Krebs on Security

DECEMBER 12, 2018

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? Data accidentally released by FICO about the Cyber Risk Score for ExxonMobil.

Cyber Risk 253

Cyber Risk Energy and Utilities Risk Marketing 253

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. Cyber has changed everything around us – even the way we tackle geopolitical crisis and conflicts. Our reliance on digital technology and the inherited risk is a key driving factor for buying cyber risk insurance.

Cyber Insurance 100

Cyber Insurance Insurance Risk Technology 100

Duo's Security Blog

DECEMBER 7, 2022

Much has been published about how the demand — and subsequent cost — for cyber liability insurance has skyrocketed in line with increasing incidents of cyberattacks. But what are the risks with this approach? Of course, insurance cover is not the only measure that can be taken.

Insurance 98

Insurance Cyber Insurance Ransomware Risk 98

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance.

Insurance 97

Insurance Education Risk Cyber Insurance 97

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Guardz , the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. About Guardz: Guardz is a holistic cyber security and insurance solution designed for SMEs. Tel Aviv, Israel, Aug.

Malware 189

Malware Insurance Cyber Insurance Small Business 189

Duo's Security Blog

FEBRUARY 4, 2025

With the rate that new threats emerge, it may come as no surprise that cyber liability insurance can be traced back to 1997. In its modern iteration, cyber liability insurance mitigates the losses and business costs associated with cyber incidents and resulting downtime. What would an insurer do?

Cyber Insurance 64

Cyber Insurance Insurance Authentication Risk 64

SecureWorld News

MAY 2, 2025

Regulatory and compliance pressures: Regulators have taken note of healthcare's cyber risks, and new rules are forcing the issue. Many healthcare providers now undergo annual security audits and risk assessments as required by regulators or cyber insurance providers. providers undergo annual third-party audits).

Healthcare 100

Healthcare Marketing Cybersecurity CISO 100

The Security Ledger

AUGUST 20, 2019

We talk to Bruce McDonnell of the East West Institute about how insurers are responding. Related Stories Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats NotPetya Horror Story Highlights Need for Holistic Security.

Insurance 40

Insurance Cyber Risk Risk Cyber Insurance 40

The Security Ledger

OCTOBER 23, 2018

In this episode of the podcast (#117), we go deep on one of the hottest sectors around: cyber insurance. In the first segment, we talk with Thomas Harvey of the firm RMS about the problem of “silent cyber” risk to insurers and how better modeling of cyber incidents is helping to address that threat.

Insurance 40

Insurance Cyber Risk Risk Cyber Insurance 40

CyberSecurity Insiders

DECEMBER 11, 2021

(NYSE: NET), the security, performance, and reliability company helping to build a better Internet, today announced it is partnering with leading cyber insurance companies to help businesses manage their risks online. As a result, some insurance companies have had to raise premiums to cover their costs.

Cyber Insurance 52

Cyber Insurance Insurance Cyber Risk Risk 52

The Last Watchdog

DECEMBER 12, 2023

Related: Adopting an assume-breach mindset With that in mind, Last Watchdog invited the cybersecurity experts we’ve worked with this past year for their perspectives on two questions that all company leaders should have top of mind: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Phishing 258

CyberSecurity Insiders

OCTOBER 23, 2021

By tapping into the advanced capabilities of our IT scanning technology, we’re proud to share actionable data to increase awareness around the current state of cyber risk technology and help eliminate the impact of adverse events — especially as we approach the end of a pivotal year,” said Madhu Tadikonda, President of Corvus Insurance. “We

Insurance 59

Insurance Cyber Risk Technology Ransomware 59

Centraleyes

JUNE 6, 2024

Quantitative Risk models have long been applied in the financial and insurable risk fields and are now being used extensively in cybersecurity. Quantifying risk helps manage risk by breaking it down and expressing it mathematically. What is Cyber Risk Quantification?

Cyber Risk 52

Cyber Risk Risk Cyber threats Insurance 52

Security Affairs

NOVEMBER 29, 2020

It provides a wide range of IT services, including software development and consulting. The Group’s insurance coverage for cyber risks totals €30 million.” While the company did not reveal the family of malware that infected its systems, local media speculate the involvement of the Ryuk ransomware.

