Computer and Electronics, Insurance and Security

Change Healthcare Breach Hits 100M Americans

Krebs on Security

OCTOBER 30, 2024

“Affected insurance providers can contact us to prevent leaking of their own data and [remove it] from the sale,” RansomHub’s victim shaming blog announced on April 16. ” Change shared only that “a cybercriminal accessed our computer system without our permission.” million individuals.

Insurance

Insurance Ransomware Data breaches Computer and Electronics

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 17, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security Computer and Electronics Ransomware

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

These laws aim to establish standards for securing data, ensuring privacy, and mitigating risks associated with digital information. By enforcing these regulations, governments seek to enhance the overall security posture of businesses and institutions, reduce the likelihood of cyber incidents, and promote trust in the digital ecosystem.

Cybersecurity

Cybersecurity Computer and Electronics Compliance Privacy

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

Hunton Privacy

FEBRUARY 5, 2020

As previously posted on our Hunton Insurance Recovery blog , a Maryland federal court awarded summary judgment to policyholder National Ink in National Ink and Stitch, LLC v. This is significant because it demonstrates that insureds can obtain insurance coverage for cyber attacks even if they do not have a specific cyber insurance policy.

Computer and Electronics

Computer and Electronics Ransomware Insurance Access

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

Security Affairs

DECEMBER 29, 2022

The security breach took place on October 21, 2022, when the internal security team detected unusual activity on its computer network. Health insurance information. Social Security numbers (in some cases). The attackers had no access to electronic medical records. Patient identification numbers.

Ransomware

Ransomware Computer and Electronics Data breaches Insurance

Insurance Occurrence Assurance?

Andrew Hay

JULY 26, 2018

Though the breaches are concerning, the real story is that the financial institution suing its insurance provider for refusing to fully cover the losses. The first was a “computer and electronic crime” (C&E) rider that had a single loss limit liability of $8 million, with a $125,000 deductible.

Insurance

Insurance Computer and Electronics Information Security Security

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. That second computer had the ability to manage National Bank customer accounts and their use of ATMs and bank cards. In June of 2016, National Bank implemented additional security protocols, as recommended by FirstData.

Insurance

Insurance Computer and Electronics Phishing Access

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

Hunton Privacy

OCTOBER 25, 2016

18, 2016), that a crime protection insurance policy does not cover loss resulting from a fraudulent email directing funds to be sent electronically to the imposter’s bank account because the scheme did not constitute “computer fraud” under the policy. Great American Ins. No 15-20499 (5th Cir. Background. Read the full alert.

Computer and Electronics

Computer and Electronics Insurance IT Cybersecurity

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

Data Matters

FEBRUARY 6, 2019

On December 3, 2018, twelve attorneys general (“AGs”) jointly filed a data breach lawsuit against Medical Informatics Engineering and its subsidiary, NoMoreClipboard LLC (collectively “the Company”), an electronic health records company, in federal district court in Indiana. See Indiana v. Informatics Eng’g, Inc. , 3:18-cv-00969 (N.D.

Data breaches

Data breaches Computer and Electronics Security Insurance

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. Healthcare has become more interconnected than ever, making it important to protect patients’ sensitive information.

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

Information Management in the Not-So-Distant Future of Health Care

AIIM

APRIL 12, 2022

The classic example is the insurer that won’t pay for care that a doctor determines a patient needs. Insurers are about profit; doctors are about delivering the best care. Today, if you have a computer, you have a doctor – videoconference doctor visits routinely complement in-person ones. Electronic Health Record.

Computer and Electronics

Computer and Electronics Insurance Marketing Paper

Largest hospital system in New Jersey was hit by ransomware attack

Security Affairs

DECEMBER 15, 2019

Hackensack Meridian Health did not reveal the amount of money it has paid to crooks, according to a statement issued by the hospital it holds insurance coverage for such emergencies. ” The hospitals were forced to reschedule nonemergency surgeries and doctors and nurses were not able to access electronic records. .

