Krebs on Security

NOVEMBER 19, 2021

Ken Otsuka is a senior risk consultant at CUNA Mutual Group , an insurance company that provides financial services to credit unions. “The fraud losses can escalate quickly due to the sheer number of members that can be targeted on a single day over the course of consecutive days,” Otsuka said.

IT 363

IT Passwords Authentication Phishing 363

Security Affairs

MAY 13, 2019

Exposed data includes full names, birth dates, national ID numbers, medical insurance numbers, and other personal data. Of course, it is impossible to determine if anyone else has accessed the data. The database contained 3.4 ” reads the blog post published by Diachenko. ” concludes Diachenko.

Authentication 217

Authentication Insurance Personal data Ransomware 217

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 68

Insurance Security Cybersecurity Data breaches 68

Security Affairs

JANUARY 20, 2023

The company is sending out breach notification letters to the impacted customers, threat actors had access to names, addresses, Social Security Numbers, individual tax identification numbers, dates of birth for PayPal users, and of course transaction histories. ” said Gal.

Data breaches 246

Data breaches Passwords Insurance Access 246

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance 68

Insurance Security Cybersecurity FOIA 68

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance 70

Insurance Cybersecurity Risk Education 70

Security Affairs

NOVEMBER 13, 2019

The membership also requested a sum of money, normally $5,000, as insurance. . Of course, Russian officials also made opposition to the extradition. ” In October, the Israel justice minister approved the extradition of Alexei Bourkov to the United States.

Insurance 190

Insurance Sales Security IT 190

DLA Piper Privacy Matters

MARCH 27, 2023

LOPMI introduces amendments to the insurability of losses and damages paid in response to cyber-attacks, including in relation to ransom payments – requiring that the payment of insurance compensation be conditional on the filing of a complaint, within a 72 hour time frame, to competent authorities.

Insurance 52

Insurance Risk Ransomware Cybersecurity 52

Dark Reading

JUNE 28, 2021

What if insurers were to offer companies an incentive -- say, a discount -- for better protecting themselves? You know, the way car insurance companies offer lower premiums to customers who take a driver's ed course.

Insurance 48

Insurance 48

Security Affairs

NOVEMBER 20, 2023

Over the course of his 20+ years of IT and Security, Ross has served in a variety of operations and infosec roles for companies in the manufacturing, healthcare, real estate, business insurance, and technology sectors. He has experience with ISO 27001 and SOC 2 Type 2 implementation and maintenance.

Authentication 340

Authentication Risk Government Security 340

Security Affairs

NOVEMBER 26, 2018

Under the Health Insurance Portability and Accountability Act (HIPAA), entities affected by the law must inform authorities and the impacted individuals within 60 days , but only if 500 or more people are affected. Laws, of course, affect how soon companies must report cybersecurity incidents.

Data breaches 278

Data breaches Personal data GDPR Cybersecurity 278

Schneier on Security

NOVEMBER 13, 2020

If you want your insurance company to have access to your fitness data, you grant it through your pod. This is a significant step forward to realizing Tim’s vision : The technologies we’re releasing today are a component of a much-needed course correction for the web. It’s yours.

IoT 142

IoT Insurance Access Government 142

Security Affairs

APRIL 28, 2022

The criminal group had been mailing malware-ridden USBs to various entities in the transport, insurance, and defense industries under the guise that they originated from a trusted source, such as Amazon and the US Department of Health and Human Services.

Cybersecurity 246

Cybersecurity Access Insurance Security 246

Data Protection Report

OCTOBER 3, 2021

Connecticut’s amended statute follows the course of many other states in deeming as compliant with the statute any person who is subject to and in compliance with the Health Insurance Portability and Accountability Act (“HIPAA”) and the Health Information Technology for Economic and Clinical Health Act (“HITECH”).

Data breaches 142

Data breaches IT Insurance Passwords 142

eSecurity Planet

OCTOBER 18, 2022

First, call the cyber insurance company that issued the organization’s cybersecurity policy. Most insurance companies require specific incident response vendors, procedures, and reporting that must be met to meet the standards to be insured. Insured companies often will not have options. The First Calls After an Attack.

