Insurance and Personal data - Information Management Today

Insurance scams via QR codes: how to recognise and defend yourself

Security Affairs

MARCH 12, 2024

The Postal Police has issued an alert to warn citizens against insurance scams using QR codes. In practice, fake insurance operators contact victims through calls, messages, or sponsorships on social networks, offering policies at advantageous prices. Online companies do not use generic domains or channels such as WhatsApp or Telegram.

Insurance

Insurance Education Sales Personal data

First American Title Insurance Co. Faces Charges in NY

Data Breach Today

JULY 23, 2020

Company Could Be Fined $1,000 for Each Violation of State Cybersecurity Law The New York State Department of Financial Services has filed civil charges against First American Title Insurance Co., which has been accused of exposing hundreds of millions of documents that contained customers' mortgage and personal data.

Insurance

Insurance Financial Services Personal data Cybersecurity

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. According to CryptoIns analysts, the crypto assets insurance market is expected to reach $7 billion by 2023. Why do crypto exchanges’ users need insurance?

Insurance

Insurance Risk Marketing Cybersecurity

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Russian Hackers Target Ukrainians' Personal Data, Says Kyiv

Data Breach Today

MAY 17, 2023

Hackers Are Targeting Ukrainian Insurance Companies for Their Personal Information Ukraine's top cybersecurity agency says Russian hackers took a sudden interest in obtaining personal data and mounted successful attacks against more than one-third of the country's largest insurers.

Personal data

Personal data Insurance Sales Cybersecurity

Kids’ Health Insurer’s Website Vulnerable for 7 Years

Data Breach Today

FEBRUARY 1, 2021

Hackers Tampered With Some Data That Was Exposed An organization that administers a children’s dental and health insurance program in Florida took down its online application platform after it discovered the company that hosted its website apparently failed to address vulnerabilities over a seven-year period, resulting in the exposure of personal data. (..)

Insurance

Insurance Personal data IT

Over-Retention of Personal Data

Data Protection Report

SEPTEMBER 23, 2021

The declining cost of electronic data storage may have caused some company executives to conclude that retaining personal data forever is “cheap.” The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019.

Personal data

Personal data Insurance GDPR Record destruction

Fallout From Medibank Hack Grows

Data Breach Today

OCTOBER 28, 2022

About 4M Australians Affected by Extortion Demand Made Against the Health Insurer Fallout from the hack of Australian health insurer Medibank continues to worsen as the company twice this week acknowledged a wider set of affected individuals.

Insurance

Insurance Personal data Access

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. What was leaked? Drug prescription listings).

Insurance

Insurance Passwords Libraries Access

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The man is responsible for the cyber attacks that in 2022 hit the Australian insurance provider Medibank. “ In November 2022, Medibank announced that personal data belonging to around 9.7M Medibank is one of the largest Australian private health insurance providers with approximately 3.9 million customers.

Government

Government Insurance Ransomware Data breaches

Riding the State Unemployment Fraud ‘Wave’

Krebs on Security

MAY 23, 2020

states are possibly making it easier for crooks by leaking their citizens’ personal data from the very websites the unemployment scammers are using to file bogus claims. A number of states have suffered security issues with the PUA websites that exposed personal details of citizens filing unemployment insurance claims.

Insurance

Insurance Government Personal data Communications

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019.

Insurance

Insurance Financial Services Mining Access

Data Breach: Turkish legal advising company exposed over 15,000 clients

Security Affairs

FEBRUARY 26, 2021

Our online security team has uncovered a massive data breach originating from a misconfigured Amazon Bucket, which was operated by a Turkish Legal advising company, INOVA YÖNETIM & AKTÜERYAL DANI?MANLIK. Inova is an actuarial consultancy company, which means they compile statistical analysis and calculate insurance risks and premiums.

Data breaches

Data breaches Insurance Paper Access

Healthcare system Advocate Aurora Health data breach potentially impacted 3M patients

Security Affairs

OCTOBER 20, 2022

Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients.

Data breaches

Data breaches Personal data Insurance Privacy

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

Security Affairs

NOVEMBER 8, 2022

Australian health insurer Medibank confirmed that personal data belonging to around 9.7 Medibank announced that personal data belonging to around 9.7M Medibank is one of the largest Australian private health insurance providers with approximately 3.9 million customers. million customers.

