Backups, Insurance and Risk - Cyber Security Informer

Anti-Ransomware Company Exagrid Pays $2.6 Million Ransom

Adam Levin

JUNE 4, 2021

You would think that ExaGrid, a backup appliance and anti-ransomware service might know how to avoid ransomware, but it was hit. . Practice the 3Ms: Minimize your risk of exposure: Don’t take unnecessary risks and invest in cyber defenses and education.

Ransomware

Ransomware Backups Insurance Healthcare

Dental group lied through teeth about data breach, fined $350,000

Malwarebytes

JANUARY 6, 2025

Westend Dental agreed to settle several violations of the Health Insurance Portability and Accountability Act (HIPAA) in a penalty of $350,000. Nothing showed evidence that a HIPAA-compliant risk analysis had ever been conducted (lists of usernames and passwords in plain text on the compromised server).

Data breaches

Data breaches Ransomware Passwords Insurance

The future of cyber insurance

IT Security Guru

FEBRUARY 28, 2023

Cyber insurers are losing money. Their loss ratios – total claims plus the insurer’s costs, divided by total premiums earned – are now consistently above 60%, which presents something of an existential threat to the insurance industry, making cyber risk a potentially uninsurable area due to falling profitability.

Cyber Insurance

Cyber Insurance Insurance Marketing Cyber Attacks

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Significant Financial and Operational Costs: Healthcare providers, faced with potential HIPAA fines and the risk of service interruptions, may feel pressured to pay ransom demands. This stolen data is often exposed on both the clear and dark web, heightening risks of identity theft and further perpetuating cybercrime.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

Cyber Insurance Premiums Decline as Businesses Boost Security Measures

SecureWorld News

JULY 2, 2024

Global cyber insurance premiums are declining despite an uptick in ransomware attacks, according to a recent report by insurance broker Howden. This trend reflects improved business security practices, evolving insurance industry dynamics, and changing attitudes toward cyber risk management. Sarah Neild, head of U.K.

Cyber Insurance

Cyber Insurance Insurance Cyber Risk Marketing

Scant evidence that cyber insurance boom is leading to better security

SC Magazine

JUNE 28, 2021

The rise of the cyber insurance has largely failed to promote better cybersecurity practices among the industries they cover, according to a new report released Monday from British security think tank RUSI. Growing losses from ransomware attacks have…emphasized that the current reality is not sustainable for insurers either.

Cyber Insurance

Cyber Insurance Insurance Ransomware Marketing

New Ransom Payment Schemes Target Executives, Telemedicine

Krebs on Security

DECEMBER 8, 2022

The CLOP members said one tried-and-true method of infecting healthcare providers involved gathering healthcare insurance and payment data to use in submitting requests for a remote consultation on a patient who has cirrhosis of the liver. Encrypting sensitive data wherever possible. ” . ”

Healthcare

Healthcare Backups Ransomware Insurance

Medusa Ransomware Warning: CISA and FBI Issue Urgent Advisory

eSecurity Planet

MARCH 17, 2025

Since its emergence in 2021, Medusa has targeted over 300 victims across various critical infrastructure sectors, including medical, education, legal, insurance, technology, and manufacturing. Maintain offline backups: Store critical data backups offline to ensure recovery in case of an attack, preventing data loss and reducing downtime.

Ransomware

Ransomware Backups Firmware Insurance

HardBit ransomware tailors ransom to fit your cyber insurance payout

Malwarebytes

FEBRUARY 21, 2023

Ransomware authors are wading into the cybersecurity insurance debate in a somewhat peculiar way. Specifically: urging victims to disclose details of their insurance contract , in order to tailor a ransom which will be beneficial to the company under attack. Create offsite, offline backups. Write an incident response plan.

Cyber Insurance

Cyber Insurance Insurance Ransomware Encryption

World Backup Day on March 31 Seeks to Protect Data Before It's Gone

SecureWorld News

MARCH 30, 2023

However, data is as vulnerable as it is valuable, and World Backup Day on Friday, March 31st, is a welcome reminder of the need to have a well thought out data protection strategy in place. The campaign began in 2011 as World Backup Month and was changed to World Backup Day later.

