Collecting Cyber-News from over 60 sources

Tag: insurance

Massive healthcare breaches prompt US cybersecurity rules overhaul

Dec 31, 2024 9:27 AM

Tags: breach, cybersecurity, data, healthcare, insurance, service, update

The U.S. Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to secure patients’ health data following a surge in massive healthcare data leaks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/massive-healthcare-breaches-prompt-us-cybersecurity-rules-overhaul/
How to Get the Most Out of Cyber Insurance

Dec 31, 2024 1:28 AM

Tags: cyber, cybersecurity, insurance, strategy

Cyber insurance should augment your cybersecurity strategy, not replace it. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/get-most-out-cyber-insurance
HIPAA to be updated with cybersecurity regulations, White House says

Dec 27, 2024 10:43 PM

Tags: cybersecurity, data, HIPAA, insurance, regulation

The Biden administration is proposing an overhaul of the data security rules under the landmark Health Insurance Portability and Accountability Act (HIPAA).]]> First seen on therecord.media Jump to article: therecord.media/hipaa-cybersecurity-regulations-update
422,000+ Impacted in American Addiction Centers Cybersecurity Incident

Dec 27, 2024 8:43 AM

Tags: cyberattack, cybersecurity, data, data-breach, insurance

American Addiction Centers (AAC) has announced that nearly half a million individuals had their personal and health-related information exposed following a cyberattack in September 2024. The American Addiction Centers cyberattack, which compromised sensitive data such as Social Security numbers and health insurance information, affected a total of 422,424 individuals. First seen on thecyberexpress.com Jump to…
Nearly half a million people had data stolen after cyberattack on American Addiction Centers

Dec 26, 2024 2:44 PM

Tags: breach, cyberattack, data, data-breach, insurance

The company began mailing out breach notification letters ahead of the Christmas holiday, warning 422,424 people that Social Security numbers and health insurance information were among the data leaked during the attack. ]]> First seen on therecord.media Jump to article: therecord.media/data-breach-american-addiction-centers
How to Streamline Your Cybersecurity Risk Management Process

Dec 24, 2024 5:43 PM

Tags: business, cyber, cybersecurity, data, HIPAA, incident response, insurance, regulation, risk, risk-assessment, risk-management, vulnerability
7 biggest cybersecurity stories of 2024

Dec 24, 2024 10:44 AM

Tags: access, ai, alphv, at&t, attack, authentication, breach, business, china, cio, ciso, citrix, cloud, credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, detection, email, espionage, exploit, extortion, finance, google, government, group, hacking, healthcare, incident response, infection, insurance, intelligence, international, jobs, lockbit, malicious, malware, mandiant, mfa, microsoft, network, nis-2, north-korea, office, phishing, phone, privacy, ransomware, regulation, risk, risk-management, scam, service, software, strategy, tactics, technology, threat, ukraine, update, vulnerability, windows

Cybersecurity headlines were plenty this year, with several breaches, attacks, and mishaps drawing worldwide attention.But a few incidents in particular had far-reaching consequences, with the potential to reshape industry protections, shake up how vendors secure customers’ systems, or drive security leaders to reassess their strategies.Longer-term trends such as increased cybersecurity regulations and the impact of…
How two organizations beat the cyber insurance maze

Dec 23, 2024 9:42 PM

Tags: cyber, insurance

First seen on scworld.com Jump to article: www.scworld.com/resource/how-two-organizations-beat-the-cyber-insurance-maze
Regional Care Data Breach Impacts 225,000 People

Dec 18, 2024 2:42 PM

Tags: breach, data, data-breach, healthcare, insurance

Healthcare insurance firm Regional Care has disclosed a data breach impacting more than 225,000 individuals. The post Regional Care Data Breach Impacts 225,000 People appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/regional-care-data-breach-impacts-225000-people/
Key strategies to enhance cyber resilience

Dec 18, 2024 8:43 AM

Tags: attack, awareness, backup, banking, breach, business, ceo, compliance, control, crowdstrike, cyber, cybersecurity, data, finance, government, group, healthcare, incident, incident response, infrastructure, insurance, metric, network, phishing, programming, ransom, ransomware, resilience, risk, security-incident, service, skills, software, strategy, supply-chain, technology, threat, training, update, vulnerability, windows

The faulty CrowdStrike software update that triggered IT outages on a global scale in July was a sobering reminder of the importance of incident response and business continuity plans.The update caused more than eight million Windows devices to crash and take down with them airline reservation systems, hospital and government services, financial and banking applications…
Rhode Island suffers major cyberattack, exposing personal data of thousands

Dec 16, 2024 2:42 PM

Tags: attack, breach, conference, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, finance, fraud, government, hacker, identity, infrastructure, insurance, international, law, leak, malicious, malware, mfa, organized, password, ransom, service, theft, threat, unauthorized, update, vulnerability