Ransomware 134

Ransomware Insurance Cyber Risk Media 134

Centraleyes

JANUARY 7, 2024

However, that doesn’t mean there aren’t plenty of ways to minimize these risks. It’s important your cybersecurity teams have a cyber risk management program in place for this purpose. While you can hire the services of third-party consultants, you may lose a certain level of control over your organizational risks.

Cyber Risk 52

Cyber Risk Risk Penetration Testing Cybersecurity 52

SecureWorld News

NOVEMBER 2, 2022

He helps senior decision makers overcome cybersecurity sales objections and manages unlimited cyber risks through rigorous prioritization. In the private sector, he was a CISO for an insurance company, credit card processor, bank, credit union, and IT Managed Service Provider. See the conference agenda and register here.

Cybersecurity 98

Cybersecurity Cyber Insurance Insurance Cyber Risk 98

The Security Ledger

JUNE 24, 2021

In just the past four months, the United States has contended with a major escalation of cyber risk in critical infrastructure with two, major attacks that disrupted critical sectors. Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk. The repercussions of those attacks were easy to see.

Cyber Risk 52

Cyber Risk Risk Cyber Attacks Ransomware 52

Security Boulevard

MARCH 20, 2025

Additionally, ThreatLabz uncovered a malware campaign in which attackers created a fake AI platform to exploit interest in AI and trick victims into downloading malicious software. ThreatLabz researchers demonstrated how DeepSeek can be manipulated to quickly generate phishing pages that mimic trusted brands.

Social Engineering 76

Social Engineering Phishing Risk Insurance 76

Security Boulevard

JANUARY 24, 2025

Are we clear on who must be involved in assessing and mitigating AI adoption cyber risks? By assessing and mitigating cyber risks, leaders can align AI adoption with organizational goals and resilience needs, reads the companion WEF article Securing innovation: A leaders guide to managing cyber risks from AI adoption.

Banking 69

Banking Cybersecurity Artificial Intelligence Ransomware 69

CyberSecurity Insiders

DECEMBER 18, 2022

Cyber attribution and deciphering the extent of state-level tasking is difficult, with blurred lines between state-aligned, state-involved and state-directed increasing the risk of escalation, collateral and misattribution. 4 – Ransomware rushes to the cloud.

Cybersecurity 125

Cybersecurity CISO Insurance Ransomware 125

The Last Watchdog

APRIL 18, 2019

Imposing just the right touch of policies and procedures towards mitigating cyber risks is a core challenge facing any company caught up in digital transformation. Related: Data breaches fuel fledgling cyber insurance market. Enterprises, especially, tend to be methodical and plodding.

Digital transformation 113

Digital transformation Cyber Risk Risk Penetration Testing 113

The Last Watchdog

MARCH 1, 2019

Now toss in the fact that digital transformation is redoubling software development and data handling complexities. This, in short, is the multi-headed hydra enterprises must tame in order to mitigate rising cyber risks. This has exponentially expanded the attack surface available to motivated, well-funded threat actors.

Threat Detection 193

Threat Detection Digital transformation Marketing Firewall 193

SecureWorld News

MAY 16, 2023

Not knowing the configuration in detail and what monitoring software (intrusion prevention/detection) SIEM tools, etc. Mike Parkin, Senior Technical Engineer at Vulcan Cyber, a provider of SaaS for enterprise cyber risk remediation, is a fan of the collaborative. The question isn't if they'll get hit but when."

Cybersecurity 98

Cybersecurity Insurance Cyber Risk CISO 98

SecureWorld News

DECEMBER 7, 2022

The bot can be used for almost anything, from answering simple questions to writing music or reports—even detecting vulnerabilities in code and helping write software. Cyber insurance trends in 2023. Fostering workforce security education at all levels reduces risk.

Cybersecurity 98

Cybersecurity Cyber Insurance Insurance Social Engineering 98

eSecurity Planet

MARCH 17, 2023

Networks are complex and connect to a number of critical components — software, applications, databases, and various types of endpoints — that don’t all operate the same way, making it a complicated challenge to keep threats off the network. It is one component of the greater vulnerability management framework.

Network Security 120

Network Security Penetration Testing Firewall Antivirus 120

SecureWorld News

OCTOBER 11, 2023

Before that, I worked as a full-time CISO for an insurance company for seven years. Our current customer, Jeff, is the CEO of a Software-as-a-Service (SaaS) company. I've redacted the sources, but our customers are offering SaaS and selling to large insurance companies. I have a limited budget. Here's the first example.

