regulators – Page 2 – WindowsTechs.com

Insurer’s huge data exposure draws charges from New York state

Posted on July 23, 2020 by Jeff Stone

New York regulators have charged an insurer with violating state cybersecurity law for allegedly exposing hundreds of millions of documents that included Americans’ personal data, including Social Security numbers and financial information. The New York State Department of Financial Services announced legal action Wednesday against the First American Title Insurance Company, the second-largest real estate title insurer in the U.S. The company is accused of exposing customers’ Social Security numbers, bank account information, driver’s license numbers and mortgage and tax records through a software vulnerability that went undetected between May 2014 and December 2018. Upon discovering the flaw during a routine security test, the insurance company failed to fix it, DFS alleged. “After the data exposure was discovered by an internal penetration test in December 2018, First American failed to conduct a reasonable investigation into the scope and cause of the exposure, reviewing only 10 of the millions of documents exposed and […]

The post Insurer’s huge data exposure draws charges from New York state appeared first on CyberScoop.

Continue reading Insurer’s huge data exposure draws charges from New York state→

Facebook asks to be regulated kinda like a newspaper, kinda like telco

Posted on February 19, 2020 by Lisa Vaas

Zuckerberg is in Brussels right in time for the European Commission’s release of its manifesto on regulating AI. Continue reading Facebook asks to be regulated kinda like a newspaper, kinda like telco→

UK Warns Insurers About Cyber Risks

Posted on February 17, 2020 by Mark Rasch

Do you have cyber risk insurance? Are you sure? If the answer to that question is uncertain (and it should be uncertain), then there’s a huge, uncalculated risk. Not just to you, but to your insurance company. The UK’s main insurance regulator, the Ba… Continue reading UK Warns Insurers About Cyber Risks→

Policy and Procedures – Security Compliance

Posted on December 17, 2019 by Matthew Pascucci

All organizations have policies and procedures on how particular tasks and goals are established within the organization. The issue here is many of these are either word of mouth or haven’t been written down. This leads to having subjective polic… Continue reading Policy and Procedures – Security Compliance→

Zappos Offers Users 10% Discount in 2012 Breach Settlement

Posted on October 18, 2019 by Elizabeth Montalbano

Lawyers will get $1.6 million in a settlement that stems from a breach that affected more than 24 million customers. Continue reading Zappos Offers Users 10% Discount in 2012 Breach Settlement→

Evil TeamViewer Attacks Under the Guise of the U.S. State Department

Posted on April 22, 2019 by Tara Seals

The attack is targeting financial regulators and embassy staff– but probably isn’t the work of an APT. Continue reading Evil TeamViewer Attacks Under the Guise of the U.S. State Department→

Facebook fined $11m for misleading users about how data will be used

Posted on December 11, 2018 by Lisa Vaas

They said Facebook emphasizes the service being free, not that it’s making big bucks off users’ data. They ordered the company to apologize. Continue reading Facebook fined $11m for misleading users about how data will be used→

Insurance regulators pitched on FICO-style score for cybersecurity

Posted on August 7, 2017 by Shaun Waterman

In the fast growing cybersecurity insurance market, underwriters face a uniquely complex problem — measuring or estimating the risk their policy-holders face from cybercrooks, online spies and other hackers. The insurance industry “doesn’t have … a set of baseline tools or metrics … to quantify their customers’ risks,” Anand Paturi, vice president of security research and engineering at RiskSense told CyberScoop. In life insurance for instance, depending on the value of the policy, risk might be measured by reference to actuarial tables which predict life expectancy, or by a medical examination measuring a wide range of physical risk factors. “That [risk] data is how you set the price of the policy,” he explained. But, in a presentation Monday to the National Association of Insurance Commissioners 2017 National Meeting, Paturi argued that the question is much more complicated in cybersecurity. He gave as an example the potentially massive losses from the WannaCry and Petya outbreaks earlier this year. In […]

The post Insurance regulators pitched on FICO-style score for cybersecurity appeared first on Cyberscoop.

Continue reading Insurance regulators pitched on FICO-style score for cybersecurity→

Verizon Is Still Tracking Customers Across the Web Without Consent

Posted on March 9, 2016 by Joshua Kopstein for Motherboard

The FCC slaps Verizon on the wrist for using invasive “supercookies,” but a loophole will allow its mission to monetize paying customers will continue. Continue reading Verizon Is Still Tracking Customers Across the Web Without Consent→

Verizon Settles With FCC for $1.35 Million Over Use of Supercookies

Posted on March 7, 2016 by Kari Paul for Motherboard

The company will now have to alert customers before sharing the data collected from “supercookie” trackers. Continue reading Verizon Settles With FCC for $1.35 Million Over Use of Supercookies→