Insurance, Personal data and Security - Information Management Today

30,000+ Italian sales agents’ personal data, IDs leaked by Ariix Italia

Security Affairs

JUNE 16, 2020

A database allegedly belonging to Ariix Italia was exposed online on an unsecured Amazon S3 bucket, it includes 30,000+ Italian sales agents’ personal data. We then reported the incident to Amazon and they were able to secure the S3 bucket. As of June 5, the Ariix Italia data bucket has been closed and is no longer accessible.

Personal data

Personal data Sales Insurance Marketing

Insurance scams via QR codes: how to recognise and defend yourself

Security Affairs

MARCH 12, 2024

The Postal Police has issued an alert to warn citizens against insurance scams using QR codes. In practice, fake insurance operators contact victims through calls, messages, or sponsorships on social networks, offering policies at advantageous prices. Online companies do not use generic domains or channels such as WhatsApp or Telegram.

Insurance

Insurance Education Personal data Sales

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

Data Security Posture Management (DSPM) helps organizations address evolving data security and privacy requirements by protecting and managing sensitive information. To add to the difficulty, the advent of Generative AI (GenAI) has brought unprecedented security and privacy risks. What is its security posture?

Data Privacy

Data Privacy Privacy GDPR Compliance

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. According to CryptoIns analysts, the crypto assets insurance market is expected to reach $7 billion by 2023. Why do crypto exchanges’ users need insurance?

Insurance

Insurance Risk Marketing Cybersecurity

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. What was leaked? Drug prescription listings).

Insurance

Insurance Passwords Libraries Access

Riding the State Unemployment Fraud ‘Wave’

Krebs on Security

MAY 23, 2020

states are possibly making it easier for crooks by leaking their citizens’ personal data from the very websites the unemployment scammers are using to file bogus claims. citizens, mainly because the only information required to submit a claim was name, date of birth, address and Social Security number. Last week, the U.S.

Insurance

Insurance Government Personal data Communications

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. Threat actors gained access to the personal and health information of an undisclosed number of individuals. ” reads the statement published by the company. ” reported ABC.

Ransomware

Ransomware e-Delivery Data breaches Insurance

Data Breach: Turkish legal advising company exposed over 15,000 clients

Security Affairs

FEBRUARY 26, 2021

Our online security team has uncovered a massive data breach originating from a misconfigured Amazon Bucket, which was operated by a Turkish Legal advising company, INOVA YÖNETIM & AKTÜERYAL DANI?MANLIK. While Amazon offers the necessary tools to secure their services, Inova has not implemented these measures properly.

Data breaches

Data breaches Insurance Paper Access

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The man is responsible for the cyber attacks that in 2022 hit the Australian insurance provider Medibank. “ In November 2022, Medibank announced that personal data belonging to around 9.7M Medibank is one of the largest Australian private health insurance providers with approximately 3.9 million customers.

Government

Government Insurance Ransomware Data breaches

Cox Media Group took down broadcasts after a ransomware attack

Security Affairs

OCTOBER 9, 2021

The company notified via mail hundreds of individuals that were impacted by the security breach and that that have had their personal data exposed in the attack. . Cox Media Group discovered the security breach the same day of the initial intrusion and immediately took down systems offline to avoid the propagation of the threat.

Ransomware

Ransomware Insurance Encryption Passwords

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019.

Insurance

Insurance Financial Services Mining Access

Security Affairs newsletter Round 188 – News of the week

Security Affairs

NOVEMBER 11, 2018

The best news of the week with Security Affairs. Apple T2 security chip in new MacBooks disconnects Microphone when lid is closed. Flaws in several self-encrypting SSDs allows attackers to decrypt data they contain. Group-IB and CryptoIns introduce the worlds first insurance against cyber threats for cryptocurrency exchanges.

Security

Security IoT Insurance Libraries

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Security Affairs

APRIL 16, 2024

All data is confidential, contains trade secrets. - 30 Gb user data - production line settings - repository with equipment configures - 26 Gb machine operation logs - 1.2 Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom. . -

Ransomware

Ransomware Manufacturing Insurance Cybersecurity

Healthcare system Advocate Aurora Health data breach potentially impacted 3M patients

Security Affairs

OCTOBER 20, 2022

Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. Pierluigi Paganini.

