Security Boulevard

DECEMBER 24, 2024

Many industry regulations require or promote cybersecurity risk assessments to bolster incident response, but what is a cybersecurity risk assessment? For example, cyber risk assessments aren't only required under HIPAA (Health Insurance Portability and Accountability Act).

Risk

SecureWorld News

JULY 1, 2025

UnitedHealth now estimates that the February 2024 breach of its Change Healthcare subsidiary compromised data for 190 million Americans , delaying prescriptions and disrupting insurance billing nationwide. Unmanaged devices account for 66% of critical vulnerabilities this year, underscoring how defenders cannot protect what they cannot see.

Social Engineering

Centraleyes

MARCH 13, 2025

The New York Department of Financial Services (NYDFS) Cybersecurity Regulation, officially known as 23 NYCRR Part 500, is a forward-thinking framework designed to protect consumers sensitive data while holding businesses accountable for their cybersecurity practices. This plan is your playbook for staying calm under pressure.

Cybersecurity

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team. Respond Faster. Respond Faster. 6 Alerts Back Unread All Inside the criminal mind: Trend’s deep dive into cybercrime.

Cyber Risk

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Cloud services alerts increased by 20% due to rising cloud account usage, while malicious file alerts in phishing attacks remain high, exploiting users’ tendencies to open files.

Cyber Attacks

Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. Cyber Insurance Cyber insurance will become an essential component of risk management strategies.

Cybersecurity

Centraleyes

APRIL 17, 2025

Various regulatory bodies and industry organizations either require or recommend the use of COSO: The Securities and Exchange Commission (SEC) and the Public Company Accounting Oversight Board (PCAOB) recognize COSO as a valid framework for SOX compliance, ensuring public companies maintain strong internal controls over financial reporting.

Risk

Security Boulevard

MARCH 20, 2025

The surge was fueled by ChatGPT, Microsoft Copilot, Grammarly, and other generative AI tools, which accounted for the majority of AI-related traffic from known applications. Figure 1: Top AI applications by transaction volume Enterprises blocked a large proportion of AI transactions: 59.9%

Social Engineering

SecureWorld News

DECEMBER 27, 2024

Kip Boyle, vCISO, Cyber Risk Opportunities LLC: The Challenge of Cultivating Buy-in from Leadership and Employees "Cybersecurity professionals will continue to face a critical challenge: cultivating genuine buy-in from both senior leaders and employees. Payment Card Industry Data Security Standard (PCI DSS) 4.0

Cybersecurity

Centraleyes

JULY 13, 2025

The Cyber Risk Institute (CRI) Profile is a cybersecurity and risk management framework designed specifically for the financial services sector. Compliance begins with an Impact Tiering Questionnaire, which helps the institution determine its level of cyber risk exposure and regulatory relevance using a four-tier model.

Financial Services

SecureWorld News

MARCH 5, 2025

That headache is real, of course, but accountants and lawyers will step up to sort it out," said Mike Wilkes , Former CISO, MLS; Adjunct Professor, NYU. Thinking a bit more widely, though, I can imagine there will be a concomitant rise in cyber espionage and attacks between groups of impacted groups in China and the U.S.

Cyber Risk

The Last Watchdog

JULY 13, 2023

London, July 13, 2023 — Beazley, the leading specialist insurer, today published its latest Risk & Resilience report: Spotlight on: Cyber & Technology Risks 2023. Yet, boardroom focus on cyber risk appears to be diminishing. trillion by 2025, a 300% increase since 2015 1.

Cyber Risk

eSecurity Planet

MAY 27, 2021

The explosion of ransomware and similar cyber incidents along with rising associated costs is convincing a growing number of insurance companies to raise the premiums on their cyber insurance policies or reduce coverage, moves that could further squeeze organizations under siege from hackers. Insurers Assessing Risks.

Cyber Insurance

SC Magazine

APRIL 19, 2021

AIG is one of the top cyber insurance companies in the U.S. Today’s columnist, Erin Kennealy of Guidewire Software, offers ways for security pros, the insurance industry and government regulators to come together so insurance companies can continue to offer insurance for ransomware. eflon CreativeCommons CC BY 2.0.

Insurance

SecureWorld News

MARCH 20, 2024

In this regard, many have touted cyber insurance as the knight in shining armor, the end all-be all in terms of mitigating criminals' assaults on your network. Here, cyber insurance serves as an invaluable safety net by offering essential financial coverage and support services in the event of a ransomware attack occurring.

Cyber Insurance

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. For that reason, most experts now recognize that a complete cybersecurity strategy not only includes technological solutions aimed at preventing, detecting, and mitigating attacks, it should also include cyber insurance to help manage the associated financial risks.

Cyber Insurance

SC Magazine

FEBRUARY 8, 2021

Every time a driver buckles up or an airbag is deployed we see the powerful influence of the insurance companies who insisted those measures become mandatory. Now, those insurers are poised to drive cybersecurity investment by insisting that organizations meet certain criteria to qualify for coverage. A maturing model.

