Information Security and Insurance - Information Management Today

Insurance scams via QR codes: how to recognise and defend yourself

Security Affairs

MARCH 12, 2024

The Postal Police has issued an alert to warn citizens against insurance scams using QR codes. In practice, fake insurance operators contact victims through calls, messages, or sponsorships on social networks, offering policies at advantageous prices. Online companies do not use generic domains or channels such as WhatsApp or Telegram.

Insurance

Insurance Education Personal data Sales

Insurance firm CNA discloses data breach after March ransomware attack

Security Affairs

JULY 9, 2021

Insurance giant CNA notifies customers of a data breach after the Phoenix CryptoLocker ransomware attack suffered in March. US insurance giant CNA is notifying customers of a data breach after the ransomware attack that it suffered in March. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Data breaches

Data breaches Insurance Ransomware Encryption

Crooks stole driver’s license numbers from Geico auto insurer

Security Affairs

APRIL 20, 2021

Car insurance provider Geico has suffered a data breach, attackers have stolen the driver’s licenses for policyholders for several weeks. Geico, the second-largest auto insurer in the U.S., We have reason to believe that this information could be used to fraudulently apply for unemployment benefits in your name.”

Insurance

Insurance Data breaches Sales Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

ISMG Editors’ Panel: Cyber Insurance; Ransomware Update

Data Breach Today

MAY 28, 2021

Also: Debating the Issue of Banning Ransom Payments In this week's panel discussion, four editors at Information Security Media Group discuss cyber insurance, persistent ransomware attacks and whether ransom payments should be banned.

Insurance

Insurance Ransomware Information Security Security

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

Security Affairs

SEPTEMBER 29, 2020

Gallagher (AJG) insurance giant disclosed a ransomware attack, the security breach took place on Saturday. Gallagher (AJG) global insurance brokerage firm confirmed that it was his with a ransomware attack on Saturday, September 26. US-based Arthur J. US-based Arthur J. Pierluigi Paganini. SecurityAffairs – hacking, AJG).

Insurance

Insurance Ransomware Data breaches Cybersecurity

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. Pierluigi Paganini.

Insurance

Insurance Data breaches Financial Services Passwords

Change Healthcare data breach exposed the private data of over half the U.S.

Security Affairs

JANUARY 26, 2025

” The figure is alarming: the 2024 cyberattack on the insurance giant exposed the private data of over half the U.S. According to the Associated Press, UnitedHealth booked $1.1 billion in total costs from the cyberattack in the second quarter. The final figure represents well over half of the U.S. population.”

Data breaches

Data breaches Insurance Ransomware Cybersecurity

Cyber Insurance and the Changing Global Risk Environment

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance. If the technology were to become unavailable, the resulting business impact could be mitigated with cyber insurance.

Insurance

Insurance Risk Cybersecurity Ransomware

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Non-profit health insurer Point32Health suffered a ransomware attack and has taken systems offline in response to the incident. Non-profit health insurer Point32Health has taken systems offline in response to a ransomware attack that took place on April 17. ” reads the statement published by the insurer.

Insurance

Insurance Ransomware Cybersecurity Education

HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost

Security Affairs

FEBRUARY 21, 2023

Recently emerged HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost. For those who have cyber insurance against ransomware attacks. That way you would have avoided a leak and decrypted your information. Very important! reads the ransom note.

Insurance

Insurance Ransomware Encryption IT

Change Healthcare data breach impacted over 100 million people

Security Affairs

OCTOBER 25, 2024

According to the Associated Press, UnitedHealth booked $1.1 billion in total costs from the cyberattack in the second quarter. In early March, the Alphv/BlackCat ransomware gang claimed responsibility for the attack and added the company to its Tor leak site.

Data breaches

Data breaches Ransomware Insurance Cybersecurity

First American Financial's SEC Breach Settlement: $488,000

Data Breach Today

JUNE 21, 2021

SEC: Executives Left in Dark About Vulnerability in File-Sharing System Title insurance company First American Financial Corp. Information security staff members were aware of the vulnerability in the company's EaglePro document-sharing system for five months but failed to fix it, the SEC reports.

Insurance

Insurance Data breaches Information Security Security

Apple, Cisco Strike Partnerships for Cyber Insurance

Data Breach Today

FEBRUARY 6, 2018

Policies Offer Incentives for Good Information Security Practices Apple and Cisco say they've partnered with insurers Aon and Allianz to offer cyber insurance policies for organizations that meet best security practices and use products from the technology companies.

