Accountability, Insurance and Internet - Cyber Security Informer

RSAC Fireside Chat: Operationalizing diverse security to assure customers, partners–and insurers

The Last Watchdog

JUNE 11, 2025

Related: Getting the most from cyber insurance At RSAC 2025, I met with ESET Chief Security Evangelist Tony Anscombe to trace a quiet but growing convergence: endpoint defense, cyber insurance, and monoculture risk are no longer separate concerns. Cyber insurers want it. And increasingly, that evidence is under scrutiny.

Insurance

Insurance Cyber Insurance Antivirus CISO

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Krebs on Security

MAY 16, 2020

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service.

Insurance

Insurance Banking Identity Theft Accountability

Riding the State Unemployment Fraud ‘Wave’

Krebs on Security

MAY 23, 2020

Secret Service warned of “massive fraud” against state unemployment insurance programs , noting that false filings from a well-organized Nigerian crime ring could end up costing the states and federal government hundreds of millions of dollars in losses. Meanwhile, a number of U.S. Last week, the U.S. ” Image: Agari.

Insurance

Insurance Accountability Banking Government

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019.

Insurance

Insurance Financial Services Penetration Testing Scams

RSAC Fireside Chat: Human and machine identity risks are converging — and they’re finally visible

The Last Watchdog

MAY 30, 2025

Non-human service accounts have quietly become one of the biggest liabilities in enterprise security. Yet despite their scale, service accounts remain largely invisible to traditional IAM and PAM systems. Yet despite their scale, service accounts remain largely invisible to traditional IAM and PAM systems.

Risk

Risk Cyber Insurance Accountability Insurance

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

for stealing data on nearly 10 million customers of the Australian health insurance giant Medibank. By way of example, he suggested maybe a company centered around recovering lost passwords for cryptocurrency accounts, or perhaps a series of online retail stores that sold cheap Chinese goods at a steep markup in the United States.

Advertising

Advertising Retail Cryptocurrency Cybercrime

E-Verify’s “SSN Lock” is Nothing of the Sort

Krebs on Security

JULY 4, 2020

One of the most-read advice columns on this site is a 2018 piece called “ Plant Your Flag, Mark Your Territory ,” which tried to impress upon readers the importance of creating accounts at websites like those at the Social Security Administration , the IRS and others before crooks do it for you.

Accountability

Accountability Passwords Authentication Insurance

Is Your Computer Part of ‘The Largest Botnet Ever?’

Krebs on Security

MAY 29, 2024

.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. Cloud Router was previously called 911 S5.

VPN

VPN Cybercrime Government Internet

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Stuart McClure, CEO, Qwiet AI McClure The SEC’s goal appears to be to hold these companies accountable to investors for any successful cyberattacks and expose the company’s lack of preparation and prevention. Other companies may continue to rely on hiding the ball, scapegoating and relying on insurance to cover the losses.

CISO

CISO CSO Risk Cyber threats

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. That second computer had the ability to manage National Bank customer accounts and their use of ATMs and bank cards. The hackers used hundreds of ATMs across North America to dispense funds from customer accounts. million total.

Banking

Banking Insurance Computers and Electronics Cyber Insurance

The Case for Limiting Your Browser Extensions

Krebs on Security

MARCH 3, 2020

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. How did a browser extension lead to a malicious link being added to the health insurance company Web site?

Insurance

Insurance Advertising Internet Internet

Gift Card Gang Extracts Cash From 100k Inboxes Daily

Krebs on Security

SEPTEMBER 2, 2021

The data in this story come from a trusted source in the security industry who has visibility into a network of hacked machines that fraudsters in just about every corner of the Internet are using to anonymize their malicious Web traffic. “These guys are looking for low-hanging fruit — basically cash in your inbox.

Accountability

Accountability Authentication Passwords Hacking

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The Last Watchdog

JUNE 9, 2022

And, let’s be honest , the deceptive writing phishing assaults and other cyber threats today employ are skilled enough to fool even the most trained, internet-savvy experts. Internet and email fraud. A criminal exploiting someone’s medical or insurance details to make fraudulent claims is known as medical identity theft.

Identity Theft

Identity Theft Scams Insurance Internet

The CrowdStrike Outage and Market-Driven Brittleness

Schneier on Security

JULY 25, 2024

Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. The catastrophe is yet another reminder of how brittle global internet infrastructure is. Insurance blunts financial losses.) Compare the internet with ecological systems.

