data breach

How to Respond to a Data Breach

The best way to prevent a data breach is to be prepared for one. Implementing strong cybersecurity measures, maintaining them, and conducting regular updates are critical steps in securing systems. Educating staff about cybersecurity and training them on what they need to do to protect data and information are also crucial. Human error and carelessness are two of the primary causes of a cyberattack. Finally, your clients need a formalized plan for how to deal with an attack should one occur.

No matter what preventive measures your clients take, complete protection is not guaranteed. It is nearly impossible to stay ahead of cybercriminals. Cyberattacks are on the rise, with incidents in 2020 reaching as many as 4,000 per day. Procuring cyber liability insurance has never been more imperative to protect a business if it was to experience a data breach. So, what should a company do after a data breach? If an incident occurs, your clients need to be able to respond effectively and efficiently.

The Initial Response

A cyberattack can be daunting, but panicking will not help solve the problem. A data breach response plan helps your clients remain focused so that they know what initial steps they should take. Activate the response plan immediately. Take note of the date and time the breach was discovered, and when the response was initiated. Within the next 24 hours, your clients should also:

  • Alert members of the response team.
  • Secure the area to prevent access to evidence.
  • Take operations offline to prevent further data losses, but do not turn off the power or tamper with any technology.
  • Assess any additional risks and prioritize steps needed to reduce those risks.
  • Call in the cyber forensics team to begin investigations into when and how the cyberattack happened.
  • Consult with the legal team and notify law enforcement when necessary.
  • Notify the cyber liability insurance provider.

The Next Steps

After your clients complete the initial steps, they must document everything that has occurred thus far to ensure their company stays on track to recover and reopen. At this point, a team should begin resolving the issues to prevent future attacks. It is essential to carefully consider your client’s company’s vulnerabilities and address any issues that need to be remedied.

Service providers, encryption measures, and network segmentation should all be examined. The forensics team can ascertain whether any of these played a role in the attack. Identify everyone who may have been affected by the breach and what information was stolen. The forensics experts will remove any tools the hackers used to access the system.

Notifications

Once affected businesses and individuals have been identified, it is imperative that they notify them as quickly as possible and let them know what information may be at risk. Make sure, however, that your clients consult with the lead investigator to time their notifications so that they do not impede investigations. Note that if the data breach involved health information, they are required to alert the Federal Trade Commission.

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

 

cyber threats

Top 5 Cyber Threats for 2021 & Beyond

2020 was a difficult year for businesses around the globe. The coronavirus pandemic caused mass layoffs as the world economy came crashing down. For those business operations that were able to remain operational, a new threat emerged: cyber crimes. Cyber criminals stepped up their attacks on targets in the banking, utilities, and healthcare industries, causing billions of dollars in damages and lost productivity. Cyber liability insurance has become a critical risk management strategy for modern business operations, especially in the wake of increased criminal activity. For 2021 and beyond, business owners must gain knowledge about the top cyber threats they may face in the coming years.

What’s Old is New Again: Phishing Attacks

For nearly as long as computer devices were networked together, so-called “social engineering” hacks have plagued network administrators. Phishing, or the practice of having victims click a malicious link, open an infected email attachment, or reveal passwords and login credentials to attackers, has seen a sharp uptick during the pandemic. Hackers use phishing attacks to embed code into business computer networks or use credentials to gain access to sensitive data.

Ransomware: A Perennial Threat

Not quite as old as phishing, but still familiar to IT professionals is the ransomware attack, where cyber criminals will gain unauthorized access to a network and hold it hostage until a ransom payment is made. Malicious software is placed on targeted networks, particularly in the financial and healthcare sectors. These attacks interrupt business continuity and may result in the loss or destruction of critical data, straining even the best cyber liability insurance coverage.

Breaches in the Cloud

Cloud computing has revolutionized business networks across industries. Data can now be stored offsite and accessed from anywhere in the world. As a result, this has created new risk profiles for business owners – risks that cyber liability insurance is only now catching up to. Whether it is the cloud storage host or the end user, configuration errors are the most common source of unlawful data breaches. With access to sensitive business data, cyber criminals may intercept personally-identifying details, create fraudulent accounts, or sell data to the highest black market bidder. Again, these breaches can cost millions of dollars in recovery and damaged reputations.

