The Source for Cyber Insurance News, Insights and Data
“Multiple outlets reported Wednesday that DC Health Link suffered a data breach earlier this week. The company confirmed to Nextgov that data for select DC Health Link customers had been exposed on an unnamed public forum. Following the breach, the company said it is working with law enforcement and forensic investigators to determine the scope … Read more
A new French law, which kicks in April 24, requires companies to report cyber incidents to authorities within 72 hours or lose their eligibility for cyber insurance reimbursement. Qu’est-ce qui pourrait mal se passer? Well, there are a few little issues to iron out, say industry observers. Such as: *Report the incidents to whom? There … Read more
From a press release from Shelley Moore Capito (R-WV) on the proposed “Insure Cybersecurity Act:” “A new bill by Sens. John Hickenlooper (D-CO) and Shelley Moore Capito (R-WV) would establish a Commerce Department working group to ‘improve communication over cybersecurity insurance coverage levels…’” “The bill requires establishment of the NTIA cyber insurance working group within … Read more
The hints come from an article by the National Security Agency’s (NSA) former general counsel, Glenn S. Gerstell, who’s been involved in development of the plan. He predicts a much more detailed cyber strategy than in past and indicates increased federal involvement is coming, because: “Market forces are not enough.” That includes reliance on cyber … Read more
Media discussion of a “cyber TRIP” tends to the bullish. This report, by post-doc cyber insurance researcher Daniel Woods @leltop, surfaces the potential downside of such a plan, from moral hazard to perverse incentives that might reduce improvements in cyber security by the insured. We don’t necessarily buy all the arguments here, but the detailed … Read more