Backups

Backups Insurance Cyber Attacks CISO

Types of Risk Assessment Methodologies: Choosing the Right Approach for Your Needs

Centraleyes

MARCH 17, 2025

Every organization faces risks that threaten its objectives, assets, and operations. A risk assessment is the foundation for identifying, analyzing, and prioritizing these risks. Understanding the basics of risk assessment is the first step in building a resilient and proactive strategy to mitigate risks and vulnerabilities.

Risk

Risk Insurance Small Business Cybersecurity

Giant health insurer struck by ransomware didn't have antivirus protection

Malwarebytes

OCTOBER 11, 2023

The Philippine Health Insurance Corporation (PhilHealth), has confirmed that it was unprotected by antivirus software when it was attacked by the Medusa ransomware group in September. Create offsite, offline backups. Keep backups offsite and offline, beyond the reach of attackers. Don’t get attacked twice.

Antivirus

Antivirus Insurance Ransomware Healthcare

To Cover or Not to Cover: The Cyber Liability Insurance Quandary Facing Small- and Medium-Sized Businesses

Duo's Security Blog

DECEMBER 7, 2022

Much has been published about how the demand — and subsequent cost — for cyber liability insurance has skyrocketed in line with increasing incidents of cyberattacks. But what are the risks with this approach? Of course, insurance cover is not the only measure that can be taken.

Insurance

Insurance Cyber Insurance Ransomware Risk

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

The cybersecurity regulations apply to entities overseen by the NYDFS, such as financial institutions, insurance companies, agents, and brokers, as well as banks, trusts, mortgage lenders and brokers, money transmitters, check cashers, and other related businesses.

Financial Services

Financial Services Cybersecurity CISO Backups

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

The event is sponsored by the Federal Trade Commission (FTC), and other participating agencies include the Federal Deposit Insurance Corporation (FDIC), AARP , and the Better Business Bureau (BBB). The growing risks to your data During the third quarter of 2024, data breaches exposed more than 422 million records worldwide.

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

MSPs: Becoming the Trusted Cyber Insurance Advisor

Duo's Security Blog

FEBRUARY 4, 2025

With the rate that new threats emerge, it may come as no surprise that cyber liability insurance can be traced back to 1997. In its modern iteration, cyber liability insurance mitigates the losses and business costs associated with cyber incidents and resulting downtime. What would an insurer do? At least not alone.

Cyber Insurance

Cyber Insurance Insurance Authentication Risk

A CISOs Practical Guide to Storage and Backup Ransomware Resiliency

The Hacker News

FEBRUARY 14, 2023

From a cyber risk perspective, attacks on data are the most prominent threat to organizations. Regulators, cyber insurance firms, and auditors are paying much closer attention to the integrity, resilience, and recoverability of organization data – as well as

Cyber Insurance

Cyber Insurance Backups CISO Insurance

Healthcare providers prefer paying ransom in ransomware attacks

CyberSecurity Insiders

JUNE 3, 2022

Healthcare providers are opting to pay a ransom in the event of ransomware attacks, instead of recovering it from data backups. And even if they take such companies undercover, they exclude data breaches from their insurance backup as it involves a lot of risks that do not qualify in equilibrium with the payment made to the policy.

Healthcare

Healthcare Ransomware Insurance Backups

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

CyberSecurity Insiders

SEPTEMBER 20, 2021

Encryption and data backup. In addition, regularly changing your password and using different passwords for all your online accounts will lower your risk of being compromised. Invest in cybersecurity insurance. Cybersecurity insurance involves the transfer of financial risk that may arise from doing business online.

Cybersecurity

Cybersecurity Insurance Passwords Encryption

The CrowdStrike Outage and Market-Driven Brittleness

Schneier on Security

JULY 25, 2024

It’s also true for CrowdStrike’s customers, who also didn’t have resilience, redundancy, or backup systems in place for failures such as this because they are also an expense that affects short-term profitability. Insurance blunts financial losses.) This is true for companies like CrowdStrike.