Ransomware

Ransomware Computer and Electronics Insurance Access

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

The Security Ledger

NOVEMBER 6, 2018

In this episode of the podcast, #119: Electronic Frontier Foundation General Counsel Kurt Opsahl joins us to talk about the Coders’ Rights Project. Also: we speak with Senthil Ramakrishnan, a lead member of AT&T’s IoT Security group about that company’s plans to work with Ericsson to certify the security of IoT devices.

IoT

IoT Computer and Electronics Security Insurance

Business ID Theft Soars Amid COVID Closures

Krebs on Security

JULY 27, 2020

based cyber intelligence firm Hold Security has been monitoring the communications between and among a businesses ID theft gang apparently operating in Georgia and Florida but targeting businesses throughout the United States. For the past several months, Milwaukee, Wisc. For the past several months, Milwaukee, Wisc. ” PHANTOM OFFICES.

Energy and Utilities

Energy and Utilities Computer and Electronics Insurance Risk

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Until recently, I was fairly active on Twitter , regularly tweeting to more than 350,000 followers about important security news and stories here. The records also reveal how Conti dealt with its own internal breaches and attacks from private security firms and foreign governments.

Passwords

Passwords Ransomware Computer and Electronics Access

Best Digital Forensics Tools & Software for 2021

eSecurity Planet

AUGUST 13, 2021

Since the inception of data forensics almost forty years ago, methods for investigating security events have given way to a market of vendors and tools offering digital forensics software (DFS). Autopsy is its GUI and a digital forensics platform used widely in public and private computer system investigations to boost TSK’s abilities.

e-Discovery

e-Discovery Computer and Electronics Marketing Compliance

HHS Announces HIPAA Settlement with UMass

Hunton Privacy

NOVEMBER 30, 2016

On November 22, 2016, the Department of Health and Human Services (“HHS”) announced a $650,000 settlement with University of Massachusetts Amherst (“UMass”), resulting from alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules. .

Computer and Electronics

Computer and Electronics Insurance Privacy Risk

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Lack of compliance to the HIPAA security standards could lead to large fines and in extreme cases even loss of medical licenses. Collaborate with affected parties.

Compliance

Compliance Computer and Electronics Security Encryption

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

IT Governance

MAY 3, 2018

The introduction of a centralised Windows 10 agreement will ensure a consistent approach to security that also enables the NHS to rapidly modernise its IT infrastructure.”. million deductible”, and, since announcing the cyber security incident in September 2017, has “recorded insurance recoveries of $60.0 Nice try, Konrad.

Computer and Electronics

Computer and Electronics Insurance Data breaches Information Security

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Lack of compliance to the HIPAA security standards could lead to large fines and in extreme cases even loss of medical licenses. Collaborate with affected parties.

Compliance

Compliance Computer and Electronics Security Encryption

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Lack of compliance to the HIPAA security standards could lead to large fines and in extreme cases even loss of medical licenses. Collaborate with affected parties.

Compliance

Compliance Computer and Electronics Security Encryption

OCR Enters into Record Settlement with Anthem

Hunton Privacy

OCTOBER 22, 2018

Three years ago, in February 2015, OCR opened a compliance review of Anthem, the nation’s second largest health insurer, following media reports that Anthem had suffered a significant cyberattack. prevent unauthorized access to ePHI. prevent unauthorized access to ePHI.

Computer and Electronics

Computer and Electronics Passwords Data breaches Compliance

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

Those employees joined a growing number of workers in other countries – Belgium, the UK, and Sweden, to name a few – who use microchips for workplace security, convenience, and commuting. Another common name for the IoB is embodied computing , where the human body is used as a technology platform. Benefits and Risks.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

Regulators worldwide, including the Securities and Futures Commission of Hong Kong, have issued guidelines for reducing and mitigating hacking risks. Securities and Exchange Commission (SEC) recently discovered that 26 percent of U.S. Insurance: The firm should communicate with its insurance company and review policy coverage.

Data breaches

Data breaches Insurance Authentication Risk

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

Regulators worldwide, including the Securities and Futures Commission of Hong Kong, have issued guidelines for reducing and mitigating hacking risks. Securities and Exchange Commission (SEC) recently discovered that 26 percent of U.S. Insurance: The firm should communicate with its insurance company and review policy coverage.