Ransomware

Ransomware Insurance Personal data Data breaches

Cox Media Group took down broadcasts after a ransomware attack

Security Affairs

OCTOBER 9, 2021

The company notified via mail hundreds of individuals that were impacted by the security breach and that that have had their personal data exposed in the attack. . CMG immediately launched an investigation with the support of law enforcement, it also hired leading cybersecurity experts to determine the extent of the attack.

Ransomware

Ransomware Insurance Encryption Passwords

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

. “In October last year, the ACCC granted authorisation for MediSecure to transfer all publicly- funded electronic prescriptions and data to eRx.” ” In November 2022, Medibank announced that personal data belonging to around 9.7M million customers.

Ransomware

Ransomware e-Delivery Data breaches Insurance

Bankers Life Hack Affects More Than 566,000

Data Breach Today

NOVEMBER 8, 2018

Company Says Medicare Supplemental Plan Policyholders Among Those Impacted Bankers Life is notifying more than 566,000 individuals, including Medicare supplemental insurance policyholders, that their personal information was exposed in a hacking incident.

Insurance

Insurance Personal data Access

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. According to the Ponemon Institute and IBM, the global average cost of a data breach is $4.24 But there’s a catch: Insurers are going to carefully assess your cybersecurity controls before writing any policy, and there are limits to coverage. Cyber Insurance is Booming.

Insurance

Insurance Ransomware Cybersecurity Marketing

How Much Cyber Liability Insurance Do You Need?

IT Governance

AUGUST 23, 2022

Cyber liability insurance helps organisations cover the financial costs of a data breach. Without insurance, organisations spend £3.6 By purchasing cyber liability insurance, organisations gain the resources they need at a fraction of the cost. What does cyber insurance include? How much cyber insurance do I need?

Insurance

Insurance Data breaches e-Delivery Risk

The Taxman Cometh for ID Theft Victims

Krebs on Security

JANUARY 29, 2021

The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn’t abated, although news coverage of the issue has largely been pushed off the front pages by other events. The scammers typically use stolen identity data to claim benefits, and then have the funds credited to an online account that they control.

Insurance

Insurance Personal data Authentication IT

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Security Affairs

APRIL 16, 2024

All data is confidential, contains trade secrets. - 30 Gb user data - production line settings - repository with equipment configures - 26 Gb machine operation logs - 1.2 Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom.

Ransomware

Ransomware Manufacturing Insurance Cybersecurity

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Insurance

Insurance Communications Authentication Access

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Data Protection Report

MARCH 21, 2023

2] In this context, the Directorate General of the French Treasury has put forward a plan of action with a view to clarifying the cyber-insurance legal framework, better gauging cyber-risks, and enhancing companies’ awareness as regards cyber-risks. 12-10-1 into the French Insurance code. However, in the end, Article L.12-10-1

Insurance

Insurance Data breaches Personal data GDPR

France data protection agency fines Uber 400k Euros Over 2016 Data Breach

Security Affairs

DECEMBER 23, 2018

France’s data protection agency had fined the ride-sharing company Uber with 400,000 euros ($455,000) over a 2016 data breach. The data breach suffered by Uber in 2016 exposed the personal data of some 57 million clients and drivers worldwide.

Data breaches

Data breaches Personal data Insurance Access

Toyota Financial Services discloses a data breach

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data. “Due to an attack on the systems, unauthorized persons gained access to personal data. Affected customers have now been informed.

Financial Services

Financial Services Data breaches Ransomware Insurance

Hackers breached into system that interacts with HealthCare.gov

Security Affairs

OCTOBER 21, 2018

Hackers breached into a computer system that interacts with HealthCare.gov, according to Centers for Medicare and Medicaid Services, attackers accessed to the sensitive personal data of some 75,000 people. “The system that was hacked is used by insurance agents and brokers to directly enroll customers. .

Insurance

Insurance Personal data Access Security

VF Corp December data breach impacts 35 million customers

Security Affairs

JANUARY 19, 2024

“Based on VF’s preliminary analysis from its ongoing investigation, VF currently estimates that the threat actor stole personal data of approximately 35.5 “VF will be seeking reimbursement of costs, expenses and losses stemming from the cyber incident by submitting claims to VF’s cybersecurity insurers.