Insurance 109

Insurance Passwords CISO Cybersecurity 109

IT Security Guru

JUNE 17, 2024

This includes leveraging more sophisticated ransomware software, using advanced tactics to avoid detection, and targeting backups to prevent recovery. Insurance and Recoverability Issues As ransomware attacks have increased, so have the complexities associated with insuring against them.

Ransomware 137

Ransomware Insurance Risk Backups 137

The Last Watchdog

FEBRUARY 25, 2019

These vendors drilled down on “governance and attestation,” coming up with advanced ways to enable companies to monitor and report cyber risk profiles to government and industry auditors. The accelerated use of third-party software development and cloud services only exacerbated this core dilemma.

Government 169

Government Authentication Technology Data breaches 169

eSecurity Planet

FEBRUARY 11, 2022

Risk management is a concept that has been around as long as companies have had assets to protect. The simplest example may be insurance. Life, health, auto, and other insurance are all designed to help a person protect against losses. Also read : Top Governance, Risk, and Compliance (GRC) Tools for 2022.

Risk 145

Risk Cybersecurity Encryption Technology 145

SC Magazine

JULY 8, 2021

Devon Ackerman, managing director and head of incident response for North America with Kroll’s Cyber Risk practice, said that the malicious actors behind this growing trend are “directly tied to ransomware groups” and are likely using automated scripts to seek out “Contact Us” or chat forms on the internet that they can abuse.

Phishing 134

Phishing Antivirus Scams Malware 134

eSecurity Planet

AUGUST 27, 2021

In a developing market, third-party risk management (TPRM) software and tools could be the answer to helping organizations fill the gap. BitSight is a Leader in the Forrester Wave report for Cybersecurity Risk Rating Platforms in 2021. Black Kite Cyber Risk Rating System. Galvanize ThirdPartyBond. ProcessUnity VRM.

Risk 130

Risk Marketing Software Cybersecurity 130

NetSpi Executives

OCTOBER 17, 2023

Some vulnerabilities have limited scope in that they only apply to a few types of software features or interfaces, while others may have additional compensating controls that can mitigate their severity. Product Vulnerabilities Not all vulnerabilities carry the same weight. It must possess the ability to connect to the internet.

Healthcare 94

Healthcare Manufacturing Cyber Risk Risk 94

Centraleyes

MARCH 13, 2025

Case in Point : In 2019, First American Title Insurance Company experienced a significant data exposure incident, revealing sensitive customer documents due to a vulnerability in their document-sharing application. These include: Encryption: Encrypt sensitive data at rest and in transit to mitigate the risk of breaches.

Cybersecurity 52

Cybersecurity Financial Services Risk Encryption 52

Security Boulevard

FEBRUARY 8, 2023

Click here to watch the roundtable and learn about the future of cyber insurance from leading experts. In partnership with Cysurance, BlastWave hosted a roundtable entitled “The Future of Cyber Insurance and MSP Insurability. of Morris Risk Management, John Franzino of Grid Security Inc.,

Cyber Insurance 52

Cyber Insurance Insurance Marketing Risk 52

Security Boulevard

MARCH 17, 2025

This is what an exposure management platform brings to the table making it simpler to prioritize remediating software vulnerabilities, misconfigurations and improperly assigned credential entitlements. Theyre notoriously self-sufficient, but they do need a couple of things: visibility into the attack surface and a unified view of all assets.

Risk 64

Risk Technology Mobile IoT 64

SC Magazine

MARCH 1, 2021

Allianz Insurance has been a leader in fostering a DevSecOps culture. Security pros face great challenges in managing all the products and tools they use to handle the cyber risks they face. Security pros face great challenges in managing all the products and tools they use to handle the cyber risks they face.

Energy and Utilities 111

Energy and Utilities Firewall Marketing Risk 111

CyberSecurity Insiders

APRIL 17, 2023

Three types of hybrid network security breaches to watch out for There are multiple potential gaps in every hybrid workplace network, including interpersonal communications, outdated software, and uninformed employees. IT experts should also be consulted to determine the best cybersecurity software for your business.

Network Security 91

Network Security Workplace Security Firewall Phishing 91