Carnival Hit for Violating Gov MFA Regs; Gov and Cyber Insurance Industry Standards Converging? 

by

[NY State appeared to gain jurisdiction via Carnival’s former insurance business.]

“New York’s Department of Financial Services said Carnival violated a state cyber security regulation by failing to use multi-factor authentication that would make it harder for wrongdoers to access its internal network.

It also said Carnival failed to report one breach and conduct adequate cyber security awareness training for employees.”

 

Source: Carnival fined US$5m for cyber security violations – Security – iTnews

Mark Sauter

Mark Sauter’s insights on the financial, policy and security elements of cyber insurance are based on years of experience in the investment banking, media and business worlds. Co-author of the McGraw Hill university textbook “Homeland Security: a Complete Guide,” Sauter was also a consultant to one of the world’s largest software companies and served as a US Army Special Forces and infantry officer.

See also  Coalition’s Cyber Threat Index 2025: Ransomware Attackers Target Same Weaknesses, Report Finds
×