Ransomware 145

Ransomware Encryption Insurance Access 145

The Last Watchdog

JUNE 2, 2022

Big banks and insurance companies instilled the practice of requesting their third-party vendors to fill out increasingly bloated questionnaires, called bespoke assessments, which they then used as their sole basis for assessing third-party risk. Related: A call to share risk assessments.

Security 266

Security Risk Digital transformation Insurance 266

Security Affairs

APRIL 29, 2019

Of course, there are ways to stay safe online and in the real world. This made us suspect that the database is owned by an insurance, healthcare, or mortgage company. Addresses can easily lead to phone numbers, making people easy targets for phishing scams. Dates of birth and postal codes are common answers to security questions.

Data breaches 273

Data breaches Phishing Ransomware Cloud 273

Hunton Privacy

OCTOBER 14, 2014

On October 8, 2014, the Department of Homeland Security reported that over the course of several months, the network of a large critical manufacturing company was compromised. The incident raises some issues for cyber insurance. That the incident occurred over several months suggests that trigger dates for cyber insurance be examined.

Insurance 40

Insurance Cybersecurity Manufacturing Information Security 40

Krebs on Security

JUNE 30, 2021

In a report released in 2019 (PDF), Agari profiled a group it dubbed “ Scattered Canary ” that is operating principally out of West Africa and dabbles in a dizzying array of schemes, including BEC and romance scams, FEMA and SBA loans, unemployment insurance fraud, counterfeit checks and of course money laundering.

Insurance 312

Insurance IT Education Government 312

Krebs on Security

DECEMBER 13, 2021

But perhaps in response to the public outcry over the HSE disruption, Conti reversed course and gave the HSE the decryption keys without requiring payment. That compliance centered on the Health Insurance Portability and Accountability Act (HIPPA), which prioritizes protecting the integrity and privacy of patient data.

Ransomware 331

Ransomware Cybersecurity Phishing Security 331

The Last Watchdog

OCTOBER 26, 2021

Regulations like Europe’s General Data Protection Regulation and California’s Privacy Rights Act , along with numerous industry standards in the technology, banking and insurance sectors loom large – imposing the specter of audits and the threat of fines. Change, of course, is never easy.

Digital transformation 230

Digital transformation Compliance Encryption Authentication 230

IT Governance

JUNE 1, 2021

But, of course, the nature of ransomware attacks makes it hard for organisations to determine how many records were affected. For the second month in a row, ransomware has dominated our list of data breaches and cyber attacks. Of the 128 publicly disclosed incidents that we discovered in May, more than 40% of them were ransomware attacks.

Data breaches 124

Data breaches Ransomware Insurance Energy and Utilities 124

Data Protection Report

JANUARY 5, 2021

The term “notification incident” would mean that a banking organization believes in good faith a computer security incident” could materially disrupt, degrade, or impair—.

Insurance 141

Insurance Paper Encryption Security 141

CGI

SEPTEMBER 12, 2017

Data analytics – how should insurers look to the future? With a plethora of new data sources across the property and casualty (P&C) general insurance lifecycle now becoming available, how do insurers create an all-encompassing data analytics policy for the future? Tue, 09/12/2017 - 03:00. Connected and monitored energy usage.

Insurance 40

Insurance Analytics Risk IoT 40

DXC Technology

JANUARY 13, 2020

For years, women have been under-represented in science, technology, engineering and mathematics (STEM) courses and occupations. Although more women are starting to work in STEM fields, the gender gap remains high. Only about a quarter of STEM workers are women, and female representation on boards is lower than in other industries.

Insurance 10

Insurance IT 10

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance 88

Insurance e-Delivery Paper Cybersecurity 88

CGI

AUGUST 31, 2016

Insurers’ role will be critical in improving cybersecurity standards. And, of course, our world is becoming increasingly digital in nature, with all kinds of services—from finance to health, energy and tax affairs—becoming digitally delivered. Wed, 08/31/2016 - 08:00. Where such data exists, often it is not shared.

