Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Educate Insureds and Insurance Producers. individuals and businesses comply with ransomware payment demands in this October 2020 client alert.) regulator concerning the increasingly critical issue of cyberinsurance.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Security Affairs

JUNE 6, 2024

The FBI is informing victims of LockBit ransomware it has obtained over 7,000 LockBit decryption keys that could allow some of them to decrypt their data. The FBI is inviting victims of LockBit ransomware to come forward because it has obtained over 7,000 LockBit decryption keys that could allow them to recover their encrypted data for free.

Energy and Utilities 141

Energy and Utilities Ransomware Agriculture Encryption 141

Security Affairs

FEBRUARY 20, 2024

Law enforcement provided additional details about the international Operation Cronos that led to the disruption of the Lockbit ransomware operation. Yesterday, a joint law enforcement action, code-named Operation Cronos , conducted by law enforcement agencies from 11 countries disrupted the LockBit ransomware operation.

Energy and Utilities 139

Energy and Utilities Ransomware Manufacturing Agriculture 139

eSecurity Planet

JUNE 16, 2022

Encrypted threats spiked 167%, ransomware increased 105%, and 5.4 These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Ransomware. Ransomware is the fastest-growing trend. Mobile attacks.

Ransomware 144

Ransomware Cybersecurity Phishing Encryption 144

IT Governance

JULY 31, 2019

Two Puerto Rico hospitals report ransomware attacks (520,000). Alabama-based school says its systems have been wiped out, but won’t confirm whether ransomware is to blame (unknown). Steel plant Blastech becomes second Mobile-based organisation to be hit by ransomware this month (unknown). Ransomware. J’Syracuse?

Data breaches 111

Data breaches Ransomware Personal data Government 111

The Last Watchdog

MAY 1, 2019

In 2015, penetration tester Oliver Münchow was asked by a Swiss bank to come up with a better way to test and educate bank employees so that passwords never left the network perimeter. Customers in financial services, energy, government, healthcare and manufacturing sectors are using its testing and training modules.

Phishing 166

Phishing Financial Services Manufacturing Education 166

eSecurity Planet

NOVEMBER 16, 2021

Bad actors are increasingly using a technique called HTML smuggling to deliver ransomware and other malicious code in email campaigns aimed at financial services firms and other organizations, according to Microsoft researchers. See also: How to Prevent Ransomware Attacks. What Is HTML Smuggling?

Ransomware 119

Ransomware Education Phishing Passwords 119

eSecurity Planet

SEPTEMBER 30, 2021

“Over the past few months, we’ve seen actors provide access to services that call victims, appear as a legitimate call from a specific bank and deceive victims into typing an OTP or other verification code into a mobile phone in order to capture and deliver the codes to the operator,” the Intel 471 researchers wrote.

Authentication 112

Authentication Phishing Financial Services Passwords 112

Security Affairs

APRIL 6, 2023

Financial services are the main target for cybercriminals, so the threat for the organizations and their customers is severe. The leak also affected Bloom Money and Admiral Money – two financial companies based in the UK, and Reed, which is the UK’s top recruitment agency. env) belonging to idkit.com, owned by OCR Labs.

IT 98

IT Financial Services Access Risk 98

Data Protection Report

JANUARY 30, 2023

criminal justice; d. educational enrollment or opportunity; e. employment opportunities; f. financial or lending services; g. health-care services; h. housing; or i. insurance.

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

Security Affairs

APRIL 20, 2023

If malicious actors accessed the exposed data, the company could have faced devastating consequences and put their clients at risk, as financial services are the main target for cybercriminals. Another risk is the data being sold on the dark web, and ICICI Bank risking to be a victim of ransomware attacks,” added the Cybernews team.

Personal data 98

Personal data Phishing Risk Communications 98

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

In fact, according to the 2024 Thales Data Threat Report , more than 80% of organizations reported at least one breach in the last year, while ransomware attacks grew more frequent, with 28% of organizations reported experiencing an attack in 2024, compared to 22% in 2023. A host of threats continue to put enterprise data at risk.

Security 62

Security Encryption Data breaches Cybersecurity 62

Hunton Privacy

JUNE 12, 2017

The report concludes by providing a list of key resources and best practices for addressing cybersecurity threats that were gleaned from studying the financial services and energy sectors. improving information sharing of industry threats, risks and mitigations.