Data breaches

Data breaches Passwords Retail Insurance

Girl Scouts data breach exposed personal information of 2,800 members

Security Affairs

OCTOBER 30, 2018

According to GSOC, the account was used in the past to arrange travel for group members and for this reason hackers may have been able to obtain personal data with their account access. Experts warn of possible social-engineering-based cyber attacks leveraging the exposed info.

Data breaches

Data breaches Insurance Personal data Access

Delayed Implementation of Thailand?s Personal Data Protection Act

Hunton Privacy

MAY 29, 2020

The implementation of Thailand’s Personal Data Protection Act B.E. If any data controller is unsure as to whether it falls within the scope of those listed in the Royal Decree as being exempt from compliance with the PDPA until May 31, 2021, it may seek advice from the Personal Data Protection Committee.

Personal data

Personal data Compliance Insurance IT

MarineMax data breach impacted over 123,000 individuals

Security Affairs

JULY 17, 2024

In March, the company suffered a cyber attack, and the Rhysida ransomware gang claimed to have stolen company sensitive data. The company sells new and used boats and yachts, offers marine-related services such as financing, insurance, and maintenance, and provides yacht charters and brokerage services.

Data breaches

Data breaches Retail Ransomware Insurance

Blue Cross of Idaho data breach, 5,600 customers affected

Security Affairs

APRIL 16, 2019

Blue Cross of Idaho announced to have suffered a data breach, hackers accessed to the personal information of about 5,600 customers. We take consumers’ privacy very seriously, and we are committed to keeping our members’ data secure,” said Blue Cross of Idaho Executive Vice President Paul Zurlo. “We

Data breaches

Data breaches Insurance Personal data Privacy

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Security Affairs

SEPTEMBER 13, 2024

” The investigation revealed that the ransomware gang had access to the personal data of at least 134,000 individuals, including cancer patients. It also added that “the information for a limited number of individuals included clinical images of patients during treatment.”

Data breaches

Data breaches Ransomware Insurance Education

Have board directors any liability for a cyberattack against their company?

Security Affairs

NOVEMBER 14, 2022

Moreover, the operational consequences of a cyber attack should not only be analyzed in terms of compromising the personal data of its customers and employees. And this often happens when the hacker, the so-called threat actor, starts encrypting the computer systems. What should directors do if a cyberattack happens to the company?

Insurance

Insurance Risk Ransomware Encryption

When Do You Need to Report a Data Breach?

Security Affairs

NOVEMBER 26, 2018

Data breaches, incidents in which personal information is accidentally or unlawfully stolen, lost, disclosed, accessed, altered or destroyed, can happen to organizations of any size and sector. Most data breach laws deal with personal data, which is essentially any information that can be associated with a particular person.

Data breaches

Data breaches Personal data GDPR Cybersecurity

Belden discloses data breach as a result of a cyber attack

Security Affairs

NOVEMBER 25, 2020

“Our IT professionals were able to detect the unusual activity and believe we have stopped further unauthorized access of personal data on our servers.” Limited company information accessed and stolen related to some of our business partners include bank account data and, for U.S. partners, their taxpayer ID numbers.

Data breaches

Data breaches Manufacturing Insurance Access

US. rail and locomotive company Wabtec hit with Lockbit ransomware

Security Affairs

JANUARY 4, 2023

“While there is no indication that any specific information was or will be misused, considering the nature of the incident and of the affected personal data, we cannot rule out that there may be attempts to carry out fraudulent activity.” ” concludes Wabtec.

Ransomware

Ransomware Insurance Data breaches Manufacturing

Infosys McCamish Systems data breach impacted over 6 million people

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries.

Data breaches

Data breaches e-Discovery Ransomware Insurance

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Security Affairs

JANUARY 18, 2023

has exposed the personal information of hundreds of thousands of employees and millions of job candidates. Worryingly, it also allowed threat actors to modify the data, changing salary amounts and details of bank accounts used for salary payments. HR management platform myrocket.co Original post at CyberNews.

Privacy

Privacy Insurance Personal data Access

$10,000,000 civil penalty for disclosing personal data without consent

Data Protection Report

APRIL 30, 2024

The claims related to the company’s sharing personal data without consumer consent and making it very difficult for consumers to cancel their subscriptions to this telehealth service. The order also, in Section IX, set forth data destruction requirements and a data retention policy.

