The Security Ledger

OCTOBER 23, 2018

In this episode of the podcast (#117), we go deep on one of the hottest sectors around: cyber insurance. In the first segment, we talk with Thomas Harvey of the firm RMS about the problem of “silent cyber” risk to insurers and how better modeling of cyber incidents is helping to address that threat.

Insurance 40

Insurance Cyber Risk Risk Cyber Insurance 40

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Cyber Risk 147

Cyber Risk Risk Financial Services Banking 147

The Security Ledger

JUNE 24, 2021

In just the past four months, the United States has contended with a major escalation of cyber risk in critical infrastructure with two, major attacks that disrupted critical sectors. Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk. The repercussions of those attacks were easy to see.

Cyber Risk 52

Cyber Risk Risk Cyber Attacks Ransomware 52

The Last Watchdog

MAY 10, 2021

It turns out there is a ton of third-party risk profiles sitting around not being put to any kind of high use. Back in the mid-1990s, big banks and insurance companies came up with something called “bespoke assessments” as the approach for assessing third party vendor risk. Crowdsourcing risk profiles.

Risk 195

Risk Cyber Risk Insurance Banking 195

The Last Watchdog

JUNE 2, 2022

Third-Party Risk Management ( TPRM ) has been around since the mid-1990s – and has become something of an auditing nightmare. Related: A call to share risk assessments. Cyber risks profiling. CyberGRX’s global cyber risk Exchange caught on quickly. I’ll keep watch and keep reporting.

Cyber Risk 266

Cyber Risk Risk Digital transformation Insurance 266

SecureWorld News

NOVEMBER 2, 2022

He helps senior decision makers overcome cybersecurity sales objections and manages unlimited cyber risks through rigorous prioritization. In the private sector, he was a CISO for an insurance company, credit card processor, bank, credit union, and IT Managed Service Provider. See the conference agenda and register here.

Cybersecurity 88

Cybersecurity Cyber Insurance Insurance Cyber Risk 88

The Last Watchdog

APRIL 8, 2024

Related: The ‘cyber’ case for D&O insurance Vanessa Pegueros knows this all too well. She serves on the board of several technology companies and also happens to be steeped in cyber risk governance. Boards must evolve or their organizations will fail.

CISO 210

CISO Risk Cybersecurity Insurance 210

The Security Ledger

DECEMBER 19, 2018

is poised to transform the global economy, Hanna said, but not if the issue of cyber risk can't be managed. ” is poised to transform the global economy, Hanna said, but not if the issue of cyber risk can’t be managed. "Industry 4.0" We talk about how that might be. Read the whole entry. »

Internet 40

Internet Internet IoT Cyber Risk 40

SC Magazine

FEBRUARY 10, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) recently included security ratings or scoring as part of its cyber risk reduction initiative. The Cybersecurity and Infrastructure Security Agency (CISA) recently included security ratings or scoring as part of its cyber risk reduction initiative.

Cyber Insurance 83

Cyber Insurance Insurance Cyber Risk Government 83

The Security Ledger

NOVEMBER 26, 2018

But what new kinds of Internet of Things use cases may become possible? » Related Stories Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats Episode 114: Complexity at Root of Facebook Breach and LoJax is a RAT You Can’t Kill How Digital Transformation is forcing GRC to evolve. . »

Internet 40

Internet Internet Telecommunications Risk 40

Krebs on Security

DECEMBER 12, 2018

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? Data accidentally released by FICO about the Cyber Risk Score for ExxonMobil.

Cyber Risk 201

Cyber Risk Energy and Utilities Risk Marketing 201

Krebs on Security

MARCH 4, 2022

For example, it subscribed to numerous services that can help determine who or what is behind a specific Internet Protocol (IP) address, or whether a given IP is tied to a known virtual private networking (VPN) service. For now, take a look at the documents and see if there is insurance and bank statements.”