Data breaches

Data breaches Personal data Insurance Privacy

The Taxman Cometh for ID Theft Victims

Krebs on Security

JANUARY 29, 2021

The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn’t abated, although news coverage of the issue has largely been pushed off the front pages by other events. The scammers typically use stolen identity data to claim benefits, and then have the funds credited to an online account that they control.

Insurance

Insurance Personal data Authentication IT

Toyota Financial Services discloses a data breach

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data. “Due to an attack on the systems, unauthorized persons gained access to personal data. Affected customers have now been informed.

Financial Services

Financial Services Data breaches Ransomware Insurance

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

Security Affairs

NOVEMBER 8, 2022

Australian health insurer Medibank confirmed that personal data belonging to around 9.7 Medibank announced that personal data belonging to around 9.7M Medibank is one of the largest Australian private health insurance providers with approximately 3.9 million customers. million customers. Pierluigi Paganini.

Ransomware

Ransomware Insurance Personal data Data breaches

France data protection agency fines Uber 400k Euros Over 2016 Data Breach

Security Affairs

DECEMBER 23, 2018

France’s data protection agency had fined the ride-sharing company Uber with 400,000 euros ($455,000) over a 2016 data breach. The data breach suffered by Uber in 2016 exposed the personal data of some 57 million clients and drivers worldwide. SecurityAffairs – hacking, 2016 data breach).

Data breaches

Data breaches Personal data Insurance Access

VF Corp December data breach impacts 35 million customers

Security Affairs

JANUARY 19, 2024

VF immediately began taking measures to remediate the attack and launched an investigation into the security breach. “Based on VF’s preliminary analysis from its ongoing investigation, VF currently estimates that the threat actor stole personal data of approximately 35.5 million individual consumers.”

Data breaches

Data breaches Passwords Retail Insurance

Girl Scouts data breach exposed personal information of 2,800 members

Security Affairs

OCTOBER 30, 2018

A Girl Scouts of America branch in California suffered a security breach, hackers accessed data of 2,800 girls and their families. branch of the Girl Scouts of America, potentially exposing personal information for 2,800 members and their families. Security Affairs – Orange County, hacking). Pierluigi Paganini.

Data breaches

Data breaches Insurance Personal data Access

Blue Cross of Idaho data breach, 5,600 customers affected

Security Affairs

APRIL 16, 2019

Blue Cross of Idaho announced to have suffered a data breach, hackers accessed to the personal information of about 5,600 customers. The attackers were locked out and the portal was secured on March 22. We have not identified any unauthorized use of personal data and will keep close watch for illegitimate activity,”.

Data breaches

Data breaches Insurance Personal data Privacy

Welltok data breach impacted 8.5 million patients in the U.S.

Security Affairs

NOVEMBER 23, 2023

The platform aims to personalize and optimize health programs for individuals, employers, health plans, and other organizations. The company disclosed a data breach that exposed the personal data of nearly 8.5 million Teachers Insurance and Annuity Association of America 2.6 million Genworth 2.5 million PH Tech 1.7

Data breaches

Data breaches Insurance Ransomware Education

Hackers breached into system that interacts with HealthCare.gov

Security Affairs

OCTOBER 21, 2018

Hackers breached into a computer system that interacts with HealthCare.gov, according to Centers for Medicare and Medicaid Services, attackers accessed to the sensitive personal data of some 75,000 people. “The system that was hacked is used by insurance agents and brokers to directly enroll customers. .

Insurance

Insurance Personal data Access Security

How Much Cyber Liability Insurance Do You Need?

IT Governance

AUGUST 23, 2022

Cyber liability insurance helps organisations cover the financial costs of a data breach. Without insurance, organisations spend £3.6 million on average recovering from security incidents. By purchasing cyber liability insurance, organisations gain the resources they need at a fraction of the cost.

Insurance

Insurance Data breaches e-Delivery Risk

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. According to the Ponemon Institute and IBM, the global average cost of a data breach is $4.24 But there’s a catch: Insurers are going to carefully assess your cybersecurity controls before writing any policy, and there are limits to coverage. Cyber Insurance is Booming.

Insurance

Insurance Ransomware Cybersecurity Marketing

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Insurance

Insurance Communications Authentication Access

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Security Affairs

SEPTEMBER 13, 2024

Lehigh Valley Health Network (LVHN) has agreed to a $65 million settlement in a class action lawsuit related to a data breach that resulted in the publication of images of 600 nude cancer patients. The healthcare network was the target a BlackCat ransomware attack, the security breach was discovered on February 6.