Data breaches

Data breaches Insurance Authentication Risk

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

ARMA International

APRIL 28, 2022

I have overseen two significant projects: an electronic discovery production and disaster response and recovery effort. Covering all computers and file cabinets in plastic sheeting. . The plan was to meet the insurance coordinator at the Howard Avenue office at 8:30 a.m. The insurance coordinator proposed stabilizing in place.

Records Management

Records Management Archiving Insurance Communications

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

eDiscovery Daily

APRIL 7, 2019

I referenced the fact that all 50 states (plus DC, Guam, Puerto Rico and the Virgin Islands) have security breach notification laws , but I was not aware of any specific guidelines or opinions relating to a lawyer’s duty regarding data breach notification. Please remove all laptops from docking stations & keep turned off. *No

Data breaches

Data breaches Cybersecurity e-Discovery Computer and Electronics

German court: monitoring of employees by key logger is not allowed

Data Protection Report

AUGUST 8, 2017

Subsequently, the firm installed key logger software on its employees’ computers. When reviewing the files created by the software, the employer became aware that an employee had used his work computer for private purposes during working hours and, thereupon, terminated the employment relationship.

Computer and Electronics

Computer and Electronics Insurance Privacy GDPR

Multi-Factor Authentication Best Practices & Solutions

eSecurity Planet

OCTOBER 5, 2021

But even when passwords are secure, it’s not enough. Initially, security vendors only offered two-factor authentication. Since then, security vendors have introduced new methods for authentication, which can be layered to create a multi-factor authentication solution. This post has been updated for 2021. Something you have.

Authentication

Authentication Passwords Access Computer and Electronics

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. There’s issue number two. but couldn’t see Weibrecht Law’s missing device.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. There’s issue number two. but couldn’t see Weibrecht Law’s missing device.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

To get the most from blockchain in government, a sharing mindset is needed

CGI

MAY 13, 2018

When I was at university earning my Masters in Computer Science, I devoted a lot of my coursework to distributed computing. Agencies can increase public trust through blockchain transparency and introduce new citizen interactions (like secure voting) and value-added services by adopting blockchain. ACT-IAC guidance.

Blockchain

Blockchain Government Computer and Electronics Mining

German DPAs Address a Wide Range of Topics at Annual Conference and Adopt Resolutions

Hunton Privacy

OCTOBER 9, 2013

securing electronic communications by implementing and developing end-to-end encryption. Resolution on the Need for Action in the Area of Public Security. The DPAs request to strengthen the rights of the private and intimate sphere of patients’ and insured patients’ lives. Resolution on End-to-End Encryption.

Computer and Electronics

Computer and Electronics Encryption Communications Insurance

The Hacker Mind Podcast: Hacking High-Tech Cars

ForAllSecure

NOVEMBER 9, 2022

Often the tiny flashing light on the dashboard also alerts would-be criminals that the car is protected by the latest form of anti theft security. A sophisticated set of encryption and electronics is at work inside the vehicle. Just because it has all the bells and whistles doesn’t necessarily mean it’s secure.

Computer and Electronics

Computer and Electronics Manufacturing Encryption Communications

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Mister Chairman and Members of the Committee, thank you for the opportunity to testify today concerning the security of credit data. My name is Bruce Schneier, and I am a security technologist. Before the. Committee on Energy and Commerce.

Personal data

Personal data Computer and Electronics Privacy Data breaches

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

eDiscovery Daily

JANUARY 10, 2019

The lawsuit alleges that Fort Wayne-based Medical Informatics Engineering and its subsidiary NoMoreClipboard “failed to take adequate and reasonable measures to ensure their computer systems were protected,” resulting in a 2015 breach that gave hackers access to the personal healthcare information of 3.9 million US citizens.

Data breaches

Data breaches Cybersecurity Computer and Electronics Insurance

Florida Amends Breach Notification Law to Cover Health Data, Tighten Notice Deadline and Require State Regulator Notification

Hunton Privacy

JULY 10, 2014

In addition, the definition of “personal information” now includes a “username or e-mail address, in combination with a password or security question and answer that would permit access to an online account.”. steps that have been taken to rectify the breach.

