SecureWorld News

MAY 26, 2021

New research reveals that a record number of organizations are buying cyber insurance policies as a tool for protecting themselves against cyber risk. However, the cost for those policies is rising dramatically as cyber insurance premiums soar up to 30% vs. the previous year. cyber insurance market.

Cyber Insurance 72

Cyber Insurance Insurance Cyber Risk Marketing 72

SC Magazine

MAY 19, 2021

The development of cybersecurity insurance has played an important role in determining how companies prepare for and respond to ransomware attacks and the resulting fallout. That in itself has evolved, as insurers and insured learn just how expensive that fallout can be. The ransomware reality check for insurers.

Insurance 102

Insurance Cyber Insurance Marketing Ransomware 102

Thales Cloud Protection & Licensing

MAY 10, 2022

Checklist for Getting Cyber Insurance Coverage. As cyber criminals mature and advance their tactics, small and medium businesses become the most vulnerable because they lack the capacity – staff, technology, budget - to build strong cyber defenses. The necessity for cyber-insurance coverage.

Cyber Insurance 77

Cyber Insurance Insurance Cyber Risk Cyber Attacks 77

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance.

Insurance 97

Insurance Education Risk Cyber Insurance 97

Duo's Security Blog

FEBRUARY 4, 2025

With the rate that new threats emerge, it may come as no surprise that cyber liability insurance can be traced back to 1997. In its modern iteration, cyber liability insurance mitigates the losses and business costs associated with cyber incidents and resulting downtime. What would an insurer do?

Cyber Insurance 60

Cyber Insurance Insurance Authentication Risk 60

Joseph Steinberg

APRIL 20, 2021

Hospitals, medical clinics, labs, pharmacies, insurance companies, and others involved in the vaccination process often require people who want to be vaccinated to share large amounts of both medical and demographic data in order to register for vaccine appointments.

Healthcare 233

Healthcare Insurance Computers and Electronics Data collection 233

Security Affairs

NOVEMBER 14, 2022

The size of the cyber risk to companies cannot be underestimated. To indicate the size of the cyber risk to companies, there is, on average, a cyber-attack every 39 seconds, which does not mean that every attack is successful, but that there is an attempt to access companies’ computer systems with that frequency.

Cyber Risk 142

Cyber Risk Insurance Cyber Attacks Risk 142

SecureWorld News

JANUARY 31, 2024

Cyber risk is an existential issue for companies of all sizes and in all industries. However, it also exposes companies to additional layers of risk. While this is standard practice for addressing liability within the universe of real estate, deliberate and precise actions are required when negotiating cyber insurance coverage.

Risk 103

Risk Cyber Insurance Insurance Data breaches 103

Security Boulevard

MARCH 20, 2025

The surge was fueled by ChatGPT, Microsoft Copilot, Grammarly, and other generative AI tools, which accounted for the majority of AI-related traffic from known applications. Figure 1: Top AI applications by transaction volume Enterprises blocked a large proportion of AI transactions: 59.9%

Social Engineering 76

Social Engineering Phishing Risk Insurance 76

CyberSecurity Insiders

MARCH 25, 2021

Department for Digital, Culture, Media and Sport (DCMS) of UK conducted the survey and came to the above stated conclusion that shows how relaxed are businesses for cyber security. And sometimes cyber criminals are using email services to trick employees into making fraudulently large financial transfers via new business deals or contracts.

Cyber threats 128

Cyber threats Cyber Insurance Insurance Cyber Risk 128

SC Magazine

JULY 13, 2021

Malicious cyberattacks caused the majority of these security incidents, accounting for 73% of all breaches. Unauthorized access or disclosure accounted for another 22%, and the remaining 5% were caused by smaller thefts, losses, or improper disposals. More than 22.8 Another 20.7% were attributed to extortion.

Data breaches 113

Data breaches Insurance Healthcare Education 113

The Last Watchdog

DECEMBER 5, 2018

The compromised databases included names, addresses, dates of birth, insurance policy details, medical record numbers, account balances and dates of service — of both guarantors and patients. The fact that this incident is being labeled “the Atrium breach” in the media also shows where the reputational risk lies.

Data breaches 153

Data breaches Healthcare Insurance Risk 153

SC Magazine

APRIL 23, 2021

For example, they’re used in boardrooms as “eye candy” to portray the state of company cyber-risk, with supply chain partners to manage third-party risk and, even more frightening, by insurance companies to create risk profiles for cyber-insurance policies. Usually not.