Data breaches

Data breaches Ransomware Insurance Education

Swarmshop – What goes around comes around: hackers leak other hackers’ data online

Security Affairs

APRIL 8, 2021

In total, the databased revealed the records of 4 cardshop admins, 90 sellers,and 12,250 buyers of stolen data, including their nicknames, hashed passwords, account balance, and contact details for some entries. The database also exposed compromised payment and personal data traded on Swarmshop. ever since. About Group-IB.

Passwords

Passwords Insurance Personal data Sales

India: New Digital Personal Data Protection Act, Start Planning Now.

DLA Piper Privacy Matters

SEPTEMBER 6, 2023

On 11 August 2023, India’s long-awaited law governing data protection – the Digital Personal Data Protection Act, 2023 ( DPDP Act ) – received the President’s assent and was published in the official gazette the following day. data subjects, using the GDPR terminology) located within India.

Personal data

Personal data GDPR Data breaches Compliance

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Data Protection Report

MARCH 21, 2023

The French Information and Digital Security Experts Club ( CESIN ) has estimated that 54% of French companies were subject to cyberattacks in 2021, [1] while France Assureurs has put cyberattack risks on top of all other risks for the sixth year in a row. [2] 12-10-1 into the French Insurance code. However, in the end, Article L.12-10-1

Insurance

Insurance Data breaches Personal data GDPR

When Do You Need to Report a Data Breach?

Security Affairs

NOVEMBER 26, 2018

Data breaches, incidents in which personal information is accidentally or unlawfully stolen, lost, disclosed, accessed, altered or destroyed, can happen to organizations of any size and sector. Most data breach laws deal with personal data, which is essentially any information that can be associated with a particular person.

Data breaches

Data breaches Personal data GDPR Cybersecurity

Infosys McCamish Systems data breach impacted over 6 million people

Security Affairs

JUNE 29, 2024

IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries. In February, Bank of America began notifying some customers following the IMS data breach. ” reads a press release published by the company.

Data breaches

Data breaches e-Discovery Ransomware Insurance

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

The Last Watchdog

OCTOBER 29, 2018

The headlines immediately attempted to lay the blame, in large part, on the fact that Equifax’s chief information security officer was a music major and did not have a background in technology. The FTC considers that ‘reasonable security’ doesn’t mean ‘perfect security.’ Equifax was not special in this regard.

Security

Security Data Privacy Privacy Data breaches

Have board directors any liability for a cyberattack against their company?

Security Affairs

NOVEMBER 14, 2022

Moreover, the operational consequences of a cyber attack should not only be analyzed in terms of compromising the personal data of its customers and employees. It is not just a matter of recommending investments in security measures because 95% of cyber attacks occur because of human error. there could be reputational damage.

Insurance

Insurance Risk Ransomware Encryption

Belden discloses data breach as a result of a cyber attack

Security Affairs

NOVEMBER 25, 2020

“Our IT professionals were able to detect the unusual activity and believe we have stopped further unauthorized access of personal data on our servers.” Limited company information accessed and stolen related to some of our business partners include bank account data and, for U.S. partners, their taxpayer ID numbers.

Data breaches

Data breaches Manufacturing Insurance Access

US. rail and locomotive company Wabtec hit with Lockbit ransomware

Security Affairs

JANUARY 4, 2023

The unusual activity was detected by the company on June 26th, then the rail giant launched an investigation into the security incident. rail and locomotive company Wabtec hit with Lockbit ransomware appeared first on Security Affairs. ” concludes Wabtec. Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Ransomware

Ransomware Insurance Data breaches Manufacturing

MarineMax data breach impacted over 123,000 individuals

Security Affairs

JULY 17, 2024

In March, the company suffered a cyber attack, and the Rhysida ransomware gang claimed to have stolen company sensitive data. The company sells new and used boats and yachts, offers marine-related services such as financing, insurance, and maintenance, and provides yacht charters and brokerage services.

Data breaches

Data breaches Retail Ransomware Insurance

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

The Last Watchdog

APRIL 30, 2019

I had the chance at RSA 2019 to visit with George Wrenn, founder and CEO of CyberSaint Security , a cybersecurity software firm that plays directly in this space. Then you have the folks whose security programs have run out of steam and they’re looking for a way to prove that they’re doing due care,” Wrenn said.