Insurance

Insurance Information Security Risk Security

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

In December 2023, Elliptic and Corvus Insurance published a joint research that revealed the group accumulated at least $107 million in Bitcoin ransom payments since early 2022. reads the CSA. According to the experts, the ransomware gang has infected over 329 victims, including ABB , Capita , Dish Network , and Rheinmetall.

Ransomware

Ransomware Blockchain Insurance Data breaches

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

The university notified appropriate law enforcement entities, and the university’s Information Security Office (ISO) investigated and resolved the incident in consultation with an external firm that specializes in responding to ransomware attacks.” ” reads a press release published by the University.

Ransomware

Ransomware Insurance Encryption Information Security

ConnectOnCall data breach impacted over 900,000 individuals

Security Affairs

DECEMBER 16, 2024

. “While ConnectOnCall is not aware of any misuse of personal information or harm to patients as a result of this incident, potentially impacted individuals are encouraged to remain vigilant and report any suspected identity theft or fraud to your health plan or insurer, or financial institution.”

Data breaches

Data breaches Communications Insurance Cybersecurity

What Is Information Security Management?

IT Governance

FEBRUARY 22, 2022

Information security management is a way of protecting an organisation’s sensitive data from threats and vulnerabilities. The process is typically embedded via an ISMS (information security management system) , which provides the framework for managing information security.

Information Security

Information Security Security Data breaches Risk

Why Cyber Insurance is Essential in 2022

IT Governance

MAY 24, 2022

One of the most common ways to mitigate the risk of a cyber security incident is cyber insurance. These activities aren’t typically included in standard business insurance policies, which tend to only cover costs related to technical issues, such as corrupted hard drives and lost devices. The benefits of cyber insurance.

Insurance

Insurance Data breaches GDPR Ransomware

Packaging giant WestRock is still working to resume after recent Ransomware Attack

Security Affairs

FEBRUARY 6, 2021

WestRock is also working with its vendors so they are informed, and supply chains remain operational.” ” WestRock confirmed that it has cyber insurance business interruption insurance. The Company maintains a variety of insurance policies, including cyber insurance and business interruption insurance.

Ransomware

Ransomware Insurance Communications Security

Two States Enact Insurance Data Security Laws

Hunton Privacy

MAY 4, 2022

In April 2022, two states enacted insurance data security legislation based on the National Association of Insurance Commissioners (“NAIC”) Insurance Data Security Model Law (MDL-668). Kentucky’s law goes into effect on January 1, 2023. Kentucky’s law goes into effect on January 1, 2023.

Insurance

Insurance Security Information Security Compliance

Healthcare firm WebTPA data breach impacted 2.5 million individuals

Security Affairs

MAY 19, 2024

According to the notice published by the company, WebTPA acts as an administrative services provider to certain benefit plans and insurance companies whose information was impacted in this incident. “The investigation concluded that the unauthorized actor may have obtained personal information between April 18 and April 23, 2023.”

Data breaches

Data breaches Insurance Cybersecurity Security

U.S. Medical billing provider Medusind suffered a sata breach

Security Affairs

JANUARY 9, 2025

Additionally, we implemented enhanced security measures to prevent similar incidents from occurring in the future.”

Data breaches

Data breaches Insurance Ransomware Information governance

Cyber insurance: A guide for businesses

IT Governance

OCTOBER 15, 2020

Cyber threats are so numerous that it’s impossible to prevent security incidents altogether. That’s why they organisations increasingly relying on cyber insurance policies to cover the costs when data breaches and cyber attacks occur. But just how helpful is cyber insurance? What is cyber insurance?

Insurance

Insurance Data breaches Risk Security

How Much Cyber Liability Insurance Do You Need?

IT Governance

AUGUST 23, 2022

Cyber liability insurance helps organisations cover the financial costs of a data breach. Without insurance, organisations spend £3.6 million on average recovering from security incidents. By purchasing cyber liability insurance, organisations gain the resources they need at a fraction of the cost.

Insurance

Insurance Data breaches e-Delivery Risk

Vermont Enacts Insurance Data Security Law

Hunton Privacy

JUNE 9, 2022

515 , making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law (“MDL-668”). Information Security Program Requirements. On May 27, 2022, Vermont Governor Phil Scott signed H.515

Insurance

Insurance Security Information Security Cybersecurity

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. Drug prescription listings).