Marketing

Marketing Software Internet Internet

RSAC Fireside Chat: Start-up Anetac rolls out a solution to rising ‘service accounts’ exposures

The Last Watchdog

MAY 30, 2024

Related: How weak service accounts factored into SolarWinds hack By comparison, almost nothing has been done to strengthen service accounts – the user IDs and passwords set up to authenticate all the backend, machine-to-machine connections of our digital world. Acohido Pulitzer Prize-winning business journalist Byron V.

Accountability

Accountability Small Business Insurance Authentication

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

From the report: " Samples of the stolen data can be easily found on the clear web, accessible to anyone with internet access. We need to remember, like every industry, there is huge gap between the dozen or so large Fortune 100 health insurance payers, and the 1 million hospitals and doctors offices.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

Exploring influences on SSC grades for insurance companies

CyberSecurity Insiders

JANUARY 19, 2022

There are more online stores and services available than ever, and you are able to shop for almost anything online whether it's groceries or insurance. There are many ways to protect yourself while browsing the internet , and one of those ways is to choose reputable businesses with strong security. The vocabulary of cybersecurity.

Insurance

Insurance Cybercrime Cybersecurity Phishing

New Ransom Payment Schemes Target Executives, Telemedicine

Krebs on Security

DECEMBER 8, 2022

The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” Using hard-to-crack unique passwords to protect sensitive data and accounts, as well as enabling multi-factor authentication. ”

Healthcare

Healthcare Backups Ransomware Insurance

Robocall Legal Advocate Leaks Customer Data

Krebs on Security

AUGUST 3, 2020

The leaked Blacklist customer database points to various companies you might expect to see using automated calling systems to generate business, including real estate and life insurance providers, credit repair companies and a long list of online advertising firms and individual digital marketing specialists.

Marketing

Marketing Mobile Consumer Protection Wireless

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. According to CryptoIns analysts, the crypto assets insurance market is expected to reach $7 billion by 2023. Why do crypto exchanges’ users need insurance?

Insurance

Insurance Cryptocurrency Cyber threats Marketing

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

Megatraffer explained that malware purveyors need a certificate because many antivirus products will be far more interested in unsigned software, and because signed files downloaded from the Internet don’t tend to get blocked by security features built into modern web browsers. user account — this one on Verified[.]ru

Malware

Malware Cybercrime Antivirus Software

As market for cyber insurance booms, watchdog calls for better data

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. Photo by Spencer Platt/Getty Images).

Cyber Insurance

Cyber Insurance Insurance Marketing Cyber Risk

IRS To Ditch Biometric Requirement for Online Access

Krebs on Security

FEBRUARY 7, 2022

as a condition of receiving state or federal financial assistance, such as unemployment insurance, child tax credit payments, and pandemic assistance funds. In the face of COVID, dozens of states collectively lost tens of billions of dollars at the hands of identity thieves impersonating out-of-work Americans seeking unemployment insurance.

Insurance

Insurance Government Authentication Accountability

8 Ways to Protect Yourself against Scams on Black Friday and Cyber Monday

Adam Levin

NOVEMBER 23, 2020

Keep a close eye on your accounts. So, either check your bank and credit card accounts daily or sign up for free transaction monitoring programs which notify you whenever there is activity in your bank, credit union or credit card accounts. Credit cards offer more protections, and less disruption, for victims of fraud.

Scams

Scams Banking Consumer Protection Retail

University of Michigan Cyber Incident Causes Internet Outage

SecureWorld News

AUGUST 31, 2023

The University of Michigan experienced an internet outage on August 27th that affected students, faculty, and staff across all three campuses just as the fall semester was kicking off. Students and faculty were also unable to connect to the internet on their personal devices. The outage began at approximately 1:40 p.m.

Internet

Internet Internet Identity Theft Insurance

GUEST ESSAY: Scammers leverage social media, clever con games to carry out digital exploitation

The Last Watchdog

MARCH 20, 2023

Exploitation drivers From the case of Hegestratos committing insurance fraud by sinking a ship in 300 B.C., Digital exploitation refers to the abuse and manipulation of technology and the internet for illegal and unethical purposes, including identity theft, sextortion, cyberbullying, online scams, and data breaches.

