Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. Insider Threats as a Growing Concern Insider threats represent one of the most underestimated vectors in this evolving landscape.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

The Last Watchdog

MARCH 11, 2025

In 2024, the average cost of a data breach reached $4.88 million, with nearly half (46 percent) of all breaches involving personally identifiable information (PII), such as addresses, social security numbers, credit card information and social media posts.

B2C 100

B2C Technology B2B Identity Theft 100

Digital Shadows

NOVEMBER 26, 2024

High-privileged accounts enhance attackers’ ability to access unauthorized data, potentially causing data breaches and operational disruptions. Organizations should also implement the priniciple of least privielge (PoLP) to restrict user access to only necessary data, resources, and applications.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

Centraleyes

MAY 21, 2025

Climate risks (floods, wildfires, extreme heat). Reputational Risks and Public Perception In the age of social media and instant communication, reputational risks can escalate rapidly. This same data-driven approach can be applied to compliance tracking, cyber risk, or financial forecasting.

Education 52

Education Risk Cyber Insurance Insurance 52

Joseph Steinberg

JULY 8, 2021

Ironically, while many larger enterprises purchase insurance to protect themselves against catastrophic levels of hacker-inflicted damages, smaller businesses – whose cyber-risks are far greater than those of their larger counterparts – rarely have adequate (or even any) coverage.

Insurance 364

Insurance Cyber Insurance Cybersecurity Small Business 364

The Last Watchdog

DECEMBER 5, 2018

The Atrium breach demonstrates how any third party in a company’s digital ecosystem can be the weak link that gives attackers a clear path to exposed data. The fact that this incident is being labeled “the Atrium breach” in the media also shows where the reputational risk lies. Sticky problem.

Data breaches 153

Data breaches Healthcare Insurance Risk 153

Krebs on Security

AUGUST 25, 2023

And there are indications that fraudsters may already be exploiting the stolen data in phishing attacks. This means that stealing someone’s phone number often can let cybercriminals hijack the target’s entire digital life in short order — including access to any financial, email and social media accounts tied to that phone number.

Mobile 245

Mobile Cyber Risk Cryptocurrency Data breaches 245

SC Magazine

MARCH 5, 2021

Publicly traded companies must start disclosing more “actionable” information to shareholders and regulators around their cyber risks and vulnerabilities. data breach. The post Public companies may not grasp responsibility to investors in sharing info on cyber risk appeared first on SC Media.

Cyber Risk 105

Cyber Risk Risk Data breaches Cyber threats 105

SC Magazine

JULY 13, 2021

million patients have been impacted by a health care data breach so far in 2021, a whopping 185% increase from the same time period last year where just 7.9 The Fortified Health report is meant to support health care covered entities in light of the ongoing threats and the rise in data breach numbers. More than 22.8

Data breaches 113

Data breaches Insurance Healthcare Education 113

Jane Frankland

AUGUST 18, 2020

IBM found that the average time to identify a breach in 2019 was 206 days. Human error causes many data breaches. Often, I see a tendency to deal with risk management as a compliance issue that can be solved by creating lots of rules and ensuring employees follow them. But know this. One size does not fit all.

Cyber Risk 100

Cyber Risk Risk Technology Cybersecurity 100

CyberSecurity Insiders

AUGUST 17, 2021

Pearson, a London based e-textbook publishing firm that supplies software to Schools and Universities has been slapped with a fine of $1 million for misleading investors about a 2018 data breach that witnessed siphoning of millions of student records by hackers.

Data breaches 120

Data breaches Education Cyber Risk Cyber Attacks 120

Dark Reading

OCTOBER 16, 2018

Media, telecom, and technology firms are far more likely to experience a data breach in the near future than organizations in sectors including energy, construction, and transportation.

Cyber Risk 71

Cyber Risk Data breaches Risk Media 71

The Last Watchdog

OCTOBER 5, 2023

5, 2023 — Kovrr , the leading global provider of cyber risk quantification (CRQ) solutions, announces the release of its new Fortune 1000 Cyber Risk Report, shedding light on the complex and ever-evolving cyber risk landscape across various industry sectors and the respective financial repercussions companies may consequently face.