The Internet of Things (IoT)

Every electronic device connected to a business network represents a potential weak point. The Internet of Things (IoT) has increased the ability of criminals to find and to exploit weaknesses. IoT is used to remotely manage business infrastructure or to capture and process data. Unfortunately, many of these devices are not equipped with robust security measures, making them a preferred target of cyber criminals. By exploiting weaknesses, criminals can gain access to business networks, giving them the ability to steal or erase data with a few strokes of a keyboard. Cyber liability insurance is designed to protect businesses from the losses associated with illicit criminal activity on company networks, but understanding the nature of IoT and the weaknesses it represents is a crucial risk management step.

Remote Work Environments: Prime Targets for Criminals

As the pandemic spread across the globe, resourceful employers added remote work options for their employees. Employees could log onto company networks from home using devices ranging from desktop and laptop computers to smartphones and tablets. Unfortunately, network security was often unable to keep pace with criminal activity, and remote workers were targeted by cyber thieves. Primarily, workers are responsible for keeping their own devices up to date in terms of antivirus and anti-intrusion software. Password management is another hot button issue for network administrators in the remote work environment. Each of these weaknesses is readily exploited by criminals and as a result, high-frequency and high-severity claims against cyber liability insurance policies have piled up.

To protect sensitive business networks, business owners must work with information security professionals to patch systems, increase monitoring, and train employees on safe access practices. These business owners must also carefully assess the coverages and limits of their cyber liability insurance policies. This insurance serves as a fallback in case of unauthorized or criminal computer activity. With this insurance and with information security practices in place, business owners can more readily protect sensitive data and computer networks from theft.

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

Cryptojacking

Cryptojacking: What It Is and How to Prevent It

In the digital age, businesses face numerous risks associated with computer and technology systems. Highly publicized data breaches of major corporations have captivated the attention of business leaders; these breaches have also cost billions of dollars in forensic analysis, recovery, and reputational harm. While cyber liability insurance serves as the foundation of risk management, business leaders need to understand cyber risks. One of the emerging risks is that of “cryptojacking,” which exposes affected companies to the potential for severe liability claims. In this article, we will explore cryptojacking and provide information on how to prevent this cyber crime from harming your business operations.

What is Cryptojacking?

Cryptojacking refers to the illegal practice of hijacking someone else’s computer for the purpose of mining cryptocurrency, or digital/virtual currency like Bitcoin. Cyber criminals gain access to computer networks or spoof victims into installing cryptomining code onto computer systems. The code runs in the background and is difficult to detect. While the scripts used to mine cryptocurrencies do not in themselves damage computer systems, their placement represents a breach in network security. Once hackers gain access, they may attempt to hijack sensitive business data or commit other cyber crimes, putting the business at risk.

It is unclear how much cryptocurrency has been mined through this unauthorized hijacking of computers, but its value is estimated to be billions of dollars. In 2018 alone, a single cryptojacking incident infected more than 500,000 computers in Asia, netting criminals as much as $4 million. Computer security analysts indicate that the cryptojacking technology is relatively easy to master and expect significant growth in sophistication in the coming years. Cyber liability insurance is crucial for business owners who rely on computer systems and the sensitive data those computers contain.

Preventing Cryptojacking

By working in the background and being difficult to detect, cryptojacking may go unnoticed for long periods of time. The anonymous nature of the criminal act, and the fact that nothing was stolen from the infected computers, gives little incentive for businesses to pursue legal remedies. Nevertheless, network intrusion by cyber criminals is a serious threat and can lead to the loss of sensitive business data, not to mention the expenses associated with prevention and recovery. While cyber liability insurance is designed to provide protection from criminal activity and their expenses, preventing cryptojacking in the first place is the key to risk management.

As with any cyber criminality, monitoring unusual computer activity is the first step in preventing unauthorized intrusion. Computer security professionals recommend regular monitoring of systems and hardware for any signs of tampering. Updating security software and applying patches to systems also reduces the potential for unlawful network access.

Training employees in detecting fraudulent activity is another key component of risk management. Cryptojackers often use a technique called “phishing” to fool someone into clicking on a web link or email that looks legitimate. Clicking that link loads malware or cryptomining applications onto the computer network. Identifying and avoiding phishing attempts should be an integral part of employee training.

IT professionals should also receive specific training on cryptojacking practices and detection. In many cases, an increase in the number of employee complaints related to slow computer performance is an indication that cryptomining scripts are infecting computers. Training for all stakeholders is an important approach that can help prevent criminal hacking from harming business operations.