Rhode Island has suffered a severe cyberattack that has potentially exposed the personal data of hundreds of thousands of residents enrolled in state-run social services programs since 2016.Officials confirmed that RIBridges, the government system for programs like Medicaid and SNAP, was infiltrated by an international cybercriminal group. Governor Dan McKee confirmed that sensitive information, including…
Navigating HIPAA Compliance When Using Tracking Technologies on Websites

Dec 16, 2024 5:42 AM

Tags: compliance, healthcare, HIPAA, insurance, service, tool

Websites have become indispensable tools for healthcare organizations to connect with patients, streamline operations, and enhance service delivery. Modern websites are composed of components that “build” unique user experiences in real time.However, the use of tracking technologies on these websites presents unique challenges in complying with the Health Insurance Portability and Accountability Act of 1996…The…
Lloyd’s of London Launches New Cyber Insurance Consortium

Dec 13, 2024 3:05 PM

Tags: access, cyber, insurance

Under the program, HITRUST-certified organizations gain access to exclusive coverage and rates. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/lloyd-s-of-london-launches-new-cyber-insurance-consortium
Akira and RansomHub Surge as Ransomware Claims Reach All-Time High

Dec 13, 2024 3:05 PM

Tags: data, group, insurance, leak, ransomware

Claims on ransomware groups’ data leak sites reached an all-time high in November, with 632 reported victims, according to Corvus Insurance First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/akira-ransomhub-ransomware-claims/
Thales and Imperva Win Big in 2024

Dec 13, 2024 1:05 PM

Tags: access, api, application-security, attack, authentication, banking, business, ciso, cloud, communications, compliance, conference, control, cyber, cybersecurity, data, ddos, defense, encryption, firewall, gartner, group, guide, iam, identity, infosec, insurance, intelligence, malicious, mfa, microsoft, monitoring, privacy, risk, saas, service, software, strategy, threat, usa

Thales and Imperva Win Big in 2024 madhav Fri, 12/13/2024 – 09:36 At Thales and Imperva, we are driven by our commitment to make the world safer, and nothing brings us more satisfaction than protecting our customers from daily cybersecurity threats. But that doesn’t mean we don’t appreciate winning the occasional award. In the year…
A security ‘hole’ in Krispy Kreme Doughnuts helped hackers take a bite

Dec 12, 2024 1:05 PM

Tags: authentication, business, cybersecurity, finance, group, hacker, infection, insurance, law, service, threat, tool, unauthorized

Global Doughnut and coffee chain owner Krispy Kreme, famous for its “original glazed doughnuts,” has a “portion of their IT systems” disrupted by a cyberattack.In an SEC filing on Wednesday, the global doughnut business said it suffered a cybersecurity incident that has hampered part of its online business in the US.”Krispy Kreme shops globally are…
Insurance Worker Sentenced After Illegally Accessing Claimants’ Data

Dec 12, 2024 12:05 PM

Tags: data, insurance

An insurance employee has been handed a suspended sentence after illegally accessing personal information First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/worker-sentenced-illegally/
Cybersecurity Snapshot: Study Raises Open Source Security Red Flags, as Cyber Agencies Offer Prevention Tips Against Telecom Spying Attacks

Dec 6, 2024 6:49 PM

Tags: access, advisory, ai, attack, authentication, best-practice, breach, business, china, cisa, cloud, communications, compliance, computing, control, credentials, cyber, cybercrime, cybersecurity, data, data-breach, defense, detection, espionage, exploit, finance, firewall, fraud, government, group, guide, hacker, hacking, identity, infrastructure, insurance, international, Internet, interpol, iot, korea, law, least-privilege, linux, lockbit, login, malware, mfa, mitigation, mobile, network, open-source, password, phishing, privacy, ransomware, RedTeam, resilience, risk, router, scam, service, software, strategy, supply-chain, technology, theft, threat, tool, unauthorized, usa, vpn, vulnerability, windows

Don’t miss the Linux Foundation’s deep dive into open source software security. Plus, cyber agencies warn about China-backed cyber espionage campaign targeting telecom data. Meanwhile, a study shows the weight of security considerations in generative AI projects. And get the latest on ransomware trends, financial cybercrime and critical infrastructure security. Dive into six things that…
Why your cyber insurance may not cover everything: Finding and fixing blind spots

Dec 5, 2024 9:50 PM

Tags: cyber, insurance

First seen on scworld.com Jump to article: www.scworld.com/resource/why-your-cyber-insurance-may-not-cover-everything-finding-and-fixing-blind-spots
What is PHI? (Protected Health Information)