Insurance

Insurance Passwords Libraries Access

Multiple organizations in Iran were breached by a mysterious hacker

Security Affairs

JANUARY 2, 2024

Hudson Researchers reported that on December 20th, a hacker using the moniker ‘irleaks’ announced the availability for sale of over 160,000,000 records allegedly stolen from 23 leading insurance companies in Iran. It is still unclear how the hackers targeted so many insurance companies at the same time.

Insurance

Insurance Sales Passwords Access

NAIC Insurance Data Security Law Annual Certifications: Is Yours Due By February 15?

Data Matters

FEBRUARY 2, 2021

The National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law has been adopted in at least 11 states, with several others (including New York) having implemented either older or similar laws or administrative guidance. See State Legislative Brief, NAIC, June 2020.

Insurance

Insurance Security Compliance Privacy

Prudential Financial data breach impacted over 2.5 million individuals

Security Affairs

JULY 2, 2024

The insurance company Prudential Financial confirmed that the data breach it suffered in February 2024 affected over 2.5 Prudential Financial confirmed that more than 2.5 million individuals were affected by the data breach it suffered in February 2024. million individuals.

Data breaches

Data breaches Insurance Ransomware Security

Greylock McKinnon Associates data breach exposed DOJ data of 341650 people

Security Affairs

APRIL 8, 2024

Compromised data exposed personal and Medicare information of the individuals, including name, date of birth, address, Medicare Health Insurance Claim Number (which contains a Social Security number associated with a member) and some medical information and/or health insurance information.

Data breaches

Data breaches Insurance Cybersecurity Government

Data Breach: Turkish legal advising company exposed over 15,000 clients

Security Affairs

FEBRUARY 26, 2021

Our online security team has uncovered a massive data breach originating from a misconfigured Amazon Bucket, which was operated by a Turkish Legal advising company, INOVA YÖNETIM & AKTÜERYAL DANI?MANLIK. Inova is an actuarial consultancy company, which means they compile statistical analysis and calculate insurance risks and premiums.

Data breaches

Data breaches Insurance Paper Access

Clorox estimates the costs of the August cyberattack will exceed $49 Million

Security Affairs

FEBRUARY 3, 2024

” The company added that it did not record any insurance proceeds in the three and six months ending on December 31, 2023, associated with the cyberattack. The recognition of insurance recoveries, if applicable, may not align with the timing of recognizing the associated expenses.

Insurance

Insurance Sales Ransomware Marketing

U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours

Security Affairs

NOVEMBER 20, 2021

The rule was approved by the Federal Reserve, Federal Deposit Insurance Corporation and Office of the Comptroller of the Currency. Major cybersecurity incidents are attacks that impact operations of the victims or the stability of the US financial sector. The rule aims at forcing banks to quickly respond to cybersecurity incidents.

Cybersecurity

Cybersecurity Financial Services Insurance Ransomware

Security Affairs newsletter Round 284

Security Affairs

OCTOBER 4, 2020

Apple addresses four vulnerabilities in macOS Google removes 17 Joker -infected apps from the Play Store Microsoft took down 18 Azure AD apps used by Chinese Gadolinium APT Mount Locker ransomware operators demand multi-million dollar ransoms Putin proposes new information security collaboration to US, including no-hack pact for election REvil ransomware (..)

Security

Security Ransomware Insurance Information Security

Indico Data, The Decision Automation Company™, unveils strategic leadership appointments to drive next-generation insurance innovation

Info Source

APRIL 2, 2025

Boston, MA April 1st, 2025 Indico Data, The Decision Automation Company , today announced pivotal leadership appointments that reinforce its commitment to revolutionizing the insurance industry through AI-driven decision automation.

Insurance

Insurance Unstructured data Artificial Intelligence Information Security

HealthEC data breach impacted more than 4.5 Million people

Security Affairs

JANUARY 4, 2024

“Suspicious activity should be promptly reported to relevant parties including an insurance company, health care provider, and/or financial institution.” Long Island Select Healthcare, Mid Florida Hematology & Oncology Centers, P.A, ” reads a notice published by the company on its website. ” concludes the notice.

Data breaches

Data breaches Artificial Intelligence Insurance Access

Zurich chief warned that cyber attacks will become uninsurable

Security Affairs

DECEMBER 28, 2022

The chief executive of insurance giant Zurich warns that cyber attacks, rather than natural catastrophes, will become uninsurable. Mario Greco, chief executive of insurer giant Zurich, has warned that cyber attacks will become soon “uninsurable.”. What will become uninsurable is going to be cyber,” Mario Greco told the Financial Times.