Marketing

Marketing Software Internet Internet

Ransomware: Number One Cyber Insurance Claim

SecureWorld News

SEPTEMBER 10, 2020

Trends of cyber insurance claims for 2020. Coalition, a cyber insurance company, recently released a report detailing the categories of cyber attacks as well as the cause behind the attacks for the first half of 2020. 4 key takeaways from cyber insurance industry report. Cyber insurance works.

Cyber Insurance

Cyber Insurance Insurance Ransomware Cyber Attacks

Is your whole digital life protected? 4 ways to address common vulnerabilities

Webroot

FEBRUARY 21, 2025

Its a top-end, true all-in-one offering based on a new platform that combines antivirus, password manager, identity protection, VPN, backup, and parental controls. The flip side to this convenience, however, is that we risk losing control over who can access our personal information.

Identity Theft

Identity Theft Backups Antivirus Encryption

Hidden Costs of Cybersecurity: Balancing Risk, Complexity & Efficiency

SecureWorld News

OCTOBER 21, 2024

In contrast, more mature organizations quantify risk, comparing the original risk against the cost of the solution and the residual risk after deployment to decide whether to proceed with the purchase. Some focus on the solution's problem-solving capabilities, suitability, and efficacy.

Risk

Risk Cybersecurity Antivirus Authentication

How to Recover From a Ransomware Attack

eSecurity Planet

OCTOBER 5, 2021

An organization must: Prepare a good backup policy and procedure. Paying for internal assessments and penetration tests by a third party can provide fresh thinking and a level of assurance for stakeholders such as customers, the board of directors, and the insurance company that wrote our cyber insurance policy.

Ransomware

Ransomware Backups Insurance Cyber Insurance

How to Decrypt Ransomware Files – And What to Do When That Fails

eSecurity Planet

OCTOBER 18, 2022

The best defense and the best option for recovery will always be the availability of sufficient, isolated data backups and a practiced restoration process. However, even with the best planning, organizations can find a few users, machines, or systems that were overlooked or whose backup may be corrupted or encrypted.

Ransomware

Ransomware Encryption Insurance Backups

Why ransomware is still important to business resilience

IT Security Guru

JUNE 17, 2024

This dual-threat approach means businesses risk losing access to their data, while simultaneously potentially facing a data breach. This includes leveraging more sophisticated ransomware software, using advanced tactics to avoid detection, and targeting backups to prevent recovery.

Ransomware

Ransomware Insurance Risk Backups

Data from Airlink International UAE leaked on multiple dark web forums

Security Affairs

OCTOBER 8, 2020

The availability of the data on the dark web could pose organizations to serious risk, threat actors could use this data to carry out multiple malicious attacks. Cybersecurity researchers from Cyble have found a threat actor sharing leaked data of Airlink International UAE for free on two platforms on the dark web.

Advertising

Advertising Insurance Backups Media

NIST’s ransomware guidelines look a lot like cyber resilience

Webroot

AUGUST 27, 2021

“ The immediate physical and business risks posed by ransomware are compounded by the broader societal impact of the billions of dollars steered into criminal enterprises, funds that may be used for the proliferation of weapons of mass destruction, human trafficking, and other virulent global criminal activity.

Ransomware

Ransomware Backups Security Awareness Antivirus

Cigna Health Data Leak Exposes Massive Provider Information Database

SecureWorld News

SEPTEMBER 5, 2023

In a recent revelation, security researcher Jeremiah Fowler uncovered a significant data leak affecting one of the United States' largest health insurance companies, Cigna Health. The exposed database offered a unique glimpse into the operations of Cigna Health, one of the nation's largest health insurance providers.

Backups

Backups Insurance Healthcare Data breaches

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

In some cases, attackers are even leveraging the threat of regulatory actions or causing cyber insurance policies to be rendered moot by reporting lapses in security on the part of the victim to regulators and insurers. The indirect costs of ransomware attacks are often even more damaging.

Ransomware

Ransomware Cryptocurrency Insurance Cybercrime

Best Disaster Recovery Solutions for 2022

eSecurity Planet

JULY 8, 2022

With a cyberattack, it’s more than just data that needs protecting—at risk is really the entire physical infrastructure from applications and operating systems down to low-level firmware and BIOS. This type of backup and DR technology offers RPOs measured in hours. See the Best Backup Solutions for Ransomware Protection.