Cyber Insurance 61

Cyber Insurance Insurance Risk Cyber Risk 61

The Security Ledger

JUNE 24, 2021

In just the past four months, the United States has contended with a major escalation of cyber risk in critical infrastructure with two, major attacks that disrupted critical sectors. Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk. The repercussions of those attacks were easy to see.

Cyber Risk 52

Cyber Risk Risk Cyber Attacks Ransomware 52

SecureWorld News

NOVEMBER 30, 2021

M&A cyber risk is real. The information accessed includes full names, credit and debit card numbers with CCV, financial account numbers, and platform account numbers. What kind of cyber risks are lurking in the organizations you are acquiring or merging with? What it did not know at the time?

Data breaches 98

Data breaches Insurance Cyber Risk Risk 98

The Security Ledger

SEPTEMBER 11, 2019

Third party cyber risk is growing. In this Spotlight Podcast, a companion to our new eBook, Rethinking Third Party Cyber Risk Management, we go deep on the topic of building a mature third party cyber risk program with Dave Stapleton the Director of Assessment. Third party cyber risk is growing.

Cyber Risk 40

Cyber Risk Risk Data privacy Insurance 40

SC Magazine

MAY 28, 2021

Colonial Pipeline also heightened discussion about the influence of ransomware attacks on cyber insurance. Even before the incident, some insurers dropped coverage for ransomware payments, while others began to ratchet up cybersecurity standards for coverage in an effort to prevent an attack.

Insurance 117

Insurance Ransomware Government Risk 117

The Last Watchdog

FEBRUARY 25, 2019

A separate set of startups soon cropped up specifically to handle the provisioning of log on accounts that gave access to multiple systems, and also the de-provisioning of those accounts when a user left the company. Governance and attestation quickly became a very big deal.

Government 169

Government Authentication Technology Data breaches 169

BH Consulting

JULY 17, 2024

One of the largest tech companies, Amazon Web Services, has now made it mandatory for privileged accounts. Security Week reported that Mandiant’s investigation traced the incident back to stolen credentials and found that targeted accounts weren’t using MFA. MFA is seen as a critical control in reducing the risk of account takeovers.

Cyber Insurance 69

Cyber Insurance Insurance Risk Marketing 69

The Last Watchdog

DECEMBER 12, 2023

Related: Adopting an assume-breach mindset With that in mind, Last Watchdog invited the cybersecurity experts we’ve worked with this past year for their perspectives on two questions that all company leaders should have top of mind: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

SecureWorld News

APRIL 29, 2024

If there is a silver lining, it is likely the data exposed to advertisers such as Microsoft and Google does not include usernames, passwords, Social Security numbers (SSNs), financial account information, or credit card numbers. Protecting your information online starts with good cyber hygiene.

Data breaches 111

Data breaches Healthcare Identity Theft Advertising 111

Centraleyes

MARCH 13, 2025

The New York Department of Financial Services (NYDFS) Cybersecurity Regulation, officially known as 23 NYCRR Part 500, is a forward-thinking framework designed to protect consumers sensitive data while holding businesses accountable for their cybersecurity practices. This plan is your playbook for staying calm under pressure.

Cybersecurity 52

Cybersecurity Financial Services Risk Encryption 52

Security Boulevard

AUGUST 22, 2022

Even with ransomware costing billions of dollars in losses and cyber insurance claims, organizations are still impacted beyond the checkbook. These attacks have driven the cost of cyber insurance premiums higher. Cyber insurance has become more critical to organizations to help offset the risk to the company.

Cybersecurity 98

Cybersecurity Cyber Insurance Insurance CISO 98

SecureWorld News

OCTOBER 11, 2023

Before that, I worked as a full-time CISO for an insurance company for seven years. And there's a lot of downsides to hitting this easy button: excessive cyber risk acceptance; excessive contract risk acceptance; paying for a stream of point solutions that overlap each other and also leave gaps in coverage; etc.

Insurance 109

Insurance Passwords CISO Cybersecurity 109

Security Boulevard

MARCH 13, 2025

Integrating Cyber Risk into Business Risk Decisions Cybersecurity failures are now business risks that CEOs and Boards must own. Many regulatory bodies, insurance providers, business partners, and customers take cybersecurity very seriously and now hold the CEO and Board accountable.