Insurance

Insurance Risk Ransomware IT

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The man is responsible for the cyber attacks that in 2022 hit the Australian insurance provider Medibank. Medibank is one of the largest Australian private health insurance providers with approximately 3.9 “ In November 2022, Medibank announced that personal data belonging to around 9.7M million customers.

Government

Government Insurance Ransomware Data breaches

City of Joplin paid a 320K ransom after a ransomware Attack

Security Affairs

AUGUST 9, 2021

Finally the insurer for Joplin paid $320,000 to threat actors. While investigation into the security breach is still ongoing, the insurer for the City opted to pay a $320,00 ransom to avoid that the leak of the stolen info, Joplin City Manager Nick Edwards confirmed this week.

Ransomware

Ransomware Insurance Cybersecurity Security

Maze Ransomware leaks files of ST Engineering group

Security Affairs

JUNE 5, 2020

“As per our researchers, this data leak includes the company’s cyber insurance documents, various contract calculations worksheets, NASA give review rules, and much more.” . “Just like previous data leaks, the Cyble Research Team has also identified and verified this data leak.”

Ransomware

Ransomware Insurance Cybersecurity Security

Cyberattack shuts down La Porte County government systems

Security Affairs

JULY 8, 2019

The good news is that La Porte County has a cyber insurance that will cover part of the costs sustained to restore the activity after the attack.

Government

Government Insurance Ransomware Cybersecurity

German IT provider Bitmarck hit by cyberattack

Security Affairs

MAY 1, 2023

Bitmarck, one of the largest IT service providers for social insurance carriers in Germany, announced yesterday that it has suffered a cyber attack. “We very much regret the inconvenience caused to our customers, service providers and insured persons and are working to restore the systems as quickly as possible.”

IT

IT Insurance Data breaches Education

Pennsylvania State Education Association data breach impacts 500,000 individuals

Security Affairs

MARCH 20, 2025

The Pennsylvania State Education Association promptly launched an investigation into the security breach with the help of cybersecurity experts. The company started notifying potentially impacted individuals.

Education

Education Data breaches Passwords Insurance

Insurance scams via QR codes: how to recognise and defend yourself

Insurance firm CNA discloses data breach after March ransomware attack

Webinars

Trending Sources

Crooks stole driver’s license numbers from Geico auto insurer

Webinars

ISMG Editors’ Panel: Cyber Insurance; Ransomware Update

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

American Insurance firm State Farm victim of credential stuffing attacks

Change Healthcare data breach exposed the private data of over half the U.S.

Cyber Insurance and the Changing Global Risk Environment

Health insurer Point32Health suffered a ransomware attack

HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost

Change Healthcare data breach impacted over 100 million people

First American Financial's SEC Breach Settlement: $488,000

Apple, Cisco Strike Partnerships for Cyber Insurance

Black Basta ransomware gang hit BT Group

University of Utah pays a $457,000 ransom to ransomware gang

ConnectOnCall data breach impacted over 900,000 individuals

What Is Information Security Management?

Why Cyber Insurance is Essential in 2022

Packaging giant WestRock is still working to resume after recent Ransomware Attack

Two States Enact Insurance Data Security Laws

Healthcare firm WebTPA data breach impacted 2.5 million individuals

U.S. Medical billing provider Medusind suffered a sata breach

Cyber insurance: A guide for businesses

How Much Cyber Liability Insurance Do You Need?

Vermont Enacts Insurance Data Security Law

First American Financial Pays Farcical $500K Fine

Thousands of Humana customers have their medical data leaked online by threat actors

Multiple organizations in Iran were breached by a mysterious hacker

NAIC Insurance Data Security Law Annual Certifications: Is Yours Due By February 15?

Prudential Financial data breach impacted over 2.5 million individuals

Greylock McKinnon Associates data breach exposed DOJ data of 341650 people

Data Breach: Turkish legal advising company exposed over 15,000 clients

Clorox estimates the costs of the August cyberattack will exceed $49 Million

U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours

Security Affairs newsletter Round 284

Indico Data, The Decision Automation Company™, unveils strategic leadership appointments to drive next-generation insurance innovation

HealthEC data breach impacted more than 4.5 Million people

Zurich chief warned that cyber attacks will become uninsurable

Australian government announced sanctions for Medibank hacker

City of Joplin paid a 320K ransom after a ransomware Attack

Maze Ransomware leaks files of ST Engineering group

Cyberattack shuts down La Porte County government systems

German IT provider Bitmarck hit by cyberattack

Pennsylvania State Education Association data breach impacts 500,000 individuals

Stay Connected