Media

Media Identity Theft Internet Internet

Checklist for Getting Cyber Insurance Coverage

Thales Cloud Protection & Licensing

MAY 10, 2022

Checklist for Getting Cyber Insurance Coverage. The necessity for cyber-insurance coverage. With cyber attacks amounting to a question of when and not if, cyber insurance becomes crucial for ensuring business continuity and mitigating the business impact of attacks – should they occur. Tue, 05/10/2022 - 05:43.

Cyber Insurance

Cyber Insurance Insurance Cyber Risk Cyber Attacks

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

government agency in charge of improving the nation’s cybersecurity posture is ordering all federal agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes amid a surge in attacks targeting previously unknown vulnerabilities in widely used security and networking appliances.

Risk

Risk VPN Internet Internet

50 Ways to Avoid Getting Scammed on Black Friday

Adam Levin

NOVEMBER 17, 2020

Credit cards offer markedly better fraud protections than debit cards , which connect directly to your bank account. Virtual credit cards similarly allow online shoppers to mask their financial accounts. Many financial institutions offer free transaction alerts that notify you when charges hit your account. Save your receipts.

Scams

Scams Retail Banking Passwords

Resolving conflicts between security best practices and compliance mandates

CSO Magazine

AUGUST 31, 2022

So, you read a great tip on the internet and think it would improve your security posture. Before you bring that tip to management, it’s wise to determine if it’s allowed by your security compliance requirements or can become an acceptable exception to your compliance templates. To read this article in full, please click here

Insurance

Insurance Internet Internet Technology

The Hidden Cost of Ransomware: Wholesale Password Theft

Krebs on Security

JANUARY 6, 2020

Organizations in the throes of cleaning up after a ransomware outbreak typically will change passwords for all user accounts that have access to any email systems, servers and desktop workstations within their network. who picked up his cell phone and said shut it off from the Internet.” Shipping and postage accounts.

Passwords

Passwords Ransomware Password Management Malware

Confessions of an ID Theft Kingpin, Part II

Krebs on Security

AUGUST 27, 2020

But the Secret Service discovered his various accounts at these data brokers and had them shut down one by one. billion in new account fraud at banks and retailers throughout the United States, and roughly $64 million in tax refund fraud with the states and the IRS. By this time, his ID theft services had earned roughly USD $3 million.

Identity Theft

Identity Theft Government Retail Banking

Allstate Violates Drivers’ Privacy, Texas AG Alleges

Security Boulevard

JANUARY 15, 2025

Dont Mess With Texas Privacy: We will hold all these companies accountable, rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers Privacy, Texas AG Alleges appeared first on Security Boulevard.

Accountability

Accountability Insurance Social Engineering Spyware

BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar

Security Boulevard

SEPTEMBER 5, 2024

This specific folder is under the ownership of a compromised account belonging to a regional government organization in Colombia. This ZIP archive is hosted on a Google Drive folder, which is associated with a compromised Gmail account owned by a government organization with a ".gov.co" gov.co" top-level domain.

Insurance

Insurance Phishing Banking Encryption

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

The configuration issue made this access point publicly available on the Internet. The attacker claims to have compromised an end-of-lifed GPRS system that was exposed to the internet and was able to pivot from it to the internal network, where they were able to launch a brute force authentication attack against internal systems.

Data breaches

Data breaches Mobile Authentication Accountability

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

SecureWorld News

APRIL 23, 2025

Phishing accounted for nearly 25% of all breaches. The DBIR breaks down breach trends across industries: Financial and Insurance: Heavily targeted by credential stuffing and phishing; fastest detection rates. If those controls are not effective, cyber insurance underwriters might have to pay out. And it's not slowing down."

CISO

CISO Backups Ransomware Risk

K12 education giant paid the ransom to the Ryuk gang

Security Affairs

DECEMBER 2, 2020

The attack did not affect the Learning Management System (“LMS”) that is used to provide educational content to students and to host student accounts. They also state that most major systems, including payroll, accounting, and enrollment systems, were unaffected. “K12 Inc. NYSE: LRN) (“Stride” or “we”) – to be Stride, Inc.