Backups

Backups Ransomware Technology Marketing

Have board directors any liability for a cyberattack against their company?

Security Affairs

NOVEMBER 14, 2022

Are the directors of a company hit by a cyberattack liable for negligence in failing to take steps to limit the risk. As the risk of a cyberattack grows, it is pivotal to consider whether the directors of a company hit by a ransomware attack, for example, can bear any liability for negligence in failing to take steps to limit the risk.

Cyber Risk

Cyber Risk Insurance Cyber Attacks Risk

Corvus Insurance Reports the Ratio of Ransoms Demanded to Ransoms Paid is Steadily Declining

CyberSecurity Insiders

OCTOBER 23, 2021

The report provides an inside look at the insights and tools used by risk managers, IT departments, security researchers, and solution providers to hone their offerings and approaches to keeping organizations safe from evolving cyber threats. “By Ransomware claims and costs.

Insurance

Insurance Cyber Risk Ransomware Technology

#ISC2CONGRESS – Lessons Learned from the Baltimore Ransomware Attack

CyberSecurity Insiders

OCTOBER 20, 2021

The only saving grace was that the city had invested in both on-premise and cloud backups. On the business side, the plan should address elements such as having a communication plan for the CISO, CIO and company executives as well as a risk management component that includes cyber insurance. Backup Strategy. The Attack.

Ransomware

Ransomware Backups Insurance Cyber Insurance

Higher Ed Ransomware Attack: University Pays Hackers $450,000

SecureWorld News

AUGUST 21, 2020

The ISO assisted the college in restoring locally managed IT services and systems from backup copies. The University had servers encrypted but restored the systems and the access from backups. It had cyber insurance: "The university’s cyber insurance policy paid part of the ransom, and the university covered the remainder.

Ransomware

Ransomware Cyber Insurance Insurance Backups

Automating Security Risk Assessments for Better Protection

eSecurity Planet

JANUARY 12, 2021

Protecting your organization from IT security risks is an ongoing, fluid task. As a savvy tech leader, you are likely hyperfocused on performing security risk audits to keep your networks strong and protected. Components of Security Risk Assessments. Data backups. Cybersecurity preparedness/ insurance.

Risk

Risk Penetration Testing Cyber Risk Cyber Attacks

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

Security Affairs

JANUARY 17, 2022

.” The CPU will address critical vulnerabilities in Oracle Essbase, Graph Server and Client, Secure Backup, Communications Applications, Communications, Construction and Engineering, Enterprise Manager, Financial Services Applications, Fusion Middleware, Insurance Applications, PeopleSoft, Support Tools, and Utilities Applications.

Big data

Big data Financial Services Retail Insurance

The Hidden Cost of Ransomware: Wholesale Password Theft

Krebs on Security

JANUARY 6, 2020

.” Schafer said another mitigating factor was that VCPI had contracted with a third-party roughly six months prior to the attack to establish off-site data backups that were not directly connected to the company’s infrastructure. Cloud-based health insurance management portals. Direct deposit and Medicaid billing portals.

Passwords

Passwords Ransomware Password Management Malware

G Suite Security Insurance for SMB

Spinone

DECEMBER 8, 2016

What is G Suite Security Insurance? There are many G Suite security risks. G Suite security insurance removes and mitigates major risks of malware attacks and imposes those on the insurance company. Many small businesses rely on manual backup practices such as nightly backups to external storage media.

Insurance

Insurance Small Business Backups Cyber Insurance

What Is Integrated Risk Management? Definition & Implementation

eSecurity Planet

APRIL 29, 2024

Integrated risk management (IRM) is a discipline designed to embed risk considerations for the use of technology throughout an organization. In other words, it links technology spending directly to the value of the resource protected and the associated risks controlled by that technology.

Risk

Risk Technology Government Penetration Testing

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Cisco Security

OCTOBER 18, 2021

About 15 years ago, the idiom began to be applied to cybersecurity, where the risk management continuum values the investment in protection to mitigate the negative consequences of a cyber incident. We can never eliminate risk entirely, but we can manage it effectively with “Left of Boom” processes and procedures.