Cybersecurity 52

Cybersecurity CISO Cyber Risk Risk 52

Schneier on Security

FEBRUARY 28, 2024

In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The 9/11 attacks cost insurers and reinsurers $47 billion. 11, 2001, terrorist attacks.

Cyber Insurance 308

Cyber Insurance Insurance Government Cyber Risk 308

NetSpi Executives

OCTOBER 17, 2023

This includes the provision of post-market updates and patches, addressing known unacceptable vulnerabilities on a reasonable schedule and addressing critical vulnerabilities that could pose uncontrolled risks as soon as they are discovered. They task the Government Accountability Office (GAO) with preparing reports and conducting reviews.

Healthcare 94

Healthcare Manufacturing Cyber Risk Cybersecurity 94

The Security Ledger

JULY 22, 2020

In this Spotlight podcast* we’re joined by Andrew Jaquith, the CISO at QOMPLX to talk about how the COVID pandemic is highlighting longstanding problems with cyber risk management and cyber resilience. Andy is an amazing resource on all matters cyber security. Read the whole entry. » New Tech Meets Old Tools.

CISO 52

CISO Cyber Risk Ransomware Risk 52

SecureWorld News

JULY 31, 2023

If you are a CISO today who is not getting face time with the board, look at this as an opportunity to continue to press for the need to discuss the current state and cyber risks currently being faced by the company. What about providing D&O (directors and officers liability) insurance to CISOs? That's not addressed either."

CISO 98

CISO InfoSec Risk Cybersecurity 98

Centraleyes

SEPTEMBER 1, 2024

They emphasize regulatory risks and compliance requirements. Cyber Risk Register Template Cyber risk templates, or information security risk register templates focus on managing risks related to information security and cyber threats, helping organizations protect digital assets and respond effectively to incidents.

Risk 52

Risk Cyber Risk DDOS Data breaches 52

SecureWorld News

AUGUST 23, 2023

For a solid rundown of what the updates mean, check out this SecureWorld article from Kip Boyle , vCISO, Cyber Risk Opportunities LLC. The new NIST framework takes those challenges into account, but as always, it comes down to the humans to adhere to these guiding principles. 19, Detroit on Sept.

Cybersecurity 97

Cybersecurity CISO Government Risk 97

eSecurity Planet

MARCH 17, 2023

They make it possible to securely share credentials with other users in the organization, help you generate stronger passwords, offer account recovery options, and alert administrators if unusual behavior is detected.

Network Security 121

Network Security Penetration Testing Firewall Software 121

SC Magazine

JULY 9, 2021

For instance, “as the CISO for the City of San Diego, there were times the state of California would recommend that municipalities follow certain security best practices, like using CIS20 as a baseline framework to manage risk. ” Still, even if the U.S. This organization seized 64 of the 75 bitcoin ransom paid by a U.S.

CISO 80

CISO Government Ransomware Cryptocurrency 80

Centraleyes

NOVEMBER 5, 2023

HIPAA, or the Health Insurance Portability and Accountability Act of 1996, is a federal law, whereas HITRUST is a comprehensive control framework. ” HIPAA: An Overview HIPAA, short for the Health Insurance Portability and Accountability Act, is a pivotal U.S. Access data-rich insights and reporting tools.

Healthcare 52

Healthcare Risk Insurance Penetration Testing 52

Spinone

DECEMBER 26, 2018

It is vital for any enterprise landscape to ensure viable, open, and reliable corporate communications – fostering innovation and economic prosperity, with respect to safeguarding against disruption and serious cyber risk perception. What are the benefits of cyber security awareness trainings?

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

Thales Cloud Protection & Licensing

JUNE 15, 2023

Reduce business threats Key Management as a Service can help organizations reduce cyber risks and address various threats to business and data security. With a KMaaS solution, organizations can reduce the key management complexity, improve data security, and ensure compliance with industry regulations. How Does KMaaS Work?

Encryption 133

Encryption Data breaches Authentication Risk 133

Centraleyes

APRIL 1, 2024

Regulators are placing greater emphasis on the extended enterprise, holding organizations accountable for the actions of their suppliers and vendors. Integrating VRM into GRC practices is essential for ensuring regulatory compliance and mitigating risks in today’s interconnected business environment.

Risk 52

Risk Government Artificial Intelligence Software 52