Education

Education Cyber Insurance Insurance Ransomware

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

The Last Watchdog

MAY 13, 2025

The way accountability is structured, everything rolls downhill to one person, even when the real issues are baked into the system. Build shared accountability across the C-suite. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. My guidance?

CISO

CISO Risk Cybersecurity Government

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

CyberSecurity Insiders

SEPTEMBER 20, 2021

They protect your electronic devices and accounts from hackers. In addition, regularly changing your password and using different passwords for all your online accounts will lower your risk of being compromised. Invest in cybersecurity insurance. Use strong passwords. Passwords are your first line of defense.

Cybersecurity

Cybersecurity Insurance Passwords Encryption

The danger of data breaches — what you really need to know

Webroot

APRIL 22, 2025

Financial services industry: Banks, insurance companies and other financial organizations offer a wealth of opportunity for hackers who can use stolen bank account and credit card information for their own financial gain. They can open accounts in your name, apply for loans, and even file false tax returns.

Data breaches

Data breaches Identity Theft Passwords eCommerce

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Similarly, software bills of materials (SBOMs) underscore the need for better accountability in third-party software. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. Acohido Pulitzer Prize-winning business journalist Byron V.

Cybersecurity

Cybersecurity CISO Risk Government

Healthcare Cybersecurity Market Soars: Key Trends and Insights

SecureWorld News

MAY 2, 2025

Hospitals and clinics are increasingly adopting cloud-based systems, electronic health records, telehealth services, and Internet of Things (IoT) medical devices. Many healthcare providers now undergo annual security audits and risk assessments as required by regulators or cyber insurance providers.

Healthcare

Healthcare Marketing Cybersecurity CISO

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 7, 2024

Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence

Artificial Intelligence Data breaches Scams Insurance

Report: Cyberattacks drive 185% spike in health care data breaches in 2021

SC Magazine

JULY 13, 2021

Malicious cyberattacks caused the majority of these security incidents, accounting for 73% of all breaches. Unauthorized access or disclosure accounted for another 22%, and the remaining 5% were caused by smaller thefts, losses, or improper disposals. More than 22.8 Another 20.7% were attributed to extortion.

Data breaches

Data breaches Insurance Healthcare Education

RSAC Fireside Chat: Operationalizing diverse security to assure customers, partners–and insurers

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Trending Sources

Riding the State Unemployment Fraud ‘Wave’

NY Charges First American Financial for Massive Data Leak

RSAC Fireside Chat: Human and machine identity risks are converging — and they’re finally visible

An Interview With the Target & Home Depot Hacker

E-Verify’s “SSN Lock” is Nothing of the Sort

Is Your Computer Part of ‘The Largest Botnet Ever?’

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

The Case for Limiting Your Browser Extensions

Gift Card Gang Extracts Cash From 100k Inboxes Daily

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The CrowdStrike Outage and Market-Driven Brittleness

RSAC Fireside Chat: Start-up Anetac rolls out a solution to rising ‘service accounts’ exposures

Healthcare Now Third-Most Targeted Industry for Ransomware

Exploring influences on SSC grades for insurance companies

New Ransom Payment Schemes Target Executives, Telemedicine

Robocall Legal Advocate Leaks Customer Data

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Ask Fitis, the Bear: Real Crooks Sign Their Malware

As market for cyber insurance booms, watchdog calls for better data

IRS To Ditch Biometric Requirement for Online Access

8 Ways to Protect Yourself against Scams on Black Friday and Cyber Monday

University of Michigan Cyber Incident Causes Internet Outage

GUEST ESSAY: Scammers leverage social media, clever con games to carry out digital exploitation

Checklist for Getting Cyber Insurance Coverage

CISA Order Highlights Persistent Risk at Network Edge

50 Ways to Avoid Getting Scammed on Black Friday

Resolving conflicts between security best practices and compliance mandates

The Hidden Cost of Ransomware: Wholesale Password Theft

Confessions of an ID Theft Kingpin, Part II

Allstate Violates Drivers’ Privacy, Texas AG Alleges

BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal

K12 education giant paid the ransom to the Ryuk gang

Author’s Q&A: It’s high time for CISOs to start leading strategically — or risk being scapegoated

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

The danger of data breaches — what you really need to know

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Healthcare Cybersecurity Market Soars: Key Trends and Insights

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

Report: Cyberattacks drive 185% spike in health care data breaches in 2021

Stay Connected