Bethan Moorcraft reports: Cyber insurers are hyper-focused today on best-practice risk mitigation and cybersecurity protocols. Many carriers have introduced minimum security requirements – such as enabling multi-factor authentication (MFA) for email and remote access, and possibly even using end-point detection and response (EDR) technology – before they’ll even consider writing a policy. This type of…
Category: Commentaries and Analyses
Cyber attacks set to become ‘uninsurable’, says Zurich chief
Ian Smith reports: The chief executive of one of Europe’s biggest insurance companies has warned that cyber attacks, rather than natural catastrophes, will become “uninsurable” as the disruption from hacks continues to grow. Insurance executives have been increasingly vocal in recent years about systemic risks, such as pandemics and climate change, that test the sector’s…
Standing to Sue: Is Theft of Drivers’ License Numbers Sufficient to Allege Imminent Threat of Future Harm?
Ryan P. Blaney, Margaret A. Dale, Nolan Goldberg, and Amy Gordon of Proskauer write: Judge Jeffrey White of the Northern District of California recently dismissed a putative class action lawsuit in which plaintiffs claimed they faced an imminent threat of future of harm in the form of identity theft and fraud because their personal information,…
Update to LastPass incident: Customers should read it
From an update from LastPass: Based on our investigation to date, we have learned that an unknown threat actor accessed a cloud-based storage environment leveraging information obtained from the incident we previously disclosed in August of 2022. While no customer data was accessed during the August 2022 incident, some source code and technical information were…
Corporate Tech Leaders Untangle Their Cybersecurity Roles
Belle Lin reports: Information technology and cybersecurity chiefs grew closer than ever in 2022, a dynamic allowing for more comprehensive threat mitigation, but raising new questions over responsibilities. Many executives now say that as their roles around cyber appear to converge, they are working to sort out the dividing lines between their shared security and IT responsibilities….
Anker Highlights What Not To Do When Your Crappy Security Standards Are Exposed
Karl Bode writes: A few weeks ago, The Verge discovered that Anker, the maker of popular USB chargers and the Eufy line of “smart” cameras, had a bit of a security issue. Despite the fact the company advertised its Eufy cameras as having “end-to-end” military-grade encryption, security researcher Paul Moore and a hacker named Wasabi found it…