Personal data

Personal data Privacy Information governance Compliance

Checklist for Getting Cyber Insurance Coverage

Thales Cloud Protection & Licensing

MAY 10, 2022

Checklist for Getting Cyber Insurance Coverage. The necessity for cyber-insurance coverage. With cyber attacks amounting to a question of when and not if, cyber insurance becomes crucial for ensuring business continuity and mitigating the business impact of attacks – should they occur. Tue, 05/10/2022 - 05:43.

Insurance

Insurance Authentication Risk Ransomware

IRS To Ditch Biometric Requirement for Online Access

Krebs on Security

FEBRUARY 7, 2022

as a condition of receiving state or federal financial assistance, such as unemployment insurance, child tax credit payments, and pandemic assistance funds. In the face of COVID, dozens of states collectively lost tens of billions of dollars at the hands of identity thieves impersonating out-of-work Americans seeking unemployment insurance.

Access

Access Authentication Insurance Personal data

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

If malicious actors accessed the exposed data, the company could have faced devastating consequences and put their clients at risk, as financial services are the main target for cybercriminals. ICICI Bank’s response Threat to financial accounts Finance and insurance are one of the most targeted industries by cybercriminals.

Personal data

Personal data Phishing Risk Communications

Is Artificial Intelligence relevant to insurance?

IBM Big Data Hub

MAY 1, 2023

In this first of two posts, I investigate the anatomy of artificial intelligence and its impact on insurance. Artificial intelligence applied to insurance The insurance industry has always made extensive use of data and algorithms, such as in the calculation of insurance premiums.

Artificial Intelligence

Artificial Intelligence Insurance Risk Personal data

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

Security Affairs

MAY 13, 2019

Security researcher Bob Diachenko discovered an unprotected Elasticsearch server exposing personally identifiable information belonging to nearly 90% of Panama citizens. Exposed data includes full names, birth dates, national ID numbers, medical insurance numbers, and other personal data. The database contained 3.4

Authentication

Authentication Insurance Personal data Ransomware

Insurance scams via QR codes: how to recognise and defend yourself

First American Title Insurance Co. Faces Charges in NY

Webinars

Trending Sources

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Webinars

Russian Hackers Target Ukrainians' Personal Data, Says Kyiv

Kids’ Health Insurer’s Website Vulnerable for 7 Years

Over-Retention of Personal Data

Fallout From Medibank Hack Grows

Thousands of Humana customers have their medical data leaked online by threat actors

Australian government announced sanctions for Medibank hacker

Riding the State Unemployment Fraud ‘Wave’

NY Charges First American Financial for Massive Data Leak

Data Breach: Turkish legal advising company exposed over 15,000 clients

Healthcare system Advocate Aurora Health data breach potentially impacted 3M patients

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

Cox Media Group took down broadcasts after a ransomware attack

Electronic prescription provider MediSecure impacted by a ransomware attack

Bankers Life Hack Affects More Than 566,000

Top 8 Cyber Insurance Companies for 2022

How Much Cyber Liability Insurance Do You Need?

The Taxman Cometh for ID Theft Victims

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

France data protection agency fines Uber 400k Euros Over 2016 Data Breach

Toyota Financial Services discloses a data breach

Hackers breached into system that interacts with HealthCare.gov

VF Corp December data breach impacts 35 million customers

Girl Scouts data breach exposed personal information of 2,800 members

Delayed Implementation of Thailand?s Personal Data Protection Act

MarineMax data breach impacted over 123,000 individuals

Blue Cross of Idaho data breach, 5,600 customers affected

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Have board directors any liability for a cyberattack against their company?

When Do You Need to Report a Data Breach?

Belden discloses data breach as a result of a cyber attack

US. rail and locomotive company Wabtec hit with Lockbit ransomware

Infosys McCamish Systems data breach impacted over 6 million people

Myrocket HR platform’s data leak turns into privacy nightmare for employees

$10,000,000 civil penalty for disclosing personal data without consent

Checklist for Getting Cyber Insurance Coverage

IRS To Ditch Biometric Requirement for Online Access

Multinational ICICI Bank leaks passports and credit card numbers

Is Artificial Intelligence relevant to insurance?

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

Stay Connected