Insurance 40

Insurance Cybersecurity Risk Marketing 40

CGI

FEBRUARY 28, 2017

Insurers’ digital focus is looking through the wrong ‘lens’. Read any article on digital insurance and it seems to me that it is all about the insurers! harini.kottees…. Tue, 02/28/2017 - 03:52. This again causes consumer dissatisfaction with the industry as a whole and drives unwanted consumer behaviours at the point of claim.

Insurance 40

Insurance Big data IoT Manufacturing 40

The Last Watchdog

NOVEMBER 27, 2022

Many people who receive SNAP benefits are also eligible for Medicaid, Temporary Assistance for Needy Families (TANF), and the Children’s Health Insurance Program (CHIP). The student’s digital wallet can expand over time with relevant data such as course credits, grade point averages, and degrees. Medical marijuana access.

Government 211

Government Blockchain Access Insurance 211

KnowBe4

APRIL 25, 2023

link] [Head Scratcher] More Companies With Cyber Insurance Are Hit by Ransomware Than Those Without? In an interesting twist, new data hints that organizations with cyber insurance may be relying on it too much, instead of shoring up security to ensure attacks never succeed. Date/Time: Wednesday, May 3, @ 2:00 PM (ET) Save My Spot!

Insurance 103

Insurance Security awareness Phishing Ransomware 103

Krebs on Security

DECEMBER 12, 2018

The stated use cases for the Cyber Risk Score include the potential for cyber insurance pricing and underwriting, and evaluating supply chain risk (i.e., Chamber of Commerce to evaluate more than 2,500 U.S. the security posture of vendor partners).

Security 246

Security Energy and Utilities Risk Data breaches 246

CGI

MARCH 1, 2017

‘The Organist Entertains’ – reaction to the insurance Ogden discount rate cut. When I first saw the word ‘Ogden’ in the Insurance press I was immediately reminded of the long running BBC programme ‘the organist entertains’ hosted by Nigel Ogden. ravi.kumarv@cgi.com. Wed, 03/01/2017 - 05:02. I propose an alternative approach.

Insurance 40

Insurance IT 40

IT Governance

JUNE 18, 2018

One in five schools and colleges have fallen victim to cyber crime, according to research from the specialist insurer Ecclesiastical, yet the majority (74%) of educational establishments claim to be “fully prepared” to deal with such attacks. . Phishing and ransomware e-learning course . Explain what phishing is. .

Phishing 83

Phishing Ransomware Education Insurance 83

The Last Watchdog

AUGUST 19, 2021

as well as insurance and merchant accounts, to commit insurance fraud and wire fraud. Account takeovers can be used to steal money at its very root; and fraudsters can also use this to access loyalty accounts for airlines, hotels, etc., Hacks and breaches are inevitable even for the most well-protected enterprise.

Data breaches 235

Data breaches Authentication Access Personal data 235

IT Governance

JUNE 1, 2023

We offer a variety of resources to help understand and mitigate threats, from training courses and consultancy services to free guides. MCNA Insurance MCNA Insurance, also known as MCNA Dental, was caught up in a cyber hacking incident last week, in which 112 covered entities were affected.

Data breaches 121

Data breaches Insurance Personal data Ransomware 121

CGI

SEPTEMBER 5, 2018

UK Honey Bees and Insurance; an existential threat in the wings? There is of course one difference between the hive and the Insurance sector – the ability to respond. There is of course one difference between the hive and the Insurance sector – the ability to respond. Wed, 09/05/2018 - 04:28.

Insurance 40

Insurance Sales Marketing IT 40

IT Governance

SEPTEMBER 4, 2018

Last year, private healthcare giant BUPA suffered a breach affecting 108,000 health insurance policies when a rogue employee copied and removed information from the organisation. The information affected is said to have included names, date of birth, nationalities and insurance membership numbers.

Healthcare 78

Healthcare Insurance Manufacturing Risk 78