Cyber threats 100

Cyber threats Cyber Risk Retail Risk 100

SC Magazine

APRIL 19, 2021

At a basic level, insurers may simply need to start requiring policyholders to assist in providing or verifying technographics and security posture to bring about more accurate cyber risk assessment. Government action via legislation, regulation, or judicial rulings can play a role in reducing risk and enforcing compliance.

Insurance 113

Insurance Cyber Insurance Ransomware InfoSec 113

The Last Watchdog

OCTOBER 16, 2019

Related: Cyber risks spinning out of IoT Credential stuffing and account takeovers – which take full advantage of Big Data, high-velocity software, and automation – inundated the internet in massive surges in 2018 and the first half of 2019, according to multiple reports. Hackers count on it.

Big data 164

Big data Accountability Passwords Digital transformation 164

SC Magazine

APRIL 23, 2021

Brett Callow, threat analyst at Emsisoft, told SC Media he suspects the second scenario is more likely what the attackers have in mind when they posted the offer online. The post Ransomware gang offers traders inside scoop on attack victims so they can short sell their stocks appeared first on SC Media.

Ransomware 136

Ransomware Marketing Cyber Risk Media 136

The Last Watchdog

FEBRUARY 15, 2024

15, 2024 – Harter Secrest & Emery LLP , a full-service business law firm with offices throughout New York, is pleased to announce that it has been selected as a NetDiligence-authorized Breach Coach ® , a designation only extended to law firms that demonstrate competency and sophistication in data breach response.

Data breaches 100

Data breaches Financial Services Big data Cyber Risk 100

Security Affairs

APRIL 29, 2019

Have I Been Pwned allows users to search across multiple data breaches to see if their email address has been compromised. This data is disconcerting and shows that we are far from to be secure even if security experts continue to warn users of cyber risks associated with the use of weak passwords.

Passwords 111

Passwords Accountability Data breaches Advertising 111

Joseph Steinberg

AUGUST 5, 2021

While leveraging cyber-liability insurance has become an essential component of cyber-risk mitigation strategy, cyber-liability offerings are still relatively new, and, as a result, many parties seeking to obtain coverage are still unaware of many important factors requiring consideration when selecting a policy. .

Insurance 258

Insurance Cyber Insurance Artificial Intelligence Ransomware 258

Approachable Cyber Threats

JULY 31, 2023

and then repeat that process for the many other risks that could lower the value of your investment. In the same way, your investors want to know how prepared you are to foresee and mitigate cybersecurity risk events like data breaches, ransomware, and data center outages resulting from cyber attacks.

Cybersecurity 98

Cybersecurity Risk Cyber Risk Data breaches 98

CyberSecurity Insiders

FEBRUARY 7, 2022

Staying safe online is not just a worry for parents of young children and teenagers – organizations are also constantly at risk from cyber-attacks, which is why training staff to reduce the likelihood of any such attack is crucial. Using varied eLearning techniques.

Internet 94

Internet Internet Data breaches Phishing 94

CyberSecurity Insiders

APRIL 10, 2023

“In the current digital landscape, identity security has gained paramount importance due to the growing cyber risks posed by phishing and social engineering attacks utilizing AI. For instance, popular social media platforms such as YouTube and Twitter have seen a surge in account takeovers and impersonation incidents.

Identity Theft 105

Identity Theft Education Authentication Data breaches 105

Duo's Security Blog

MAY 5, 2022

Our passwords are the gatekeepers to our digital lives, from online banking and shopping accounts to social media platforms, a significant portion of our online accessibility is determined by the strength (and memorability) of our passwords. If you’re anything like me, remembering passwords is a pain.

Passwords 98

Passwords Password Management Authentication Accountability 98

Security Affairs

APRIL 3, 2019

UpGuard experts discovered two datasets exposed online, one belonging to a Mexican media company called Cultura Colectiva and another from a Facebook-integrated app called “At the pool.”

Accountability 111

Accountability Advertising Media Cyber Risk 111

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. According to the Ponemon Institute and IBM, the global average cost of a data breach is $4.24 As the number and severity of data breaches continues to rise, organizations are recognizing that those costs are not theoretical. share of the cyber insurance field.

