Zack Whittaker reports: Geico, the second-largest auto insurer in the U.S., has fixed a security bug that let fraudsters steal customers’ driver’s license numbers from its website. In a data breach notice filed with the California attorney general’s office, Geico said information gathered from other sources was used to “obtain unauthorized access to your driver’s…
Category: U.S.
Ransomware ‘bull’s eye’ grows, clouding telehealth’s rise in long-term care
Kimberly Mersalas reports: Even as COVID-19 and its emphasis on telehealth have opened providers to greater cybersecurity risks, insurance policies that offer potential protection are becoming more expensive, and in some cases, harder to get. Insurers are issuing 25% to 50% premium increases this year, reflecting a large number of ransomware payouts over the last…
Vermont Health Connect had 10 data breaches last winter
Katie Jickling reports that there were 10 instances where individuals saw other individuals’ information when connecting to Vermont Health Connect. I wouldn’t call that 10 data breaches. It sounds more like one problem that happened to 10 people. In any event, she reports: Andrea De La Bruere, executive director of the Agency of Human Services,…
NY State Comptroller DiNapoli Releases School District Audits
New York State Comptroller Thomas P. DiNapoli announced school district audits this week. Here are the summaries with links to the audit reports: Hudson City School District – Information Technology (Columbia County) District officials did not adequately secure and protect its information technology (IT) systems against unauthorized use, access and loss. The board and district…
“Without Undue Delay,” Saturday edition: D.C.’s Planned Parenthood reports data was breached last fall
Brittany Renee Mayes reports: Planned Parenthood of Metropolitan Washington, D.C., on Friday revealed it had a breach of patient information last fall. In a notice posted to its website, the organization revealed that it found “unusual” activity on its networks on Sept. 3. At that time, it began securing its systems, started an investigation and…
Maine and North Dakota Are Latest States to Adopt the NAIC Data Security Model Law
Deborah George of Robinon + Cole writes: Two more state governors, those of Maine and North Dakota, have signed bills into law that adopt the National Association of Insurance Commissioners (NAIC) data security model law (Model Law). Maine and North Dakota join several other states that have already passed similar laws. Hawaii, Idaho, Illinois, Iowa,…