Clik here to view.
Cashing In On Cyber Security Checks
Beware of the checks your on-line privacy and security policies write. If your you-know-whats can’t cash them, plaintiffs might. Increasingly, plaintiffs are filing lawsuits after “hackers” access...
View Article“Ew…EU Eliminates Safe Harbor for US Companies”
In the European Union, data privacy is a fundamental right. Think life, liberty and the sanctity of your Gmail inbox. The EU’s data privacy laws are therefore more stringent than similar laws in the...
View Article“Higher Ed, Higher Risk”
Some have called higher education institutions the “center of the bulls-eye” when it comes to data breach targets. That’s probably a bit too dramatic. Just a bit. Higher ed institutions need their...
View Article“It’s Not What You Think: The Surprising Diversity of Data Breach Causes”
Let’s play a word association game. What is the first word that comes to mind when I say the phrase, “data breach”? If you thought, “hacking,” you’re not the only one. But according to many...
View Article“There’s No C-I-O in T-E-A-M, And That’s A Problem”
I frequently hear that cyberinsurance decisions are made solely by Risk Managers. In the typical circumstance, that makes sense. Risk Managers manage risk. But cyberliability, at this stage, is not...
View Article“Giving Thanks for Cheap Botnet Attacks”
There are Chinese websites offering distributed-denial-of-service (“DDoS”) attacks for sale. Reminder: DDoS attacks generally involve a hacker taking control of a bunch of internet connected...
View Article“Just Another Manic Cyber Monday”
If this post gets lost amid the too-good-to-be-true Cyber Monday deals and e-mail ambushes, it won’t be a complete surprise but would be something of a shame. Since arriving on the holiday shopping...
View Article“Know Your Limits”
Among the more difficult decisions faced by companies buying cyberinsurance is determining appropriate policy limits. The truth is that there is no one way to determine appropriate limits. Businesses...
View Article“High-Net-Worth, High Net Risk?”
The Target data breach reportedly impacted over 100 million people. The Anthem breach, approximately 80 million. And the Ashley Madison hack made almost 40 million users nibble their nails while the...
View Article“Beware the Terrorism Exclusion or Else…”
Commercial property and liability insurance policies typically contain exclusions for terrorist acts. Terrorism exclusions became industry standard following 9/11, the largest single insured loss...
View Article“URMIA Western Regional Conference”
I’m pleased to announce that Louis Guard, Counsel and Chief of Staff at Hobart and Smith Colleges, and I will be presenting at the University Risk Management and Insurance Association’s Western...
View Article“Employees’ Intentional Misconduct Rising Cause of Data Breaches”
And your policy may or may not have you covered. If you want to know a little bit more (I know you do), follow this link to TheEmployerHandbook.com, where my colleague, Eric Meyer (aka “The Blog King,...
View Article“Cyberinsured Staying Alive – After Summary Judgment”
There are few cases interpreting stand-alone cyberinsurance policies. So, when there is a development in one of them, however unrelated to the novel construction issues raised by these new(ish)...
View Article“Bark But No Bite for Cybersecurity Act of 2015?”
Yes, I’m late to the party. President Obama signed the Cybersecurity Act of 2015 into law over a month ago. Plenty of ink has already been spilled about it. The act encourages, but does not require,...
View Article“Ew Part II: EU/US Reach Privacy Shield Agreement”
It’s been four months since the EU invalidated the Safe Harbor agreement that had been allowing US companies to transfer data into and out of the EU despite the EU’s more stringent privacy laws. I...
View Article“HIPAA Fines and the Physical-Digital Divide”
Health and Human Services’ (HHS) Office for Civil Rights recently issued a $239,000.00 HIPAA fine to Lincare, Inc. I don’t know if the fine will be covered by cyberinsurance. I don’t even know...
View Article“Two Historic Hollywood Hacks (for the price of one)”
Hollywood Presbyterian Medical Center recently made headlines when cyber-extortionists prevented access to all electronic patient files for 10 days. Reports of the hackers demands ranged from $3.4...
View Article“Show Me the Money – Seriously, Because We Can’t Find It”
ALERT: Companies have been receiving emails and other electronic instructions to make payments or transfer funds that – oops – are not truly authorized to be paid or transferred. This is fraud. But...
View Article“The (Broken) Record Approach to Policy Limit Selection”
Many (lucky) institutions lack historical data breach response cost information. They therefore struggle to select cyber policy limits. A popular approach is to multiply the total number of records...
View Article“Cyberinsurance Mandates Coming?”
Maybe, but they’ll probably be much less controversial than the last big insurance mandate – er, tax. There is a growing consensus that the Securities and Exchange Commission is inching toward a...
View Article