Cybersecurity 45

Cybersecurity Computer and Electronics Education Financial Services 45

KnowBe4

JUNE 20, 2023

Overall, the use of stolen credentials is the overwhelming leader in data breaches, being involved in nearly 45% of breaches – this is more than double the second-place spot of "Other" (which includes a number of types of threat actions) and ransomware, which sits at around 20% of data breaches.

Data breaches 100

Data breaches Phishing Security awareness Ransomware 100

KnowBe4

MARCH 28, 2023

This data makes it clear that security awareness training designed to educate users on the need to be continually vigilant, regardless of the device, is critical to an organization remaining protected against attacks. This enormous security gap leaves you open to business email compromise, session hijacking, ransomware and more.

Phishing 105

Phishing Security awareness Insurance Cybersecurity 105

DLA Piper Privacy Matters

MARCH 4, 2021

Security vulnerabilities including hacking, unauthorised access, malware, phishing and ransomware attacks totalled 462 breach notifications. Financial Services Sector Focus. Unauthorised disclosure of personal data continues to be the leading reason for breach notifications. Data Protection Officers.

GDPR 105

GDPR Compliance Data breaches Marketing 105

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security 108

Security Cloud Compliance Analytics 108

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. Obtain cybersecurity expertise to properly understand and evaluate cyber risk.

Insurance 70

Insurance Cybersecurity Risk Education 70

Data Matters

APRIL 23, 2018

In particular, in a blog article entitled, The NIST Cybersecurity Framework and the FTC , dated August 31, 2016, the FTC provided guidance suggesting that the NIST Cybersecurity Framework is consistent with the agency’s approach followed since the late 1990s in over 60 law enforcement actions and in business education guidance.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

Security Affairs

JUNE 16, 2023

DoJ charged a Russian national with conspiring to carry out LockBit ransomware attacks against U.S. The Justice Department announced charges against the Russian national Ruslan Magomedovich Astamirov (20) for his role in numerous LockBit ransomware attacks against systems in the United States, Asia, Europe, and Africa.

Ransomware 98

Ransomware Agriculture Education Government 98

KnowBe4

MAY 31, 2023

That's right – the financial services industry, at least according to cybersecurity vendor Armorblox's 2023 Email Security Threat Report. According to the report, the financial services industry as a target has increased by 72% over 2022 and was the single largest target of financial fraud attacks, representing 49% of all such attacks.

Phishing 102

Phishing File names Security awareness Risk 102

IT Governance

DECEMBER 11, 2023

suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. has suffered a second attack, this time by the BianLian ransomware group. Data breached: more than 59 million data records. Akumin Inc.

Data Privacy 89

Data Privacy Energy and Utilities Privacy Manufacturing 89

IT Governance

JANUARY 23, 2024

Source (New) Real estate USA Yes 46,906 Hampton-Newport News Community Services Board Source 1 ; source 2 ; source 3 (New) Healthcare USA Yes 44,312 Air Methods Source 1 ; source 2 (New) Healthcare USA Yes 34,016 GREYHOURS Source (New) Retail France Yes 18,700 Groveport Madison Schools Source 1 ; source 2 ; source 3 (Update) Education USA Yes 15.5

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

MARCH 11, 2024

Source (New) Professional services Netherlands Yes 28.3 Source (New) Professional services Netherlands Yes 28.3 Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc.

Data Privacy 70

Data Privacy Privacy Security Data breaches 70

IT Governance

FEBRUARY 21, 2024

ALPHV/BlackCat ransomware gang adds 2.7 TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 It is not known how long the database was publicly available, nor whether anyone else accessed it. Date breached: 384,658,212 records. Data breached: 2.7

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Data Matters

MAY 17, 2022

In March 2022, Congress passed the Strengthening American Cybersecurity Act, which was signed by President Biden and will require critical infrastructure entities to report cyber incidents within 72 hours and ransomware payments within 24 hours to CISA. Strengthening American Cybersecurity Act of 2022, S. 3600, 117th Cong. (as Persistence.

Cybersecurity 97

Cybersecurity Government Authentication Ransomware 97

IT Governance

APRIL 29, 2024

Source (New) Finance USA Yes 1,955,385 BerryDunn and Reliable Networks Source (New) Finance and IT services USA Yes 1,107,354 VISAV Limited Source (New) IT services UK Yes >1,000,000 Designed Receivable Solutions, Inc. Source 1 ; source 2 (Update) Finance USA Yes 498,686 J.P.

Data Privacy 83

Data Privacy Privacy Manufacturing Security 83