Cybersecurity

Cybersecurity CISO Insurance Risk

Ransomware Attack Hits Carnival Cruise Corporation: What We Know

SecureWorld News

AUGUST 18, 2020

Ransomware attacks: another argument for cyber insurance? Business interruption, loss of revenue and reputational damages are all financial burdens that cyber insurance can provide relief for. Partnering with a trusted insurance carrier with dedicated cybersecurity expertise is a must.". And number one is cyber insurance.

Cyber Insurance

Cyber Insurance Ransomware Insurance Technology

Norsk Hydro estimates losses between $35M – $41M in the first week after cyberattack

Security Affairs

MARCH 27, 2019

” “Hydro has a solid cyber risk insurance policy with recognized insurers, with global insurer AIG as lead,” the company stated. Hydro confirmed to have locked out the threat and cleaned up all the infected systems, it did not pay the ransom and restored the servers using backups. Pierluigi Paganini.

Insurance

Insurance Cyber Attacks Ransomware Advertising

Inside Ireland’s Public Healthcare Ransomware Scare

Krebs on Security

DECEMBER 13, 2021

For example, it is unclear how much data would have been unrecoverable if a decryption key had not become available as the HSE’s backup infrastructure was only periodically backed up to offline tape. And if you can’t do that, you run the serious risk of having a small incident metastasize into a much larger problem.

Healthcare

Healthcare Ransomware Antivirus Hacking

Anti-Ransomware Company Exagrid Pays $2.6 Million Ransom

Dental group lied through teeth about data breach, fined $350,000

Trending Sources

The future of cyber insurance

Healthcare Now Third-Most Targeted Industry for Ransomware

Cyber Insurance Premiums Decline as Businesses Boost Security Measures

Scant evidence that cyber insurance boom is leading to better security

New Ransom Payment Schemes Target Executives, Telemedicine

Medusa Ransomware Warning: CISA and FBI Issue Urgent Advisory

HardBit ransomware tailors ransom to fit your cyber insurance payout

World Backup Day on March 31 Seeks to Protect Data Before It's Gone

Types of Risk Assessment Methodologies: Choosing the Right Approach for Your Needs

Giant health insurer struck by ransomware didn't have antivirus protection

To Cover or Not to Cover: The Cyber Liability Insurance Quandary Facing Small- and Medium-Sized Businesses

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

MSPs: Becoming the Trusted Cyber Insurance Advisor

A CISOs Practical Guide to Storage and Backup Ransomware Resiliency

Healthcare providers prefer paying ransom in ransomware attacks

5 Ways Businesses Can Stay Ahead of Cybersecurity Attacks

The CrowdStrike Outage and Market-Driven Brittleness

Ransomware: Number One Cyber Insurance Claim

Is your whole digital life protected? 4 ways to address common vulnerabilities

Hidden Costs of Cybersecurity: Balancing Risk, Complexity & Efficiency

How to Recover From a Ransomware Attack

How to Decrypt Ransomware Files – And What to Do When That Fails

Why ransomware is still important to business resilience

Data from Airlink International UAE leaked on multiple dark web forums

NIST’s ransomware guidelines look a lot like cyber resilience

Cigna Health Data Leak Exposes Massive Provider Information Database

The Financial Dynamics Behind Ransomware Attacks

Best Disaster Recovery Solutions for 2022

Have board directors any liability for a cyberattack against their company?

Corvus Insurance Reports the Ratio of Ransoms Demanded to Ransoms Paid is Steadily Declining

#ISC2CONGRESS – Lessons Learned from the Baltimore Ransomware Attack

Higher Ed Ransomware Attack: University Pays Hackers $450,000

Automating Security Risk Assessments for Better Protection

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

The Hidden Cost of Ransomware: Wholesale Password Theft

G Suite Security Insurance for SMB

What Is Integrated Risk Management? Definition & Implementation

“Left of Boom” Cybersecurity: Proactive Cybersecurity in a Time of Increasing Threats and Attacks

Ransomware Attack Hits Carnival Cruise Corporation: What We Know

Norsk Hydro estimates losses between $35M – $41M in the first week after cyberattack

Inside Ireland’s Public Healthcare Ransomware Scare

Stay Connected