Computer and Electronics

Computer and Electronics Insurance Passwords Access

Debut of the Texas State Records Retention Schedule (RRS): 5th Edition – 5/10/2020

The Texas Record

MAY 1, 2020

2.1.001 Processing Files These types of records should be classified under Master Files and Application Data (2.1.002) and Computer Software Programs (2.1.007), as applicable. 2.2.004 Computer Job Schedules and Reports This type of record should be classified under Activity Reports (1.1.069).

Computer and Electronics

Computer and Electronics Insurance Paper Sales

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

Hunton Privacy

MARCH 22, 2016

million settlement with the Minnesota Attorney General for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, and various Minnesota debt collection and consumer protection laws. In 2012, Accretive entered into a $2.5

Computer and Electronics

Computer and Electronics Risk Passwords Privacy

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Definition of Personal information and Sensitive Personal information “Personal information” means any kind of information relating to an identified or identifiable natural person, either electronically or otherwise recorded, but excluding information that has been de-identified or anonymised.

Data Privacy

Data Privacy Privacy Compliance Analytics

Saudi Arabia’s New Data Protection Law – What you need to know

DLA Piper Privacy Matters

OCTOBER 7, 2021

This include that data controllers must not use personal means of communications, including postal and electronic addresses, of the data subject in order to sent promotional or awareness materials without first obtaining the consent of the data subject, and providing the data subject with a mechanism to opt out. Credit data access.

Personal data

Personal data Compliance Computer and Electronics IoT

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Countless office workers were forced to get back to their jobs after Reddit suspended a host of accounts in light of security concerns. Facebook said that the breach was discovered in January 2019 as part of an internal security review.

Data breaches

Data breaches GDPR Passwords Personal data

2017 eDiscovery Case Law Year in Review, Part 3

eDiscovery Daily

JANUARY 9, 2018

Here are three cases related to privilege issues, including one where the court granted a quick peek request by the plaintiff, citing the “court’s heavy caseload and limited resources”: Putting Information on File Share Site without Protection Waives Privilege, Court Rules : In Harleysville Insurance Co. Los Alamos National Security, LLC et.

e-Discovery

e-Discovery Computer and Electronics Communications Cloud

Change Healthcare Breach Hits 100M Americans

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Trending Sources

2024 Cybersecurity Laws & Regulations

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

Insurance Occurrence Assurance?

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

Understanding HIPAA: A Guide to Avoiding Common Violations

Information Management in the Not-So-Distant Future of Health Care

Largest hospital system in New Jersey was hit by ransomware attack

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

Business ID Theft Soars Amid COVID Closures

Happy 13th Birthday, KrebsOnSecurity!

Best Digital Forensics Tools & Software for 2021

HHS Announces HIPAA Settlement with UMass

Five Steps to HIPAA Security Compliance

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

Five Steps to HIPAA Security Compliance

Five Steps to HIPAA Security Compliance

OCR Enters into Record Settlement with Anthem

What IG Professionals Should Know About the Internet of Bodies

Fund Managers Targeted in Sophisticated Cyberattacks

Fund Managers Targeted in Sophisticated Cyberattacks

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

German court: monitoring of employees by key logger is not allowed

Multi-Factor Authentication Best Practices & Solutions

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

To get the most from blockchain in government, a sharing mindset is needed

German DPAs Address a Wide Range of Topics at Annual Conference and Adopt Resolutions

The Hacker Mind Podcast: Hacking High-Tech Cars

Me on the Equifax Breach

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

Florida Amends Breach Notification Law to Cover Health Data, Tighten Notice Deadline and Require State Regulator Notification

Debut of the Texas State Records Retention Schedule (RRS): 5th Edition – 5/10/2020

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Saudi Arabia’s New Data Protection Law – What you need to know

2019 end-of-year review part 1: January to June

2017 eDiscovery Case Law Year in Review, Part 3

Stay Connected