Computer and Electronics, Insurance and IT - Information Management Today

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. That second computer had the ability to manage National Bank customer accounts and their use of ATMs and bank cards. million total. THE LAWSUIT. for both intrusions,” the bank said in its lawsuit.

Insurance

Insurance Computer and Electronics Phishing Access

Change Healthcare Breach Hits 100M Americans

Krebs on Security

OCTOBER 30, 2024

“Affected insurance providers can contact us to prevent leaking of their own data and [remove it] from the sale,” RansomHub’s victim shaming blog announced on April 16. ” Change shared only that “a cybercriminal accessed our computer system without our permission.” million individuals.

Insurance

Insurance Ransomware Data breaches Computer and Electronics

Business ID Theft Soars Amid COVID Closures

Krebs on Security

JULY 27, 2020

But the same crime can be far more costly and damaging when thieves target small businesses. Unfortunately, far too many entrepreneurs are simply unaware of the threat or don’t know how to be watchful for it. In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft. ” PHANTOM OFFICES. .”

Energy and Utilities

Energy and Utilities Computer and Electronics Insurance Risk

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

Hunton Privacy

FEBRUARY 5, 2020

As previously posted on our Hunton Insurance Recovery blog , a Maryland federal court awarded summary judgment to policyholder National Ink in National Ink and Stitch, LLC v. This is significant because it demonstrates that insureds can obtain insurance coverage for cyber attacks even if they do not have a specific cyber insurance policy.

Computer and Electronics

Computer and Electronics Ransomware Insurance Access

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

Security Affairs

DECEMBER 29, 2022

The security breach took place on October 21, 2022, when the internal security team detected unusual activity on its computer network. Health insurance information. The attackers had no access to electronic medical records. LCMH’s electronic medical record was not accessible to the unauthorized party.”

Ransomware

Ransomware Computer and Electronics Data breaches Insurance

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

Health Insurance Portability & Accountability Act (HIPAA) The Health Insurance Portability and Accountability Act (HIPAA) sets standards for protecting sensitive health information, particularly electronic health records (EHRs). Agencies must also report on their security posture and any incidents that occur.

Cybersecurity

Cybersecurity Computer and Electronics Compliance Privacy

Insurance Occurrence Assurance?

Andrew Hay

JULY 26, 2018

Though the breaches are concerning, the real story is that the financial institution suing its insurance provider for refusing to fully cover the losses. The first was a “computer and electronic crime” (C&E) rider that had a single loss limit liability of $8 million, with a $125,000 deductible.

Insurance

Insurance Computer and Electronics Information Security Security

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches

Data breaches Security Computer and Electronics Ransomware

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Passwords

Passwords Ransomware Computer and Electronics Access

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

Hunton Privacy

OCTOBER 25, 2016

18, 2016), that a crime protection insurance policy does not cover loss resulting from a fraudulent email directing funds to be sent electronically to the imposter’s bank account because the scheme did not constitute “computer fraud” under the policy. Great American Ins. No 15-20499 (5th Cir. Background. Read the full alert.

Computer and Electronics

Computer and Electronics Insurance IT Cybersecurity

Largest hospital system in New Jersey was hit by ransomware attack

Security Affairs

DECEMBER 15, 2019

Hackensack Meridian Health did not reveal the amount of money it has paid to crooks, according to a statement issued by the hospital it holds insurance coverage for such emergencies. ” The hospitals were forced to reschedule nonemergency surgeries and doctors and nurses were not able to access electronic records. .

Ransomware

Ransomware Computer and Electronics Insurance Access

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. But don’t be fooled by that number – it comes from 106 incidents, which is roughly average for the year. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

Data Matters

FEBRUARY 6, 2019

On December 3, 2018, twelve attorneys general (“AGs”) jointly filed a data breach lawsuit against Medical Informatics Engineering and its subsidiary, NoMoreClipboard LLC (collectively “the Company”), an electronic health records company, in federal district court in Indiana. See Indiana v. Informatics Eng’g, Inc. , 3:18-cv-00969 (N.D.