Ransomware 212

Ransomware Insurance Cyber Insurance Accountability 212

SC Magazine

JULY 13, 2021

Lastly, the report warns entities not to rely on cyber insurance as the rates have skyrocketed in response to the rise in ransomware attacks. Some insurers are also jacking up the cost of deductibles and limiting the types of entities they’re willing to insure.

Data breaches 113

Data breaches Insurance Healthcare Education 113

SecureWorld News

DECEMBER 7, 2022

Scott Register, VP of Security Solutions at Keysight Technologies, discusses this trend: "Deepfake technology to date has resulted in political confusion, internet chatter, and some amusing mashup videos, but expect this to change in the near term. Cyber insurance trends in 2023.

Cybersecurity 91

Cybersecurity Cyber Insurance Insurance Social Engineering 91

CyberSecurity Insiders

DECEMBER 18, 2022

In 2023, ‘knowing thy enemy’ in cyber will be more complicated than ever before – but it is critical that organizations remain aware of the realities of cyber risk and cease to focus on the ‘boogie man’ of the internet that features in sensationalist reporting.

Cybersecurity 125

Cybersecurity CISO Insurance Ransomware 125

NetSpi Executives

OCTOBER 17, 2023

Updated Definition of a Cyber Device In the Omnibus legislation, a “cyber device” is defined by three key attributes: It includes software validated, installed, or authorized by the sponsor, indicating its integral role in device functionality. It must possess the ability to connect to the internet.

Healthcare 94

Healthcare Manufacturing Cyber Risk Cybersecurity 94

Jane Frankland

DECEMBER 7, 2023

Vigilance and enhanced cybersecurity measures, such as robust defences and proactive incident response, are crucial for governments, organisations, and individuals to mitigate these risks. which already account for 73% of Internet traffic will surge. Instead, they’ll be questioning can they afford not to.

Cybersecurity 130

Cybersecurity Cyber threats Insurance Artificial Intelligence 130

SecureWorld News

AUGUST 21, 2020

The end result was hefty payment: "After careful consideration, the university decided to work with its cyber insurance provider to pay a fee to the ransomware attacker. This was done as a proactive and preventive step to ensure information was not released on the internet.". And number one is cyber insurance.

Ransomware 78

Ransomware Cyber Insurance Insurance Backups 78

The Last Watchdog

DECEMBER 12, 2023

Related: Adopting an assume-breach mindset With that in mind, Last Watchdog invited the cybersecurity experts we’ve worked with this past year for their perspectives on two questions that all company leaders should have top of mind: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

The Last Watchdog

APRIL 18, 2019

Imposing just the right touch of policies and procedures towards mitigating cyber risks is a core challenge facing any company caught up in digital transformation. Related: Data breaches fuel fledgling cyber insurance market. Enterprises, especially, tend to be methodical and plodding. Talk more soon.

Digital transformation 113

Digital transformation Cyber Risk Risk Penetration Testing 113

eSecurity Planet

FEBRUARY 11, 2022

Risk management is a concept that has been around as long as companies have had assets to protect. The simplest example may be insurance. Life, health, auto, and other insurance are all designed to help a person protect against losses. Risk Mitigation Steps. Enhancing Risk Management. Advanced Encryption.

Risk 145

Risk Cybersecurity Encryption Technology 145

The Security Ledger

NOVEMBER 6, 2018

» Related Stories Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats Spotlight Podcast: At 15 Cybersecurity Awareness Month Grows with Cyber Risk Spotlight Podcast: 15 Years Later Is Cybersecurity Awareness Month Working? Read the whole entry. »

IoT 40

IoT Computers and Electronics Internet Internet 40

Cytelligence

FEBRUARY 4, 2020

The 2019 Cybersecurity Almanac published by Cisco and Cybersecurity Ventures predicts that cyber events will cost $6 trillion annually by 2021, as companies are digitizing most of their processes and are often operating remotely. Global cyber insurance premiums are expected to grow from $4 billion in 2018 to $20 billion by 2025.