Cybersecurity

Cybersecurity Insurance Security Privacy

IRS Will Soon Require Selfies for Online Access

Krebs on Security

JANUARY 19, 2022

is perhaps better known as the online identity verification service that many states now use to help staunch the loss of billions of dollars in unemployment insurance and pandemic assistance stolen each year by identity thieves. may require a recorded, live video chat with the person applying for benefits. These days, ID.me

Access

Access Insurance Authentication Government

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Security Affairs

JANUARY 18, 2023

has exposed the personal information of hundreds of thousands of employees and millions of job candidates. The security loophole resulted in millions of private documents being revealed to the public. The post Myrocket HR platform’s data leak turns into privacy nightmare for employees appeared first on Security Affairs.

Privacy

Privacy Insurance Personal data Access

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security. However, despite the critical status of bank infrastructure on the national level, the security of crucial data was not ensured. million files belonging to ICICI Bank.

Personal data

Personal data Phishing Risk Communications

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

Security Affairs

MAY 13, 2019

Personally identifiable information belonging to roughly 90% of Panama citizens were exposed on a poorly configured Elasticsearch server. Security researcher Bob Diachenko discovered an unprotected Elasticsearch server exposing personally identifiable information belonging to nearly 90% of Panama citizens. Pierluigi Paganini.

Authentication

Authentication Insurance Personal data Ransomware

IRS To Ditch Biometric Requirement for Online Access

Krebs on Security

FEBRUARY 7, 2022

It was clear most readers had no idea these new and more invasive requirements were being put in place at the IRS and other federal agencies (the Social Security Administration also is steering new signups to ID.me). These readers had reasonable questions: Who has (or will have) access to this data? ” Login.gov is run by the U.S.

Access

Access Authentication Insurance Personal data

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Security Affairs

NOVEMBER 8, 2020

Now the news of another data breach made the headlines, a security breach has exposed the personal and protected health information for patients of LensCrafters, Target Optical, EyeMed, and other eye care practices. Luxottica disclosed a security breach in the appointment scheduling application that took place on August 5, 2020.

Data breaches

Data breaches Insurance Ransomware Retail

30,000+ Italian sales agents’ personal data, IDs leaked by Ariix Italia

Insurance scams via QR codes: how to recognise and defend yourself

Webinars

Trending Sources

Why DSPM is Essential for Achieving Data Privacy in 2024

Webinars

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Thousands of Humana customers have their medical data leaked online by threat actors

Riding the State Unemployment Fraud ‘Wave’

Electronic prescription provider MediSecure impacted by a ransomware attack

Data Breach: Turkish legal advising company exposed over 15,000 clients

Australian government announced sanctions for Medibank hacker

Cox Media Group took down broadcasts after a ransomware attack

NY Charges First American Financial for Massive Data Leak

Security Affairs newsletter Round 188 – News of the week

Ransomware group Dark Angels claims the theft of 1TB of data from chipmaker Nexperia

Healthcare system Advocate Aurora Health data breach potentially impacted 3M patients

The Taxman Cometh for ID Theft Victims

Toyota Financial Services discloses a data breach

Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom

France data protection agency fines Uber 400k Euros Over 2016 Data Breach

VF Corp December data breach impacts 35 million customers

Girl Scouts data breach exposed personal information of 2,800 members

Blue Cross of Idaho data breach, 5,600 customers affected

Welltok data breach impacted 8.5 million patients in the U.S.

Hackers breached into system that interacts with HealthCare.gov

How Much Cyber Liability Insurance Do You Need?

Top 8 Cyber Insurance Companies for 2022

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Lehigh Valley Health Network hospital network has agreed to a $65 million settlement after data breach

Swarmshop – What goes around comes around: hackers leak other hackers’ data online

India: New Digital Personal Data Protection Act, Start Planning Now.

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

When Do You Need to Report a Data Breach?

Infosys McCamish Systems data breach impacted over 6 million people

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

Have board directors any liability for a cyberattack against their company?

Belden discloses data breach as a result of a cyber attack

US. rail and locomotive company Wabtec hit with Lockbit ransomware

MarineMax data breach impacted over 123,000 individuals

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

IRS Will Soon Require Selfies for Online Access

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Multinational ICICI Bank leaks passports and credit card numbers

Unprotected DB exposed PII belonging to nearly 90% of Panama citizens

IRS To Ditch Biometric Requirement for Online Access

Luxottica data breach exposes info of LensCrafters and EyeMed patients

Stay Connected