Because criminals sometimes infect legitimate websites with spoofed ads, security professionals recommend installing ad-blocking browser extensions on computers connected to the internet. Some third-party ad-blocking apps already incorporate tools to detect cryptomining.

Finally, business owners must carefully assess their current insurance protections. Cyber liability insurance is designed to protect business assets from losses from illegal computer activity. With the right security practices, and insurance policies and coverages in place, businesses can rest assured that their critical networks are secure from cyber criminals.

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

Vishing

The Emergence of a New Cyber Threat: “Vishing”

As remote employment has grown in popularity for the convenience and efficiency it provides business owners and employees alike, cybersecurity liabilities have equally expanded. With employees connecting to company servers from mobile devices or unsecured internet connections, the threat of cyberattacks has multiplied. In addition to concerns with malware, ransomware, and phishing attacks, vishing has emerged as a serious threat for the remote employee.

What Is Vishing?

The term vishing is taken from the words “voice” and “phishing.” In the realm of cybersecurity, phishing attacks target individuals through email or other digital means in an attempt to gain access to sensitive, personal data like passwords or financial payment details. Most often, the attack is formed through an organization or individual that appears legitimate. With vishing, the attacks occur over the phone.

Using automated voice technology and Voice over Internet protocol, many remote employees are being tricked into thinking they need to establish new login credentials with their virtual private networks. Attackers are then able to gain a foothold in the corporate network, where additional information is retrieved and used in new social engineering attacks. Vishing attacks continue to develop and become more sophisticated, making it an important consideration for businesses sending employees home to work.

What Protection Is Available?

There are many ways you can educate your clients about cybersecurity protection, but the most important thing you can do is inform them of their cyber liability insurance options. There are unique exposures addressed through an insurance policy that cannot be protected by other means. Primarily, the financial ramifications of a cybersecurity attack.

Cyber insurance providers recognize the many elements involved with cyber threats, both the internal exposures of employees mismanaging information or getting caught in a phishing trap and the external concerns of a network breach and data hack. As remote employees expose new weaknesses in cybersecurity strategies, business managers need to know the extent of their insurance coverage. As a broker, you have the ability to direct their attention to comprehensive solutions.

What Does a Cyber Insurance Policy Cover?

Cyber policies address the risks of exposure from data breaches, compromised networks, or other malicious cyber events. Insurance policies may address both first-party and third-party coverages, and your job as a broker is to see what form of coverage would be most beneficial to your client. There are various costs associated with cyberattacks, as a company can be sued for damages from several parties. Litigation to mount a defense, notify individuals, or payout settlements for any of these parties can be more than a company can bear. Cyber insurance steps in as the financial resource for these costs.

Vishing will continue to emerge as a cyber threat, and more advanced attacks can be expected. As a broker, informing your clients of their risks and their subsequent insurance options is the best advice you can give.

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

Cyber Liability

Healthcare Faces Lingering Cyber Threats Amid COVID-19

The healthcare industry has undergone many changes in recent years, particularly centered on new technologies for managing patient encounters and to facilitate treatment. Electronic patient records and telemedicine options are some of the primary technologies adopted by healthcare facilities. In the wake of the COVID-19 pandemic, these technologies allow healthcare delivery without direct contact between caregivers and patients. Unfortunately, with new technologies come new risks; healthcare cyber liability concerns related to criminal activity have risen dramatically. Many experts believe these emerging cyber liabilities will continue to linger far beyond the end of the pandemic, necessitating a careful look at the risk management strategies available to healthcare organizations. 

Cyber Criminals Targeting Enterprise Systems and Patient Data

Across industries, information technology professionals have experienced a sharp uptick in cyber criminality. In the healthcare sector, hackers have intruded into networks to interfere with information-sharing between health organizations. In the Czech Republic, the hospital responsible for managing COVID-19 testing for the country was the victim of a cyberattack, necessitating the shutdown of the facility’s network. Similar attacks targeted the U.S. Department of Health and Human Services (HHS) and the World Health Organization (WHO). 

Healthcare systems have been a prime target for criminals, owing to the value of patient records which may contain Social Security numbers, banking information, and sensitive personal details. When criminals gain access to patient data, this information is often sold on the black market, netting millions of dollars in illicit profits. Healthcare cyber liability exposures may include:

  • Malware – programs designed to look like legitimate apps, but redirect network traffic or data to criminal enterprises.
  • Ransomware – holding data or networks hostage until a ransom is paid to cyber criminals.
  • Distributed denial of service (DDoS) attacks – flooding healthcare networks with traffic to foil operations.
  • Social engineering hacks – individuals posing as members of an organization to gain access to sensitive passwords and healthcare data. 