Penetration Testing 45

Penetration Testing Insurance Data preservation Cyber Insurance 45

SecureWorld News

JULY 31, 2023

If you are a CISO today who is not getting face time with the board, look at this as an opportunity to continue to press for the need to discuss the current state and cyber risks currently being faced by the company. What about providing D&O (directors and officers liability) insurance to CISOs? That's not addressed either."

CISO 86

CISO InfoSec Risk Cybersecurity 86

Cisco Security

MARCH 22, 2022

Left of Boom refers to actions you can take to protect your organization before a cyber incident. It includes the following advice: Have visibility and control of all assets and actionable metrics to measure cyber risk. Cyber insurance is not the answer! Move to the cloud. Backup all critical data at least daily.

Cyber Insurance 67

Cyber Insurance Authentication Insurance Cyber Risk 67

Security Boulevard

MAY 30, 2022

Applications like personal healthcare, biosensors, smart beds, smart pills, the health insurance industry, robotics, and other specializations are only expanding the scope of IoMT. The use of internet connected medical devices can be incredibly scary if the right security isn’t put in place. Hackable pacemakers.

Healthcare 90

Healthcare IoT Manufacturing Risk 90

The Last Watchdog

MARCH 1, 2019

This, in short, is the multi-headed hydra enterprises must tame in order to mitigate rising cyber risks. The ability to prove you have a process, and demonstrate the audit trail showing you used that process, will become the subject of increased scrutiny by regulators and cyber insurance underwriters. Smart money.

Threat Detection 193

Threat Detection Digital transformation Marketing Firewall 193

SC Magazine

JULY 8, 2021

Devon Ackerman, managing director and head of incident response for North America with Kroll’s Cyber Risk practice, said that the malicious actors behind this growing trend are “directly tied to ransomware groups” and are likely using automated scripts to seek out “Contact Us” or chat forms on the internet that they can abuse.

Phishing 134

Phishing Antivirus Scams Malware 134

The Security Ledger

AUGUST 1, 2019

» Related Stories Israeli Group Exploited WhatsApp to Spy on Users Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk Episode 149: How Real is the Huawei Risk? Also: Adam Meyers of CrowdStrike joins us to talk about that company's first ever report on mobile malware, which is.

Mobile 40

Mobile Malware Insurance Cyber Risk 40

The Last Watchdog

FEBRUARY 25, 2019

These vendors drilled down on “governance and attestation,” coming up with advanced ways to enable companies to monitor and report cyber risk profiles to government and industry auditors. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

Government 169

Government Authentication Technology Data breaches 169

Responsible Cyber

APRIL 8, 2020

The Internet of Things (IoT) is undeniably the future of technology. To mitigate cyber risks, small and medium businesses must develop a strategy to improve their cybersecurity posture. Although cloud technology is getting more secure, new vulnerabilities and loose ends make it a security concern worth paying attention to.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

Spinone

DECEMBER 26, 2018

VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat. The contemporary world has witnessed the rise of the Internet and global communication, and collaboration technologies, including mobile data use and the culture of bring your own device [BYOD].

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

eSecurity Planet

JANUARY 11, 2022

With robust encryption policies, Evervault can help reduce insurance premiums and offers PCI-DSS and HIPAA compliance automation. SpiderSilk offers an impressive proprietary internet scanner that maps out a company’s assets and network attack surface to detect vulnerabilities. Cowbell Cyber. SpiderSilk.

Cybersecurity 142

Cybersecurity Threat Detection Artificial Intelligence Risk 142

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Vicarius Vulnerability management 2022 Private Dragos ICS and OT security 2021 Private Safeguard Cyber Risk management 2021 Private CyberGRX Risk management 2019 Private Signifyd Fraud protection 2018 Private RedOwl Security analytics 2015 Acquired: Forcepoint. AllegisCyber Investments.

Cybersecurity 126

Cybersecurity Technology Marketing Healthcare 126