Tag: insurance
-
Back-Office Servicer Says Dual Hacks in 2024 Hit 1.6 Million
Landmark Admin Compromise Affects More Than a Dozen Insurance and Annuity Carriers. Landmark Admin, a third-party vendor that provides administrative services to life insurance and annuity companies, said 1.6 million people are potentially affected by 2024 ransomware and data exfiltration incidents that compromised a wide range of personal, financial and health information. First seen on…
-
Oracle April 2025 Critical Patch Update Addresses 171 CVEs
Oracle addresses 171 CVEs in its second quarterly update of 2025 with 378 patches, including 40 critical updates. Background On April 15, Oracle released its Critical Patch Update (CPU) for April 2025, the second quarterly update of the year. This CPU contains fixes for 171 unique CVEs in 378 security updates across 32 Oracle product…
-
Landmark Admin Suffers Major Breach, Exposing Data of 1.6M+ Users
Landmark Admin, LLC (“Landmark”), a Texas-based third-party administrator for life insurance carriers, has confirmed that a cyberattack compromised sensitive personal data belonging to more than 1.6 million individuals. The breach, detected in mid-May 2024, has prompted urgent calls for vigilance among affected policyholders, insurance producers, and beneficiaries. Discovery and Immediate Response According to an official…
-
Insurance firm Lemonade warns of breach of thousands of driving license numbers
A data breach at insurance firm Lemonade left the details of thousands of drivers’ licenses exposed for 17 months. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/insurance-firm-lemonade-warns-of-breach-of-thousands-of-driving-license-numbers
-
Guess what happens when ransomware fiends find ‘insurance’ ‘policy’ in your files
It involves a number close to three or six depending on the fiend First seen on theregister.com Jump to article: www.theregister.com/2025/04/16/dutch_ransomware_study/
-
Introducing Wyo Support ADAMnetworks LTP
Tags: attack, best-practice, business, compliance, cyber, cybersecurity, data, email, endpoint, finance, GDPR, government, guide, healthcare, infrastructure, insurance, law, linkedin, PCI, phishing, radius, ransomware, regulation, service, skills, strategy, technology, threat, tool, training, update, zero-trustADAMnetworks is excited to announce Wyo Support to the family of Licensed Technology Partners. “After working with the various systems and technologies, there are few that compare with the protection that ADAMnetworks provides. It reduces the attack surface from the broad side of a barn down to the size of a keyhole. No other technology…
-
Now 1.6M people had SSNs, life chapter and verse stolen from insurance IT biz
800K? Make that double, and we’ll need a double, too, for the pain First seen on theregister.com Jump to article: www.theregister.com/2025/04/15/landmark_admin_data_loss/
-
Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers
Lemonade says the incident is not material and that its operations were not compromised, nor was its customer data targeted. The post Insurance Firm Lemonade Says API Glitch Exposed Some Driver’s License Numbers appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/insurance-firm-lemonade-says-api-glitch-exposed-some-drivers-license-numbers/
-
Fraud in Your Inbox: Email Is Still the Weakest Link
At-Bay Cyber Insurance Claims Report Finds 83% of Financial Fraud Starts With Email. Financial fraud remains the leading driver of cyberinsurance claims, with 83% of cases traced back to email-based attacks. Common tactics used to deceive employees include wiring funds to fraudulent accounts, generative AI-crafted emails, executive and vendor impersonation and BEC scams. First seen…
-
Insurance firm Lemonade says breach exposed driver’s license numbers
A vulnerability within the online application platform for insurance policies likely resulted in the breach of customer details. First seen on therecord.media Jump to article: therecord.media/lemonade-insrance-breach-numbers-license
-
Digital Threats Targeting India – Banking Financial Services and Insurance Insurance (BFSI) Sector
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/digital-threats-targeting-india-banking-financial-services-and-insurance-insurance-bfsi-sector
-
Compliance Needs Financial Metrics, Not Just Dashboards
Elliott of Zurich Insurance on Why Business Leaders Need Quantifiable Cyber Risks. Many compliance programs rely on vague risk scores and dashboards. These don’t always help business leaders make decisions. Dan Elliott, head of cyber resiliency, Zurich Resilience Solutions, ANZ, at Zurich Insurance, said organizations should frame compliance through financial metrics. First seen on govinfosecurity.com…
-
Was ist eine Cyber-Versicherung?