Data breaches

Data breaches Computer and Electronics Security Insurance

Best Digital Forensics Tools & Software for 2021

eSecurity Planet

AUGUST 13, 2021

Autopsy is its GUI and a digital forensics platform used widely in public and private computer system investigations to boost TSK’s abilities. The Computer-Aided Investigative Environment (CAINE) is an open-source Ubuntu- and Linux-based distribution created by Italian developers for digital forensic purposes. Volatility.

e-Discovery

e-Discovery Computer and Electronics Marketing Compliance

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. Henderson ISD, a school district in Texas, recently lost more than $600,000 in a BEC attack.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. Henderson ISD, a school district in Texas, recently lost more than $600,000 in a BEC attack.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

Information Management in the Not-So-Distant Future of Health Care

AIIM

APRIL 12, 2022

The classic example is the insurer that won’t pay for care that a doctor determines a patient needs. Insurers are about profit; doctors are about delivering the best care. Today, if you have a computer, you have a doctor – videoconference doctor visits routinely complement in-person ones. Electronic Health Record.

Computer and Electronics

Computer and Electronics Insurance Marketing Paper

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

Another common name for the IoB is embodied computing , where the human body is used as a technology platform. Wearable technology began as any kind of electronic device designed to be worn on the user’s body. In the ingestibles category are Bluetooth electronic pills that monitor the inner workings of the human body.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

ARMA International

APRIL 28, 2022

I have overseen two significant projects: an electronic discovery production and disaster response and recovery effort. Covering all computers and file cabinets in plastic sheeting. . The plan was to meet the insurance coordinator at the Howard Avenue office at 8:30 a.m. It was grim.

Records Management

Records Management Archiving Insurance Communications

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

IT Governance

MAY 3, 2018

However, a large part of the loss has been offset by the company’s cyber insurance: Equifax announced that it maintains “$125 million of cybersecurity insurance coverage, above a $7.5 million deductible”, and, since announcing the cyber security incident in September 2017, has “recorded insurance recoveries of $60.0

Computer and Electronics

Computer and Electronics Insurance Data breaches Information Security

OCR Enters into Record Settlement with Anthem

Hunton Privacy

OCTOBER 22, 2018

Three years ago, in February 2015, OCR opened a compliance review of Anthem, the nation’s second largest health insurer, following media reports that Anthem had suffered a significant cyberattack. prevent unauthorized access to ePHI. submit annual compliance reports for a period of two years. history.

Computer and Electronics

Computer and Electronics Passwords Data breaches Compliance

The U.S. Office of the Comptroller of the Currency Seeks Comment on Digital Innovation by Banks

Data Matters

JUNE 12, 2020

electronic payments, check capture and online banking), the OCC lists some of the new technologies, the implementation of which may be hindered by ambiguous, burdensome or inflexible rules, such as blockchain, artificial intelligence, biometrics, cloud computing and big data/analytics. Comments are due by August 3, 2020. 31, 2020).

Artificial Intelligence

Artificial Intelligence Blockchain Financial Services Computer and Electronics

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. Healthcare has become more interconnected than ever, making it important to protect patients’ sensitive information.

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

HHS Announces HIPAA Settlement with UMass

Hunton Privacy

NOVEMBER 30, 2016

On November 22, 2016, the Department of Health and Human Services (“HHS”) announced a $650,000 settlement with University of Massachusetts Amherst (“UMass”), resulting from alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules. .

Computer and Electronics

Computer and Electronics Insurance Privacy Risk

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

I am a board member of the Electronic Frontier Foundation, AccessNow, and the Tor Project; and an advisory board member of Electronic Privacy Information Center and VerifiedVoting.org. This was not a minor vulnerability; the computer press at the time called it "critical." It eventually got around to it on July 29.

Personal data

Personal data Computer and Electronics Privacy Data breaches

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

eDiscovery Daily

APRIL 7, 2019

Right inside the door, you see a handwritten notice on a big whiteboard which says: All network services are down, DO NOT turn on your computers! requires the attorney to act reasonably and promptly to stop the breach and mitigate the damage, using “all reasonable efforts” to restore computer operations to be able to continue client services.

