On February 25, 2020, the Virginia State Legislature passed House Bill 1334, the Insurance Data Security Act, which establishes data security requirements applicable to persons licensed by the insurance laws of the Commonwealth. Following on other state laws that have created data security regimes applicable to the insurance industry, the Virginia law requires licensees to maintain the security of information systems and nonpublic information.
Read more »Tag: cybersecurity
-
Legislative Alert: Virginia Expands Insurance Data Security Requirements Posted on: March 31, 2020 In: Data Privacy & Cybersecurity
-
Legislative Alert: Vermont Expands Definition of Personal Information and Enacts Protections for Student Privacy and Automatic Subscription Renewals Posted on: March 19, 2020 In: Data Privacy & Cybersecurity
On March 5, 2020, Vermont Governor Phil Scott signed into law Senate Bill 110, which amends sections of Chapter 62 of the Vermont Statutes Annotated - “Protection of Personal Information” - including Sections 2430, 2435, and 2454. The bill also adds Section 2443 to the chapter, which governs the privacy of student information belonging to preschool, kindergarten, elementary, and secondary school students.
Read more »
-
ALERT: COVID-19 / Coronavirus-Related Ransomware and Phishing Attacks Posted on: March 13, 2020 In: COVID-19 Response
With the advent of the Coronavirus, criminals have begun to take advantage of what consumers expect to receive via email to conduct phishing attacks. Criminals are also expected to take advantage of millions of vulnerable remote connections from employee home networks to their corporate networks.
Read more »
-
Hot Off the Press: The 2019 FBI Internet Crime Report Posted on: February 24, 2020 In: Data Privacy & Cybersecurity
Recently-released FBI statistics provide a sobering reminder that businesses and individuals should continue to make cybersecurity a top priority in 2020. According to the FBI’s 2019 Internet Crime Report, internet crime complaints are at an all-time high. In addition, the magnitude of resulting losses is also reaching new heights.
Read more »
-
Cybersecurity Resolutions for 2020 Posted on: January 03, 2020 In: Data Privacy & Cybersecurity
A new year is once again upon us, which means people across the world will resolve to exercise more, eat healthier, eliminate financial debt and, most importantly, enhance their cybersecurity practices over the coming year. Good luck to all in this time-honored annual quest!
Read more »
-
Threat Intelligence: Maze Ransomware Variant Posted on: December 09, 2019 In: Data Privacy & Cybersecurity
While ransomware variants like GandCrab, Ryuk, and WannaCry have received a lot of attention and cost their victims significant amounts of money, these attacks are rarely accompanied by a credible threat to expose sensitive data. These threat actors are able to monetize their attacks with the extortion payments alone. However, a variant known as Maze (or ChaCha) could change that equation.
Read more »
-
‘Tis The Season: Online Shopping Tips Posted on: December 02, 2019 In: Data Privacy & Cybersecurity
Online shopping is a great way to save time and money, especially over the holidays. However, it can leave you – and your information – vulnerable to malicious actors ready to exploit holiday shoppers. Make your data privacy a priority this holiday season by taking time for some simple cybersecurity-related precautions.
Read more »
-
Business Email Compromises: Tips for Prevention & Response Posted on: September 03, 2019 In: Data Privacy & Cybersecurity
Malicious attackers continue to use email platforms for nefarious purposes. The resulting email account compromises can present multiple dangers to a business, including to the basic security of its network and sensitive information, and the malicious use of secondary sources of money.
Read more »
-
Shutting Down the Factory: Why the Manufacturing Sector Must Pay More Attention to Cyber Attackers Posted on: July 23, 2019 In: Data Privacy & Cybersecurity
On any given day, the manufacturing business is fraught with challenges, from supply chain issues to personnel matters, pricing strategies, competition, and customer acquisition. The last thing a company needs or wants is to be a target in the crosshairs of overseas criminals who treat the company’s operating capital as a piggy bank to be cracked open.
Read more »
-
Ransomware Reminders: Implementing Best Practices & Avoiding the Biggest Mistakes Posted on: June 27, 2019 In: Data Privacy & Cybersecurity
Ransomware continues to ravage systems across the globe in part because, unlike more typical malware, its lifespan on a computer is incredibly short. Recent strains like Ryuk and BitPaymer encrypt files and deliver their ransomware messages within seconds of appearance on a victim’s computer, leaving little time for detection and defense. The FBI recently alerted data security professionals worldwide to be aware of yet another new variant – this one called RobbinHood – that follows similar attack vectors.
Read more »
-
Legislative Alert: Alabama Passes Heightened Cybersecurity Standards for the Insurance Industry Posted on: May 13, 2019 In: Data Privacy & Cybersecurity
On May 1, 2019, Governor Kay Ivey signed Alabama S.B. 54 into law, making Alabama the latest state to pass a law mandating heightened standards within the insurance industry for cybersecurity and data privacy. The Insurance Information Security Program Requirement applies specifically to insurers and other entities licensed by the Alabama Department of Insurance.
Read more »
-
The Threat Sitting Next To You: Defending Cyber Insider Attacks Posted on: May 03, 2019 In: Data Privacy & Cybersecurity
Each year, companies wisely invest in advanced perimeter security devices and software to secure their electronic data and thwart cyber attacks. Unfortunately, despite that well-reasoned approach, the greatest threat to data security may be someone within the organization’s own walls.
Read more »