Dec 5, 2024 2:48 PM

Tags: communications, data, healthcare, insurance

Protected Health Information (PHI) is a critical aspect of healthcare, encompassing any data that can identify an individual and is used in the context of medical care. Examples of PHI include personal identifiers (name, address, Social Security number), medical records, health insurance information, and even communications containing health details. The post What is PHI? (Protected…
Cyber insurance checklist: 12 must-have security features

Dec 3, 2024 9:48 PM

Tags: cyber, insurance

First seen on scworld.com Jump to article: www.scworld.com/resource/cyber-insurance-checklist-12-must-have-security-features
Feds Propose AI ‘Guardrails’ for Medicare Advantage Plans

Dec 3, 2024 8:49 AM

Tags: access, ai, healthcare, insurance, intelligence, service

Provision Emphasizes Existing Medicare Regs for Equitable Access to Health Services. The Centers for Medicare and Medicaid Services has issued proposed guardrails to help ensure that the use of artificial intelligence for Medicare Advantage insurance plans does not result in inequitable access to healthcare-related services. The proposed rule will go into effect in 2026. First…
Feds Propose AI ‘Guard Rails’ for Medicare Advantage Plans

Dec 2, 2024 11:48 PM

Tags: access, ai, healthcare, insurance, intelligence, service

Provision Emphasizes Existing Medicare Regs for Equitable Access to Health Services. The Centers for Medicare and Medicaid Services has issued proposed guard rails to help ensure that the use of artificial intelligence for Medicare Advantage insurance plans does not result in inequitable access to healthcare-related services. The proposed rule will go into effect in 2026.…
How cyber defense investments can get you optimal cyber insurance coverage

Dec 2, 2024 9:48 PM

Tags: cyber, defense, insurance

First seen on scworld.com Jump to article: www.scworld.com/resource/how-cyber-defense-investments-can-get-you-optimal-cyber-insurance-coverage
Swedish authorities urged to discontinue AI welfare system

Dec 2, 2024 5:28 AM

Tags: ai, insurance, international

Amnesty International is calling on Sweden’s social insurance agency to immediately discontinue its machine learning-based welfare system, following an investigation by Lighthouse Reports and Svenska Dagbladet that found it to be discriminatory First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366616576/Swedish-authorities-urged-to-discontinue-AI-welfare-system
CyberReport von Sophos zeigt hohe Anforderungen bei Cyberversicherungen

Dec 1, 2024 6:27 PM

Tags: cyber, insurance, sophos

In der herstellerunabhängigen Befragung nahmen 5.000 Führungskräfte der IT und Cyber Security zwischen Januar und Februar 2024 teil. 14 Länder aus Ame… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/cyber-insurance-report-von-sophos-zeigt-hohe-anforderungen-bei-cyberversicherungen/a37692/
Cyberversicherungen Betrug bis Virenangriff Wann eine Extra-Versicherung wirklich sinnvoll ist

Dec 1, 2024 3:20 AM

Tags: fraud, insurance, Internet

Viele sind bereits in irgendeiner Form Opfer von Internet-Betrug geworden. Cyberversicherungen versprechen hier besonderen Schutz. Die konkreten Bedin… First seen on welt.de Jump to article: www.welt.de/finanzen/plus253405214/Internet-Betrug-bis-Virenangriff-Wann-eine-Extra-Versicherung-wirklich-sinnvoll-ist.html
Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit

Nov 27, 2024 8:11 PM

Tags: access, antivirus, apt, attack, backdoor, browser, business, computer, cve, cybercrime, cyberespionage, defense, endpoint, exploit, flaw, germany, government, group, insurance, intelligence, malicious, microsoft, msp, password, powershell, russia, software, threat, ukraine, vulnerability, windows, zero-day

A Russia-aligned group that engages in both cybercrime and cyberespionage operations used a zero-click exploit chain last month that combined previously unknown and unpatched vulnerabilities in Firefox and Windows.The campaign, whose goal was to deploy the group’s RomCom backdoor on computers, targeted users from Europe and North America. The APT group, also known as Storm-0978,…
New York fines Geico, Travelers $11.3M for pandemic-era breaches

Nov 27, 2024 6:11 PM

Tags: attack, breach, data, data-breach, insurance

The auto insurance companies were penalized for a series of attacks that exposed the personal data of 120,000 people in late 2020 and early 2021. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/new-york-fines-geico-travelers/734045/
New York fines Geico, Travelers $11.3M over data breaches

Nov 27, 2024 12:10 PM

Tags: authentication, breach, data, insurance

The two insurance giants were fined millions by New York state regulators and are required to enhance security protocols around authentication and penetration testing. First seen on Jump to article: /www.techtarget.com/searchsecurity/news/366616382/New-York-State-fines-Geico-Travelers-113M-over-data-breaches