Data breaches

Data breaches Cybersecurity e-Discovery Computer and Electronics

Will Lawyers Ever Embrace Technology?: eDiscovery Best Practices, Part Four

eDiscovery Daily

NOVEMBER 25, 2018

Craig Ball once made a great point in responding to a post of mine about educating lawyers when he said “ We not only need to persuade lawyers to take the plunge, we need to insure there’s a pool for them to jump into. Do they go to a community night course on computers? Pursue online education? Wait for the next Georgetown Academy?

e-Discovery

e-Discovery Computer and Electronics Education Mining

Multi-Factor Authentication Best Practices & Solutions

eSecurity Planet

OCTOBER 5, 2021

A token acts as an electronic cryptographic key that unlocks the device or application, usually with an encrypted password or biometric data. Disconnected tokens are generally only good for one use and can be delivered via RFID or Bluetooth, or users can manually enter them into the computer. Clearly, MFA can’t work for everything.

Authentication

Authentication Passwords Access Computer and Electronics

Extending intranets to hard-to-reach staff: Controlled documents kiosk example

ChiefTech

OCTOBER 14, 2008

The IBF list the following examples of hard-to-reach staff: factory workers retail staff field engineers building inspectors consultants sales teams flight and rail workers catering staff building inspectors call centre representatives insurance assessors.

Computer and Electronics

Computer and Electronics Mining Retail Records Management

No Bad Faith Means No Sanctions for Failing to Preserve Video of Altercation: eDiscovery Case Law

eDiscovery Daily

FEBRUARY 18, 2019

In assessing the plaintiff’s motion, Judge O’Hara noted that “the parties agreed the surveillance video is a form of electronically stored information (“ESI”) subject to the preservation requirements of Rule 37(e)”. The plaintiff subsequently filed the suit in July 2017. Judge’s Ruling.

e-Discovery

e-Discovery Computer and Electronics Insurance Education

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

For remote access to emails, trading systems and other electronic data containing confidential information, the authentication mechanism should utilize at least two of the following factors: what a person knows (e.g., Insurance: The firm should communicate with its insurance company and review policy coverage. biometrics).

Data breaches

Data breaches Insurance Authentication Risk

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

For remote access to emails, trading systems and other electronic data containing confidential information, the authentication mechanism should utilize at least two of the following factors: what a person knows (e.g., Insurance: The firm should communicate with its insurance company and review policy coverage. biometrics).

Data breaches

Data breaches Insurance Authentication Risk

German court: monitoring of employees by key logger is not allowed

Data Protection Report

AUGUST 8, 2017

Subsequently, the firm installed key logger software on its employees’ computers. When reviewing the files created by the software, the employer became aware that an employee had used his work computer for private purposes during working hours and, thereupon, terminated the employment relationship.

Computer and Electronics

Computer and Electronics Insurance Privacy GDPR

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

The Security Ledger

NOVEMBER 6, 2018

In this episode of the podcast, #119: Electronic Frontier Foundation General Counsel Kurt Opsahl joins us to talk about the Coders’ Rights Project. In this episode of the podcast, #119: Electronic Frontier Foundation General Counsel Kurt Opsahl joins us to talk about the Coders’ Rights Project. Read the whole entry. »

IoT

IoT Computer and Electronics Security Insurance

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

Saudi Arabia’s New Data Protection Law – What you need to know

DLA Piper Privacy Matters

OCTOBER 7, 2021

The Middle East’s data protection regulatory landscape is complex, and continues to develop with Saudi Arabia’s ( KSA ) newly published Personal Data Protection Law ( PDPL ). While the PDPL contains the main features of a modern data protection law, it cannot be considered a direct analogue of the GDPR. It becomes fully effective on 23 March 2022.

Personal data

Personal data Compliance Computer and Electronics IoT

To get the most from blockchain in government, a sharing mindset is needed

CGI

MAY 13, 2018

When I was at university earning my Masters in Computer Science, I devoted a lot of my coursework to distributed computing. But the doctor decides the medical treatment while the insurance provider decides the amount and mode of payment. To get the most from blockchain in government, a sharing mindset is needed. It is shared.