Insurance

SecureWorld News

MAY 26, 2021

New research reveals that a record number of organizations are buying cyber insurance policies as a tool for protecting themselves against cyber risk. However, the cost for those policies is rising dramatically as cyber insurance premiums soar up to 30% vs. the previous year. cyber insurance market.

Cyber Insurance

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. Cyber has changed everything around us – even the way we tackle geopolitical crisis and conflicts. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance.

Cyber Insurance

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Cyber Risk

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. Photo by Spencer Platt/Getty Images).

Cyber Insurance

SC Magazine

MAY 19, 2021

The development of cybersecurity insurance has played an important role in determining how companies prepare for and respond to ransomware attacks and the resulting fallout. That in itself has evolved, as insurers and insured learn just how expensive that fallout can be. The ransomware reality check for insurers.

Cyber Insurance

Thales Cloud Protection & Licensing

MAY 10, 2022

Checklist for Getting Cyber Insurance Coverage. As cyber criminals mature and advance their tactics, small and medium businesses become the most vulnerable because they lack the capacity – staff, technology, budget - to build strong cyber defenses. The necessity for cyber-insurance coverage.

Cyber Insurance

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance.

Insurance

Joseph Steinberg

APRIL 20, 2021

Hospitals, medical clinics, labs, pharmacies, insurance companies, and others involved in the vaccination process often require people who want to be vaccinated to share large amounts of both medical and demographic data in order to register for vaccine appointments.

Healthcare

Duo's Security Blog

FEBRUARY 4, 2025

With the rate that new threats emerge, it may come as no surprise that cyber liability insurance can be traced back to 1997. In its modern iteration, cyber liability insurance mitigates the losses and business costs associated with cyber incidents and resulting downtime. What would an insurer do?

Cyber Insurance

Security Affairs

NOVEMBER 14, 2022

The size of the cyber risk to companies cannot be underestimated. To indicate the size of the cyber risk to companies, there is, on average, a cyber-attack every 39 seconds, which does not mean that every attack is successful, but that there is an attempt to access companies’ computer systems with that frequency.

Cyber Risk

SecureWorld News

JANUARY 31, 2024

Cyber risk is an existential issue for companies of all sizes and in all industries. However, it also exposes companies to additional layers of risk. While this is standard practice for addressing liability within the universe of real estate, deliberate and precise actions are required when negotiating cyber insurance coverage.

Risk

CyberSecurity Insiders

MARCH 25, 2021

Department for Digital, Culture, Media and Sport (DCMS) of UK conducted the survey and came to the above stated conclusion that shows how relaxed are businesses for cyber security. And sometimes cyber criminals are using email services to trick employees into making fraudulently large financial transfers via new business deals or contracts.

Cyber threats

The Last Watchdog

DECEMBER 5, 2018

The compromised databases included names, addresses, dates of birth, insurance policy details, medical record numbers, account balances and dates of service — of both guarantors and patients. The fact that this incident is being labeled “the Atrium breach” in the media also shows where the reputational risk lies.

Data breaches

SC Magazine

JULY 13, 2021

Malicious cyberattacks caused the majority of these security incidents, accounting for 73% of all breaches. Unauthorized access or disclosure accounted for another 22%, and the remaining 5% were caused by smaller thefts, losses, or improper disposals. More than 22.8 Another 20.7% were attributed to extortion.

Data breaches

SC Magazine

APRIL 23, 2021

For example, they’re used in boardrooms as “eye candy” to portray the state of company cyber-risk, with supply chain partners to manage third-party risk and, even more frightening, by insurance companies to create risk profiles for cyber-insurance policies. Usually not.

Cyber Insurance

SecureWorld News

NOVEMBER 30, 2021

M&A cyber risk is real. The information accessed includes full names, credit and debit card numbers with CCV, financial account numbers, and platform account numbers. What kind of cyber risks are lurking in the organizations you are acquiring or merging with? What it did not know at the time?

Data breaches

The Security Ledger

JUNE 24, 2021

In just the past four months, the United States has contended with a major escalation of cyber risk in critical infrastructure with two, major attacks that disrupted critical sectors. Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk. The repercussions of those attacks were easy to see.

Cyber Risk

SC Magazine

MAY 28, 2021

Colonial Pipeline also heightened discussion about the influence of ransomware attacks on cyber insurance. Even before the incident, some insurers dropped coverage for ransomware payments, while others began to ratchet up cybersecurity standards for coverage in an effort to prevent an attack.

Insurance

The Security Ledger

SEPTEMBER 11, 2019

Third party cyber risk is growing. In this Spotlight Podcast, a companion to our new eBook, Rethinking Third Party Cyber Risk Management, we go deep on the topic of building a mature third party cyber risk program with Dave Stapleton the Director of Assessment. Third party cyber risk is growing.

Cyber Risk

The Last Watchdog

FEBRUARY 25, 2019

A separate set of startups soon cropped up specifically to handle the provisioning of log on accounts that gave access to multiple systems, and also the de-provisioning of those accounts when a user left the company. Governance and attestation quickly became a very big deal.

Government