How does insurance IT leadership keep up with the cat-and-mouse games being played by the latest data deviants? Some say it’s comparable to the U.S. Homeland Security Department being careful not to take credit for the fact that terrorism is not making major news today. They want to work diligently and quietly to win the battle, and they don’t want to boast about it, lest it results in a massive, horrific world-changing incident. In reality, competitive advantage also keeps insurers from sharing details away from the known basics that all companies employ to ensure information security and thwart cybercrime (managing authorization, authentication, and accountability).

But this closed-door, “don’t tempt fate” attitude hardly makes the deviants less active. The Open Security Foundation's DataLossDB, which gathers information about events involving major loss, theft, or exposure of personally identifiable information (PII), reports that to date in 2012, there have already been 906 such incidents reported as compared to a total in 2011 of 1,041. What’s not specified here is whether these incidents are tied to advanced persistent threats, botnets or current threats against mobile devices.

Register or login for access to this item and much more

All Digital Insurance content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access