Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. This notice requirement explicitly applies to cybersecurity incidents occurring to the covered entity itself, its affiliates, or a third-party service provider.

Financial Services 111

Financial Services Cybersecurity Compliance Government 111

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity 62

Cybersecurity Financial Services Encryption Compliance 62

The Last Watchdog

FEBRUARY 11, 2024

Related: The case for augmented reality training Because of this, cybersecurity investments and regulatory oversight are increasing at an astounding rate , especially for those in the financial services industry, bringing an overwhelming feeling to chief compliance officers without dedicated security teams. The list goes on.

Risk 234

Risk IT Financial Services Cybersecurity 234

Hunton Privacy

FEBRUARY 22, 2021

Lastly, the Alert provides recommendations to secure data, noting that (1) regulated entities should review whether it is necessary to display any NPI (even redacted NPI) and (2) NPI should not be displayed on public-facing sites unless there is a compelling reason to do so.

Financial Services 86

Financial Services Insurance Cybersecurity Analytics 86

The Last Watchdog

AUGUST 15, 2018

In a move to blanket the Internet with encrypted website traffic, Google is moving forward with its insistence that straggling website publishers adopt HTTPS Secure Sockets Layer (SSL). Related: How PKI can secure IoT. This makes any personal information and details of financial transactions typed on HTTP web pages easy pickings.

Security 203

Security Encryption Authentication Financial Services 203

Hunton Privacy

JUNE 9, 2022

515 , making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law (“MDL-668”). Information Security Program Requirements. Cybersecurity Event Investigation and Notification Requirements.

Insurance 107

Insurance Security Information Security Cybersecurity 107

OpenText Information Management

NOVEMBER 22, 2023

We’ve experienced economic, geopolitical, technological, and societal challenges over recent months with the ongoing cost-of-living crisis, high interest rates, inflation, global conflicts, catastrophic weather events, the rise in artificial intelligence such as ChatGPT, to name only a few.

Financial Services 59

Financial Services Artificial Intelligence Customer Experience Content services 59

Krebs on Security

NOVEMBER 16, 2022

financial services firm Ameriprise uses the domain ameriprise.com; the Disneyland Team’s domain for Ameriprise customers is [link] [brackets added to defang the domain], which displays in the browser URL bar as ? Most Web browser makers, however, have spent years adding security protections to block such nefarious activity.

Phishing 336

Phishing Authentication Financial Services Access 336

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services 60

Financial Services Communications Compliance Risk 60

Data Matters

MAY 4, 2022

By adding these two global market leaders, we are expanding our expertise to better support our clients with the ever growing risks associated with national security and cybersecurity matters across our multi-disciplinary practices.”. political parties. appeared first on Data Matters Privacy Blog.

Cybersecurity 165

Cybersecurity Marketing Security Privacy 165

Security Affairs

MARCH 14, 2022

Ongoing attacks could cause severe damages to multiple sectors, including transportation, communication, financial services, government facilities, nuclear reactors, and critical manufacturing. This sudden surge in attacks is due to the geopolitical events of the current Russian – Ukraine conflict.” Pierluigi Paganini.

Risk 246

Risk Financial Services Manufacturing Communications 246

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Systemic risk includes critical third-party vendors and catastrophic cyber events involving third parties, such as NotPetya and SolarWinds. The post New York Department of Financial Services Issues First Guidance by a U.S.

Insurance 78

Insurance Financial Services Cybersecurity Risk 78

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Risk Phishing 71

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security 110

Security Cloud Compliance Analytics 110

Krebs on Security

JANUARY 25, 2022

But Jim has long had a security freeze on his credit file with the three major consumer credit reporting bureaus , and none of the lenders seemed willing to proceed without at least a peek at his credit history. ” According to the Native American Financial Services Association (NAFSA), a trade group in Washington, D.C.

Financial Services 245

Financial Services IT Data breaches Passwords 245

Security Affairs

MARCH 29, 2022

Earmarked by the FBI as a particular threat to the financial service industry just over a year ago, the increase of internet traffic, data breaches and API usage all contribute to the perfect conditions for successful credential stuffing attacks. Salt Security says in their recommendations for how to defend against credential stuffing.

IT 246

IT Passwords Authentication Data Privacy 246

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. Any cybersecurity event that affects a third-party service provider that also affects the covered entity. Cybersecurity Governance.

Financial Services 55

Financial Services Cybersecurity Ransomware Risk 55

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 67

Financial Services Cybersecurity Insurance Risk 67

eSecurity Planet

MAY 27, 2021

With almost every aspect of business becoming more digital, enterprise network security software minimizes the impact of cyberattacks — especially as guarding against them protects a company’s operations and safeguards its competitiveness in a fast-moving marketplace. Top network security tools. Network Security Product.

Security 118

Security Cloud Analytics Access 118

Data Protection Report

OCTOBER 17, 2024

On October 16, 2024, the New York Department of Financial Services (“NYDFS” or “DFS”) issued guidance raising awareness about combatting cybersecurity risks arising from artificial intelligence (“AI”) used by DFS licensees, such as insurers and virtual currency businesses.

