Definition, Insurance and Military - Information Management Today

Connecticut Tightens its Data Breach Notification Laws

Data Protection Report

OCTOBER 3, 2021

The amendment: Expands the definition of “personal information”; Shortens the notification deadline after discovery of a breach from 90 to 60 days; Removes the requirement to consult with law enforcement as part of a risk assessment; Deems compliant any person subject to and in compliance with HIPAA and HITECH; and.

Data breaches

Data breaches IT Insurance Passwords

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Hunton Privacy

JUNE 22, 2020

The amendments to Vermont’s Security Breach Notice Act include expanding the definition of Personally Identifiable Information (“PII”), expanding the definition of a breach to include login credentials and narrowing the permissible circumstances under which substitute notice may be used.

Data breaches

Data breaches Privacy Education Data Privacy

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Hunton Privacy

AUGUST 2, 2021

In passing the law, Connecticut joins a number of other states in expanding the definition of “personal information” in its data breach notification statute. requiring “preliminary substitute notice” to individuals if a business cannot provide direct notification within the 60-day notification timeframe. Cybersecurity Safe Harbor (HB 6607).

Cybersecurity

Cybersecurity Insurance Military Data Privacy

Washington Amends Data Breach Notification Law

Hunton Privacy

MAY 9, 2019

The new requirements include the following: Expanded Definition of Personal Information. HB 1071 expands the definition of “personal information.” As reported by Bloomberg Law , on May 7, 2019, Washington State Governor Jay Inslee signed a bill ( HB 1071 ) amending Washington’s data breach notification law.

Data breaches

Data breaches Passwords Insurance Military

Colorado Amends Data Breach Notification Law and Enacts Data Security Requirements

Hunton Privacy

JUNE 14, 2018

Applicability: The information security and disposal provisions of the Bill apply to “covered entities,” defined as persons that maintain, own or license personal identifying information in the course of the person’s business, vocation or occupation.

Data breaches

Data breaches Security Passwords Military

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

Data Protection Report

MARCH 7, 2024

The proposed definition of “listed identifier” is Full or truncated government identification or account number (such as a Social Security Number, driver’s license or state identification number, passport number, or Alien Registration Number) [Note that this definition apparently includes truncated Social Security Numbers.]

Access

Access Military Compliance Personal data

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Data Protection Report

FEBRUARY 21, 2018

On Wednesday, February 14, 2018, an amended bill passed unanimously in Colorado’s House Committee on State, Veterans and Military Affairs. The proposed bill overlaps with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and state privacy laws.

Data Privacy

Data Privacy Privacy Military Insurance

A Cyber Insurance Backstop

Schneier on Security

FEBRUARY 28, 2024

In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The 9/11 attacks cost insurers and reinsurers $47 billion. 11, 2001, terrorist attacks.

Insurance

Insurance Government Cybersecurity Risk

The Hacker Mind Podcast: The Internet As A Pen Test

ForAllSecure

MAY 17, 2023

Chris Gray of Deep Watch talks about the view from the inside of a virtual SOC, the ability to see threats against a large number of SMB organizations, and the changes to cyber insurance we’re seeing as a result. VAMOSI: Cybersecurity insurance. cyber insurance as a whole was changing heavily. And why is that?

Insurance

Insurance Privacy Ransomware GDPR

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

For example, here’s Jerry Lewis in a scene from a 1950s film, where he’s trying to break into a Nazi German military base. That's quite a narrow definition. Moffatt: Oh, it's a really good one and you can ask 10 people and you'll easily get five different answers and you definitely get the two counts. Lewis: Good.

Passwords

Passwords Authentication Access Data breaches

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

IT Governance

APRIL 22, 2024

Only 5 definitely haven’t had data breached. NATO to launch new cyber centre Acknowledging that “cyberspace is contested at all times”, NATO will create a new cyber centre at its military headquarters in Mons, Belgium. 226 of them are known to have had data exfiltrated, exposed or otherwise breached.

Data Privacy

Data Privacy Privacy Manufacturing Security

What is personal information under the CCPA?

Collibra

NOVEMBER 2, 2020

The CCPA maintains a broad definition of “personal information” or PI, referring to it as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.”. What is personal information? Biometric information.

Privacy

Privacy Education Insurance GDPR

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

IT Governance

APRIL 9, 2024

Other databases contained health insurance data, such as patents’ names, dates of birth, addresses and medical data. Only 2 definitely haven’t had data breached. EyeCare Services Partners exposes more 3.5 The biggest database in the blob contained 3.1 million patients and 1.6 million unique Social Security numbers.

Data Privacy

Data Privacy Privacy Security Manufacturing

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

Only 1 definitely hasn’t had data breached. Publicly disclosed data breaches and cyber attacks: full list This week, we’ve found 130,036,285 records known to be compromised, and 116 organisations suffering a newly disclosed incident. 96 of them are known to have had data exfiltrated, exposed or otherwise breached.

Data Privacy

Data Privacy Privacy Manufacturing Security

CyberheistNews Vol 13 #23 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing

KnowBe4

JUNE 6, 2023

Within that definition, spear phishing can be accomplished in thousands of different ways, ranging from basic attacks to more advanced, longer-range attacks. China's People's Liberation Army (PLA) is increasingly focused on "Cognitive Warfare," a term referring to artificial intelligence (AI)-enabled military systems and operational concepts.

Phishing

Phishing Security awareness IT Passwords

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Only 3 definitely haven’t had data breached. Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc. 92 of them are known to have had data exfiltrated, exposed or otherwise breached. Organisation(s) Sector Location Data breached?

Data Privacy

Data Privacy Privacy Security Data breaches

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. Only 2 definitely haven’t had data breached. 184 of them are known to have had data exfiltrated, exposed or otherwise breached.

Data Privacy

Data Privacy Manufacturing Privacy Security

Washington, D.C. Amends Data Breach Notification Law, Adds Data Security Requirements

Hunton Privacy

APRIL 3, 2020

Key provisions of the Bill include the following: Revised Definition of Personal Information. The Bill defines personal information as an individual’s name in combination with any of the following data elements: Social Security number, individual taxpayer identification number, passport number, driver’s license number, D.C.

Data breaches

Data breaches Security Insurance Passwords

Information Management Today

Connecticut Tightens its Data Breach Notification Laws

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Trending Sources

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Washington Amends Data Breach Notification Law

Colorado Amends Data Breach Notification Law and Enacts Data Security Requirements

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

Amended Colorado Bill Aims to Enhance Data Privacy Laws

A Cyber Insurance Backstop

The Hacker Mind Podcast: The Internet As A Pen Test

The Hacker Mind Podcast: Going Passwordless

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

What is personal information under the CCPA?

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

CyberheistNews Vol 13 #23 [Wake-Up Call] It's Time to Focus More on Preventing Spear Phishing

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

Washington, D.C. Amends Data Breach Notification Law, Adds Data Security Requirements

Stay Connected