Healthcare Cyber Liabilities: Emerging Threats

The COVID-19 crisis has ushered in new operational practices, including those used in the healthcare industry. Remote work has become an integral part of many businesses, allowing employees to work from the safety of their own homes. Unfortunately, because these remote work options are relatively new and unfamiliar to many employees, hackers have taken advantage of weak security practices to gain entry into critical networks. This trend is expected to continue after the pandemic is contained, potentially costing healthcare organizations millions of dollars in insurance claims, forensic investigations, and legal exposures. 

The “Internet of Things”(IoT) is also a potential weak point for cyber criminals to exploit. Internet-connected medical devices and mobile communication and computing technologies often exist under a patchwork of security settings and protocols, or may be relatively exposed to criminal activity. The pandemic has only increased the reliance on these connected devices. Once a hacker gains entry to a network from a connected medical device, access to enterprise and patient data is but a few mouse clicks away.

Managing Healthcare Cyber Liability

Healthcare organizations know that the COVID-19 pandemic has altered business operations, forcing employees and managers to approach work in new ways. With the adoption of technologies to make the transition smoother, cyber criminals have leveraged security weaknesses to gain access to enterprise systems.

It is imperative that organizations address their healthcare cyber liability exposures, employing robust risk management strategies backed by comprehensive cyber liability insurance solutions. Training employees on secure computer access practices and password management can foil many malware, ransomware, and social engineering hacks. Adopting best practices in terms of IT network intrusion detection and security go a long way toward eliminating criminal activity. It is a good idea for healthcare organizations to carefully review existing insurance coverages and to identify any coverage gaps that may lead to liability exposures. With these practices, healthcare facilities can stop cyber criminals in their tracks, protecting sensitive business and patient data and helping to ensure business continuity. 

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

Cybersecurity

5 Measures for Effective Cybersecurity After COVID-19

Around the world, the coronavirus pandemic has had powerful effects on industries of all types. Businesses were forced to adapt quickly to protect their customers and their employees. Because COVID-19 required stringent social distancing and self-quarantine restrictions, many businesses shifted to online work environments to remain in operation. Other companies focused on e-commerce, allowing them to continue delivering the goods and services consumers needed. Cybersecurity, then, became ever more important, as remote employee access and online shopping took center stage in many business operations. As an effective risk-management strategy, business owners must leverage the protection of cyber liability insurance plans and industry best practices to keep their networks and their sensitive data safe. 

Challenges and Risks During the COVID-19 Pandemic

As businesses revamped their operations, moving to remote work environments for their employees, challenges and risks for cybersecurity professionals and business leaders grew rapidly. Some of the challenges include:

  • Access to critical business networks via personal computing devices and on less-secure home networks.
  • Employees unfamiliar with cybersecurity practices, making them vulnerable to social engineering hacks and similar cyber criminality.
  • Targeted attacks by criminals on already-strained networks, particularly critical services such as healthcare and banking operations.
  • A change in perceptions about anomalous network behaviors. Prior to the pandemic, these behaviors were seen as evidence of criminals attempting to breach computer security. Now, with so many people working from home, anomalous behaviors are the norm rather than the exception, making actual criminal activity harder to spot. 
  • Flaws in security on popular productivity software products, including video conferencing platforms like Zoom. 

Most importantly, business leaders may not be fully aware of the cyber risks their companies face in the dramatic upheaval of the pandemic and its aftermath. While cyber liability insurance is designed to protect against many risks associated with network breaches and data loss, it is critical that leadership understands these risks and makes efforts to manage them effectively.