Artificial Intelligence 56

Artificial Intelligence Financial Services Risk Cybersecurity 56

Krebs on Security

SEPTEMBER 27, 2019

That action set off a chain of events that led another financial institution that helps MyPayrollHR process payments to briefly pull almost $26 million out of checking accounts belonging to employees at more than 1,000 companies that use MyPayrollHR. .” 1, 2019 to Aug. His passport also was seized.

Financial Services 278

Financial Services Insurance Cloud IT 278

The Last Watchdog

SEPTEMBER 18, 2024

18, 2024, CyberNewsWire — INE Security is proud to announce that it has been named a winner in the prestigious 2024 SC Awards, named Best IT Security-Related Training Program. This designation underscores INE Security’s commitment to excellence and leadership in the cybersecurity industry. Cary, NC, Sept.18,

Cybersecurity 130

Cybersecurity Education Financial Services Communications 130

OpenText Information Management

NOVEMBER 22, 2024

OpenText is focused at the application, infrastructure, supply chain, and security level and we have purposely designed our OpenText cloud platform for information management. It’s global, trusted, modern machine-based security,” Mark said. Security is at the heart of what we do and in every one of our products,” Muhi said.

Cloud 75

Cloud Financial Services Education Marketing 75

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity 115

Cybersecurity Insurance Phishing Ransomware 115

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Information Security 104

Hunton Privacy

JULY 12, 2021

On June 30, 2021, the New York State Department of Financial Services (“NYDFS,” the “Department”) issued guidance to all New York state regulated entities on ransomware (the “Guidance”), identifying controls it expects regulated companies to implement whenever possible.

Ransomware 102

Ransomware Security Financial Services Cybersecurity 102

The Last Watchdog

MARCH 1, 2019

There’s a frantic scramble going on among those responsible for network security at organizations across all sectors. Enterprises have dumped small fortunes into stocking their SOCs (security operations centers) with the best firewalls, anti-malware suites, intrusion detection, data loss prevention and sandbox detonators money can buy.

Digital transformation 193

Digital transformation Marketing Analytics Risk 193

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “training and monitoring” requirements under Section 500.14 Additional Requirements.

Financial Services 55

Financial Services Cybersecurity Risk Passwords 55

IBM Big Data Hub

NOVEMBER 29, 2023

Financial Services clients are increasingly looking to modernize their applications. Moreover, many of these financial services applications support regulated workloads, which require strict levels of security and compliance, including Zero Trust protection of the workloads. initiative.

Cloud 89

Cloud Financial Services Security Compliance 89

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. On November 9, 2022, NYDFS published a first draft of the proposed Amendment and received comments from stakeholders over a 60-day period.

Cybersecurity 113

Cybersecurity IT Compliance Financial Services 113

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. The regulation requires that a licensee report a cybersecurity event to NYDFS within 72 hours of its determination of the event.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Thales Cloud Protection & Licensing

DECEMBER 4, 2019

While this event is still considered one of the most grandiose thefts, financial institutions today collectively face digital attacks that easily rival it. Theft and other data security incidents cost financial institutions millions of dollars and result in more consumer records being lost or stolen, year after year.

Financial Services 17

Financial Services Encryption Cloud Digital transformation 17

IBM Big Data Hub

NOVEMBER 14, 2023

.” This cloud-native development and testing environment for z/OS applications is revolutionizing the modernization process by enabling secure DevSecOps practices. The platform can be automated through a standardized framework validated for Financial Services, leveraging the IBM Cloud Security and Compliance Center service (SCC).

Financial Services 93

Financial Services Cloud Compliance Digital transformation 93

Lenny Zeltser

JUNE 21, 2024

Organizing events that gather cybersecurity leaders requires significant effort and sponsorships. Unfortunately, some events and communities exclude CISOs who work for security vendors. Here's why and how we can address this issue to improve such events and the community at large. Lower, the CISOs at hardware vendors.

Security 56

Security Sales Financial Services Cybersecurity 56

IBM Big Data Hub

OCTOBER 10, 2023

These attacks are even more detrimental in critical systems, which include IT infrastructure and financial services organizations. IBM Cloud for Financial Services This is where IBM Cloud for Financial Services shines—it helps clients to fill that gap by supporting innovation while guaranteeing security and compliance.

Cloud 73

Cloud Financial Services Compliance Risk 73

Thales Cloud Protection & Licensing

OCTOBER 28, 2024

As DORA emphasizes both resilience and cybersecurity, these techniques are indispensable in ensuring that the financial sector can uphold privacy standards while meeting operational resilience goals. This may include the usage of data and the training of models within a Confidential Computing secure enclave.

Privacy 62

Privacy Encryption Compliance Risk 62

erwin

OCTOBER 1, 2020

The global pandemic is the single most disruptive event in modern times. But challenges persist if your organization doesn’t take proper precautions — from human resources to productivity and IT-security – especially where regulations such as the European Union’s General Data Protection Regulation (GDPR) are concerned.

Compliance 143

Compliance Communications Sales Financial Services 143