured at the highest level. Access security challenges. Depending on their security maturity, they may also decide to outsource the risk by having a managed service host their digital twin. They need a comprehensive cybersecurity plan.

Security

Security Artificial Intelligence Risk Access

Top 5 Cyber Security Risks for Businesses

IT Governance

JUNE 15, 2022

In an increasingly digital world, there are an escalating number of cyber security risks for business to address. IT Governance identified more than 1,200 publicly disclosed data breaches in 2021 , while another report found that security incidents cost almost £3 million on average. Poor patch management. Weak passwords.

Risk

Risk Security Passwords Phishing

The Case for Limiting Your Browser Extensions

Krebs on Security

MARCH 3, 2020

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. How did a browser extension lead to a malicious link being added to the health insurance company Web site?

Insurance

Insurance File names Risk Marketing

Capita warns customers to assume that their data was stolen

Security Affairs

MAY 14, 2023

Our IT security monitoring capabilities swiftly alerted us to the incident, and we quickly invoked our established and practised technical crisis management protocols. Exposed data include names, dates of birth, National Insurance numbers, and USS member numbers. Immediate steps were taken to successfully isolate and contain the issue.

Access

Access Insurance Security Ransomware

What Is Information Security Management?

IT Governance

FEBRUARY 22, 2022

Information security management is a way of protecting an organisation’s sensitive data from threats and vulnerabilities. The process is typically embedded via an ISMS (information security management system) , which provides the framework for managing information security. Why is information security management important?

Information Security

Information Security Security Data breaches Risk

It’s Called BadUSB for a Reason

Security Affairs

APRIL 28, 2022

The criminal group had been mailing malware-ridden USBs to various entities in the transport, insurance, and defense industries under the guise that they originated from a trusted source, such as Amazon and the US Department of Health and Human Services. The post It’s Called BadUSB for a Reason appeared first on Security Affairs.

Cybersecurity

Cybersecurity Access Insurance Security

Is Artificial Intelligence relevant to insurance?

IBM Big Data Hub

MAY 1, 2023

In this first of two posts, I investigate the anatomy of artificial intelligence and its impact on insurance. Soon after, AI’s capabilities extended to Speech and Natural Language processing, such as with IBM Watson, and for Image Recognition, which is now ubiquitously used for unlocking phones and other biometric security.

Artificial Intelligence

Artificial Intelligence Insurance Risk Personal data

Indico Data, The Decision Automation Company™, unveils strategic leadership appointments to drive next-generation insurance innovation

Info Source

APRIL 2, 2025

Boston, MA April 1st, 2025 Indico Data, The Decision Automation Company , today announced pivotal leadership appointments that reinforce its commitment to revolutionizing the insurance industry through AI-driven decision automation.

Insurance

Insurance Unstructured data Artificial Intelligence Information Security

New RA Group ransomware gang is the latest group using leaked Babuk source code

Security Affairs

MAY 15, 2023

Compromised organizations operate in different business verticals, including manufacturing, wealth management, insurance providers, and pharmaceuticals. The researchers noticed that the path contains the same mutex name as the Babuk ransomware, a circumstance that suggests the malware borrows Babuk’s leaked source code. We are in the final!

Ransomware

Ransomware Encryption Healthcare Insurance

News Alert: Guardz uncovers new macOS malware – Hidden Virtual Network Computing (hVNC)

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Guardz , the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. To learn more about the newly disclosed macOS hVNC and the rising trend of threats against SMEs, see Guardz’s recent blog post here.

Insurance

Insurance Cybersecurity Risk Education

Unemployment Insurance Fraud and Identity Theft: Up Close and Personal

Lenny Zeltser

JULY 1, 2020

To achieve this, the scammer: Obtains the victim’s personal information , including name, date of birth, social security number, address, and probably employment history. I wrote this article to help other victims of this unemployment insurance fraud and identity theft scam. I believe in this scheme.

Insurance

Insurance Data breaches Government IT

Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. The post Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

Insurance

Insurance Security Cybersecurity Information Security

10 steps to combat the high cost of cyber insurance

OpenText Information Management

MARCH 8, 2023

As the frequency and scope of cyberattacks increases, so does the cost of cyber insurance. And the rise is dramatic.

Insurance

Insurance Compliance Security

Mitigating the impact of climate change in insurance and other financial services

IBM Big Data Hub

MARCH 25, 2024

According to Berenberg analysts , individual insurance companies faced total claims estimates of up to approximately USD 300 million. For other financial services firms outside of the insurance sector, property accepted as loan security might face climate-related risks as well.

Financial Services

Financial Services Insurance Risk Agriculture

Regulatory Update: National Association of Insurance Commissioners Summer 2023 National Meeting

Data Matters

SEPTEMBER 7, 2023

The National Association of Insurance Commissioners (NAIC) held its Summer 2023 National Meeting (Summer Meeting) from August 12–16, 2023. The post Regulatory Update: National Association of Insurance Commissioners Summer 2023 National Meeting appeared first on Data Matters Privacy Blog.

Insurance

Insurance Artificial Intelligence Privacy Security

Health insurer Point32Health suffered a ransomware attack

Cyber Insurance and the Changing Global Risk Environment

Webinars

Trending Sources

China-linked Moshen Dragon abuses security software to sideload malware

Webinars

GUEST ESSAY: Cyber insurance 101 — for any business operating in today’s digital environment

Security Affairs newsletter Round 362 by Pierluigi Paganini

German IT provider Bitmarck hit by cyberattack

Danish news agency Ritzau hit by ransomware, but did not pay the ransom

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Why Cyber Insurance is Essential in 2022

Cyber insurance: A guide for businesses

NAIC Insurance Data Security Law Annual Certifications: Is Yours Due By February 15?

Security Affairs newsletter Round 226

How Much Cyber Liability Insurance Do You Need?

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

30 million Americans affected by the Astoria Company data breach

SuperCare Health discloses a data breach that Impacted +300K people

First American Financial exposed 16 years’ worth of personal and financial documents

San Bernardino County Sheriff’s Department paid a $1.1M ransom

GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?

What are the benefits of cyber security as a service?

PharMerica data breach impacts more than 5.8 million individuals

Regulatory Update: National Association of Insurance Commissioners Spring 2024 National Meeting

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

How generative AI delivers value to insurance companies and their customers

Many Public Salesforce Sites are Leaking Private Data

Multinational ICICI Bank leaks passports and credit card numbers

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

U.S. Treasury Department Seeks Public Comment On Potential Federal Cyber Insurance Program

GUEST ESSAY: How to secure ‘Digital Twins’ to optimize asset use, while reducing exposures

Top 5 Cyber Security Risks for Businesses

The Case for Limiting Your Browser Extensions

Capita warns customers to assume that their data was stolen

What Is Information Security Management?

It’s Called BadUSB for a Reason

Is Artificial Intelligence relevant to insurance?

Indico Data, The Decision Automation Company™, unveils strategic leadership appointments to drive next-generation insurance innovation

New RA Group ransomware gang is the latest group using leaked Babuk source code

News Alert: Guardz uncovers new macOS malware – Hidden Virtual Network Computing (hVNC)

Unemployment Insurance Fraud and Identity Theft: Up Close and Personal

Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

10 steps to combat the high cost of cyber insurance

Mitigating the impact of climate change in insurance and other financial services

Regulatory Update: National Association of Insurance Commissioners Summer 2023 National Meeting

Stay Connected