Cyber Insurance 116

Cyber Insurance Insurance Marketing Small Business 116

IT Security Guru

APRIL 15, 2021

Despite this, however, younger people also demonstrate relatively advanced cybersecurity hygiene, such as having alias accounts for email and social media. Perhaps the possible consequences of a breach are just too overwhelming, and people tune out from the dangers? Cyber risks paralyse consumers into inaction.

Cybersecurity 106

Cybersecurity CISO Passwords Cyber Risk 106

SC Magazine

FEBRUARY 10, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) recently included security ratings or scoring as part of its cyber risk reduction initiative. The Cybersecurity and Infrastructure Security Agency (CISA) recently included security ratings or scoring as part of its cyber risk reduction initiative.

Cyber Insurance 83

Cyber Insurance Insurance Cyber Risk Government 83

eSecurity Planet

SEPTEMBER 1, 2021

Insecure implementations may result in unauthorized access to threat actors and potential data breaches.” This instance can result in NFV data breaches, resource exhaustion, or DDoS attacks. They can steal sensitive information, tamper with data, track users, execute packet injections, or cause DoS for 5G services.

Risk 136

Risk Cybersecurity IoT Wireless 136

SC Magazine

MAY 24, 2021

Overall, insurance companies seem to be responding to increased demand from clients for cyber-specific insurance, and one survey found that the two things most likely to spur a purchase of cyber insurance are when a business experiences a cyber attack and when they hear about other companies being hit by a cyber attack.

Cyber Insurance 94

Cyber Insurance Insurance Marketing Cyber Risk 94

SC Magazine

APRIL 14, 2021

A seemingly arcane topic, every organization should have vulnerability management as top-of-mind when it comes to managing cyber risk. One example has been the Vastaamo data breach in Finland. The sensitive data of more than 40,000 patients, many of whom were children, had been compromised in 2018.

Government 107

Government Risk Information Security InfoSec 107

IT Security Guru

DECEMBER 1, 2022

After all, cybersecurity is a matter of proper human risk management. Several reports, such as the World Economic Forum Global Risk Report 2022 and Verizon’s 2022 Data Breach Investigations Report highlight that human error is by far the biggest and dominant cause of illicit actions and cybersecurity issues.

Cyber threats 128

Cyber threats Cybersecurity Risk Education 128

SC Magazine

MAY 12, 2021

New research from security vendor Aqua Security, which draws on the past year of internal customer data, finds that businesses continue to suffer fallout from their poorly configured cloud assets in the form of data breaches.

Data breaches 67

Data breaches Internet Internet Media 67

SecureWorld News

SEPTEMBER 3, 2023

From data breaches to sophisticated cyberattacks, enterprises are continuously at risk from a vast spectrum of potential cyber threats from malicious actors. This is where developing a hyper-specific Governance, Risk and Compliance (GRC) framework becomes essential.

Cyber threats 104

Cyber threats Risk Cyber Risk Technology 104

SC Magazine

MAY 28, 2021

Indeed, during a panel moderated by SC Media , two government officials, one with the FBI and one with the Department of Justice, pointed to the Colonial Pipeline when asked to choose the most significant cyber event to occur in the last year. The post Three takeaways from the Colonial Pipeline attack appeared first on SC Media.

Insurance 117

Insurance Government Ransomware Risk 117

BH Consulting

OCTOBER 28, 2021

In the spirit of empowering people and organisations to protect themselves from cyber risks, we’re going to look back at three of the main threats from the past year: ransomware , data breaches , and phishing. We’ll cover lessons to learn to prevent them from becoming risks to your business. Clarity begins at home.

Scams 59

Scams Cybersecurity Data breaches Phishing 59

Spinone

NOVEMBER 30, 2020

Another common understanding of this term is the probability of a cyber incident happening in an information system. Types of cyber risks By probability: Unlikely, e.g., the infection with an old virus Likely, e.g., data breach through shadow IT. Highly probable, e.g., a ransomware attack. Reputational.

Risk 52

Risk Cybersecurity Cyber Risk Encryption 52

SC Magazine

FEBRUARY 16, 2021

Padraic O’Reilly, co-founder of cyber risk firm CyberSaint, shared insights with SC Media, having worked directly with water systems, electric providers, energy companies and other utilities to assess cyber risk and prevent cyberattacks.

Energy and Utilities 78

Energy and Utilities Risk Cyber Risk Government 78