Blockchain

Blockchain Government Computer and Electronics Mining

Court Rules Non-Party Subpoenaed ESI Not Subject to 100-Mile Boundary: eDiscovery Case Week

eDiscovery Daily

JULY 25, 2018

In this case where the plaintiff claimed breach of contract, bad faith, unjust enrichment, and fraud against the defendant insurance company over the valuation of the plaintiff’s vehicles after two automobile collisions, the plaintiff served non-party Mitchell International, Inc. with a subpoena duces tecum in March 2018.

Computer and Electronics

Computer and Electronics Insurance Compliance Education

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

Hunton Privacy

MARCH 22, 2016

million settlement with the Minnesota Attorney General for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, and various Minnesota debt collection and consumer protection laws. In 2012, Accretive entered into a $2.5 In 2012, Accretive entered into a $2.5

Computer and Electronics

Computer and Electronics Risk Passwords Privacy

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Definition of Personal information and Sensitive Personal information “Personal information” means any kind of information relating to an identified or identifiable natural person, either electronically or otherwise recorded, but excluding information that has been de-identified or anonymised.

Data Privacy

Data Privacy Privacy Compliance Analytics

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

eDiscovery Daily

JANUARY 10, 2019

The lawsuit alleges that Fort Wayne-based Medical Informatics Engineering and its subsidiary NoMoreClipboard “failed to take adequate and reasonable measures to ensure their computer systems were protected,” resulting in a 2015 breach that gave hackers access to the personal healthcare information of 3.9 million US citizens.

Data breaches

Data breaches Cybersecurity Computer and Electronics Insurance

Debut of the Texas State Records Retention Schedule (RRS): 5th Edition – 5/10/2020

The Texas Record

MAY 1, 2020

2.1.001 Processing Files These types of records should be classified under Master Files and Application Data (2.1.002) and Computer Software Programs (2.1.007), as applicable. 2.2.004 Computer Job Schedules and Reports This type of record should be classified under Activity Reports (1.1.069).

Computer and Electronics

Computer and Electronics Insurance Paper Sales

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Change Healthcare Breach Hits 100M Americans

Trending Sources

Business ID Theft Soars Amid COVID Closures

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

2024 Cybersecurity Laws & Regulations

Insurance Occurrence Assurance?

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Happy 13th Birthday, KrebsOnSecurity!

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

Largest hospital system in New Jersey was hit by ransomware attack

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

Best Digital Forensics Tools & Software for 2021

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

Information Management in the Not-So-Distant Future of Health Care

What IG Professionals Should Know About the Internet of Bodies

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

OCR Enters into Record Settlement with Anthem

The U.S. Office of the Comptroller of the Currency Seeks Comment on Digital Innovation by Banks

Understanding HIPAA: A Guide to Avoiding Common Violations

HHS Announces HIPAA Settlement with UMass

Me on the Equifax Breach

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

Will Lawyers Ever Embrace Technology?: eDiscovery Best Practices, Part Four

Multi-Factor Authentication Best Practices & Solutions

Extending intranets to hard-to-reach staff: Controlled documents kiosk example

No Bad Faith Means No Sanctions for Failing to Preserve Video of Altercation: eDiscovery Case Law

Fund Managers Targeted in Sophisticated Cyberattacks

Fund Managers Targeted in Sophisticated Cyberattacks

German court: monitoring of employees by key logger is not allowed

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

Five Steps to HIPAA Security Compliance

Saudi Arabia’s New Data Protection Law – What you need to know

To get the most from blockchain in government, a sharing mindset is needed

Court Rules Non-Party Subpoenaed ESI Not Subject to 100-Mile Boundary: eDiscovery Case Week

Five Steps to HIPAA Security Compliance

Five Steps to HIPAA Security Compliance

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

Debut of the Texas State Records Retention Schedule (RRS): 5th Edition – 5/10/2020

Stay Connected