Eine Cyber-Versicherung kann ein hilfreiches Tool sein, das im Falle eines digitalen Sicherheitsvorfalls ermöglicht, das Risiko zu übertragen – allerdings nur bei richtiger Anwendung. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2015/06/05/ist-eine-cyber-versicherung/
-
Private Internetnutzer: Bisher nur wenige mit Cyber-Versicherung
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/privat-internetnutzer-kaum-cyber-versicherungen
-
10 things you should include in your AI policy
Tags: access, ai, best-practice, breach, business, ceo, ciso, compliance, cybersecurity, data, data-breach, finance, framework, gartner, GDPR, governance, incident response, insurance, law, monitoring, privacy, regulation, risk, software, strategy, switch, technology, tool, training, updateInput from all stakeholders: At Aflac, the security team took the initial lead on developing the company’s AI policy. But AI is not just a security concern. “And it’s not just a legal concern,” Ladner says. “It’s not just a privacy concern. It’s not just a compliance concern. You need to bring all the stakeholders…
-
Ensuring Data Privacy and Compliance in the Philippine Insurance Industry
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/ensuring-data-privacy-and-compliance-in-the-philippine-insurance-industry
-
Todyl, Spectra Unveil Cyber Insurance Program for MSSP and MSP Clients
First seen on scworld.com Jump to article: www.scworld.com/news/todyl-spectra-unveil-cyber-insurance-program-for-mssp-and-msp-client
-
Cyber insurance isn’t always what it seems
Many companies think cyber insurance will protect them from financial losses after an attack. But many policies have gaps. Some claims get denied. Others cover less than … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/27/cyber-insurance-ciso/
-
Rising attack exposure, threat sophistication spur interest in detection engineering
Tags: access, ai, attack, automation, banking, ceo, ciso, cloud, compliance, cyber, cybersecurity, data, detection, endpoint, exploit, finance, framework, healthcare, infrastructure, insurance, intelligence, LLM, malware, mitre, network, programming, ransomware, RedTeam, risk, sans, siem, software, supply-chain, tactics, technology, threat, tool, update, vulnerability, zero-dayMore than the usual threat detection practices: Proponents argue that detection engineering differs from traditional threat detection practices in approach, methodology, and integration with the development lifecycle. Threat detection processes are typically more reactive and rely on pre-built rules and signatures from vendors that offer limited customization for the organizations using them. In contrast, detection…
-
CaaS: The Key to More Affordable Cyber Insurance
Compliance as a Service (CaaS) strengthens a company’s posture and defensibility, making it more attractive to insurers. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/caas-the-key-to-more-affordable-cyber-insurance/
-
The State of Digital Trust in 2025 Consumers Still Shoulder the Responsibility
Tags: access, ai, authentication, banking, breach, captcha, cloud, compliance, control, cyber, data, deep-fake, encryption, finance, fintech, framework, GDPR, government, healthcare, identity, india, insurance, law, login, malicious, metric, mfa, mitigation, password, privacy, regulation, resilience, risk, service, software, strategy, switch, technology, threat, toolThe State of Digital Trust in 2025 – Consumers Still Shoulder the Responsibility madhav Thu, 03/20/2025 – 04:52 Trust remains the cornerstone of digital interactions, yet its foundations are increasingly fragile in an era of sophisticated cyber threats and evolving consumer expectations. The 2024 Digital Trust Index gave us extremely important insights into the expectations…
-
That breach cost HOW MUCH? How CISOs can talk effectively about a cyber incident’s toll
Tags: attack, breach, business, ciso, cyber, cybersecurity, data, email, incident, incident response, insurance, jobs, network, phone, ransomware, risk, risk-managementThe importance of practice in estimating costs: Quantifying the costs of an incident in advance is an inexact art greatly aided by tabletop exercises. “The best way in my mind to flush all of this out is by going through a regular incident response tabletop exercise,” Gary Brickhouse, CISO at GuidePoint Security, tells CSO. “People…
-
UK Cybersecurity Weekly News Roundup 16 March 2025
Tags: access, apple, attack, backdoor, backup, compliance, control, cyber, cyberattack, cybercrime, cybersecurity, data, encryption, finance, firewall, government, group, hacking, insurance, law, lockbit, malicious, network, office, privacy, ransomware, regulation, risk, russia, service, software, virusWelcome to this week’s edition of our cybersecurity news roundup, bringing you the latest developments and insights from the UK and beyond. UK Government’s Stance on Encryption Raises Global Concerns The UK government has ordered Apple to provide backdoor access to iCloud users’ encrypted backups under the Investigatory Powers Act of 2016. This secret order…
-
7 misconceptions about the CISO role
Tags: api, attack, breach, business, ceo, ciso, compliance, control, corporate, cyber, cyberattack, cybersecurity, defense, exploit, finance, firewall, governance, infrastructure, insurance, jobs, network, password, phishing, resilience, risk, risk-assessment, risk-management, saas, software, startup, strategy, technology, threat, tool, training, update, vulnerabilityKatie Jenkins, EVP and CISO, Liberty Mutual Insurance Liberty Mutual InsuranceThe field is changing so rapidly, Jenkins adds, she needs to commit time to keeping up on research and connecting with other CISOs for knowledge exchange.In addition to securing infrastructure, an effective CISO focuses on securing the business, experts say. This requires understanding how security…
-
Insurer Notifying 335,500 Customers, Agents, Others of Hack
Texas Incident is Largest Breach Reported by a Health Plan So Far in 2025. A Texas-based insurance firm is notifying more than 335,500 people of a December hack involving their sensitive personal and health information. The breach affects many – but not all – of the company’s policyholders, agents and insurance carrier partners in multiple…
-
Boards Challenged to Embrace Cybersecurity Oversight
Integrating Cyber Risk into Business Risk Decisions Cybersecurity failures are now business risks that CEOs and Boards must own. The world of business owners, investors, and their representatives are collectively realizing the potentially catastrophic impacts of cybersecurity incidents if not incorporated into the strategic management of the most senior business leadership. Many regulatory bodies, insurance…