The 5 Measures: Cybersecurity Now and Post-Pandemic

In response to the unprecedented cyber risks exacerbated by the pandemic, the World Economic Forum (WEF) published a report entitled “Cybersecurity Leadership Principles: Lessons Learnt During the COVID-19 Pandemic to Prepare for the New Normal”. The report’s aim is to shape adequate responses to growing cyber threats, and contains five measures that will shape the future of cybersecurity. The five measures are:

  1. Fostering a culture of cyber resilience: As risks grow and wane, resilience is the key to continued data safety. Implementing proactive risk management practices and developing strategies to recover from cyber attacks are among the recommendations of the WEF.
  2. Focusing on protection of critical assets and services: It is impossible for businesses to protect every aspect of an operation. Instead, identifying and prioritizing those assets and services that are critical for business continuity while maintaining compliance with privacy and data security regulations is the better course of action.
  3. Balancing risk-informed decisions within the pandemic and in the future: Implementation of new systems and practices always come with new risks. Leaders must balance those risks and may have to make difficult decisions as they adapt to the “new normal”. Maintaining flexibility by continual reassessment of existing and emerging risks will help balance risk exposures.
  4. Updating and practicing response plans, including those designed for business continuity: While many companies have created business continuity and data breach response plans, these are not static documents. Risks evolve, and even the best plan is useless without testing its capabilities. By updating and practicing the plans, deficiencies can be uncovered and remedied before an actual response is needed.
  5. Strengthening collaboration throughout the business ecosystem: Establishing and building partnerships between public and private entities regarding cybersecurity is the key to continued success. Sharing information between partners in a transparent manner is the goal of this collaborative effort. By leveraging the power of collaboration, business leaders can more quickly identify emerging threats and take the steps needed to manage or eliminate those threats before they can cause an embarrassing and expensive data breach. 

The future is uncertain, but what is certain is that cyber criminality will continue to threaten the business world. In addition to protecting assets and systems with robust cyber liability insurance plans, insurance agents must provide their clients with the information and practices designed to manage risks going forward. The COVID-10 pandemic has been a challenging time, but it has also provided an important learning experience for industries around the world. These lessons will shape the direction of  cybersecurity response for years to come. 

About U.S. Risk

U.S. Risk, LLC. is a wholesale broker and specialty lines underwriting manager providing a wide range of specialty insurance products and services. Headquartered in Dallas, Texas and operating 16 domestic and international branches, U.S. Risk and its affiliates would like to help you access a world of new markets and products. For more information, contact us today at (800) 232-5830.

Financial Institutions

Considerations for Banks and Financial Institutions in a Time of Pandemic

Banking and financial institutions have faced unique risks since their very beginnings. Those risks are compounded by the effects of the global coronavirus pandemic. As economies the world over have ground to a halt, individuals, companies, and communities face significant financial hardships. These hardships have an outsized impact on banking, capital markets, and financial services firms. Although financial institution insurance is designed to protect against many risks, financial managers can help manage risk exposures better by gaining an understanding of the unique challenges uncovered by the COVID-19 crisis.

Read more

Cybersecurity

COVID-19 and the Long-Term Impacts on Cybersecurity

The novel coronavirus pandemic has created powerful effects across all areas of our lives, including how we interact with others and how business is conducted. COVID-19’s negative health effects are only one part of how this pandemic is influencing business operations. As more companies move to virtual at-home work environments, the need for robust cybersecurity has grown in importance. There are short-term effects associated with changing cybersecurity needs, but insurance agents need to be aware of potential long-term ramifications for their business clients, including comprehensive cyber liability insurance solutions.

Read more

Cyberattacks

How Will Coronavirus Impact Cybersecurity and Why Does it Matter?

As the coronavirus pandemic has descended on the world, it has affected people’s lives in many unexpected ways. Stay-at-home orders and social distancing guidelines have led to fundamental changes in the way business is being conducted, with many individuals forced to telecommute for the first time in their careers. Throughout personal and professional lives, more interaction has moved to web-based services, including e-commerce, communication, and information resources. Unfortunately, many companies are underprepared for the sudden reliance on remote access technologies, potentially opening the door to cyber criminals. While cyber liability insurance is one part of a more comprehensive risk management program for business interests, it is critical that insurance agents help their clients understand emerging cyber risk exposures created in the wake of the coronavirus.

Read more

Cyber Liabilities

Cyber Liabilities in the Financial Sector

Across industries, so-called cyber crimes are on the rise. As businesses shift to digital systems for managing data, personnel, and customer records, cybercriminals have increasingly targeted these systems. The financial sector was especially hard-hit in 2019, with numerous highly-publicized data breaches and cyberattacks well in excess of any other industry. U.S. Risk Underwriters, a specialty provider of risk management solutions for various industries, believes that financial institutions need to understand cyber liabilities to better protect their assets and their customers’ sensitive data from loss. By understanding the risks, financial firms can implement the risk management solutions needed to reduce exposure to cyber threats.

Read more