First American fined $1M by NYDFS over 2019 cybersecurity breach
By 
Adrianne Appel2023-11-29T19:05:00
A title insurance company agreed to pay a $1 million fine and implement stronger compliance measures for allegedly not securing customers’ personal data, particularly during a 2019 cybersecurity breach.
First American Title Insurance Company, the second largest title insurer in the nation, did not address a known vulnerability on its proprietary storage platform, EaglePro, before the issue was exposed by a cybersecurity journalist months later, according to the New York State Department of Financial Services (NYDFS). The regulator announced the action Tuesday.
Under the NYDFS’s 2017 Cybersecurity Regulation, First American was required to have controls in place to secure its customer data.
Related articles
-
News BriefVF discloses data breach impacted 35.5M customers
Apparel company VF Corp., the owner of brands including The North Face, Vans, and Timberland, disclosed its estimation approximately 35.5 million customers had their personal data stolen as part of a cybersecurity incident it uncovered in December.
-
News BriefGenesis Global Trading fined $8M by NYDFS over AML, cyber lapses
Virtual currency brokerage firm Genesis Global Trading agreed to pay an $8 million penalty levied by the New York State Department of Financial Services for alleged compliance failures that left it vulnerable to illicit activity and cybersecurity threats.
-
News BriefOneMain Financial fined $4.25M in NYDFS cybersecurity case
Mortgage servicer OneMain Financial Group will pay $4.25 million to settle allegations it left customer information vulnerable to cyberattacks by failing to implement required controls under New York’s cybersecurity law.
More from Regulatory Enforcement
-
PremiumAssessing the impact of the DOJ’s monitorship policy six months in
It has been nearly six months now since the Department of Justice’s (DOJ) Criminal Division released its memorandum on the selection of compliance monitors. This article provides a critical analysis of the monitorships that received early terminations, those that remain in place, and the broader compliance lessons they impart.
-
News BriefBinance’s Changpeng Zhao receives presidential pardon from Trump
The founder of crypto exchange Binance, Changpeng Zhao, received a pardon from President Donald Trump. This pardon comes almost two years after Zhao signed a plea agreement and was sentenced to a four-month prison sentence.
-
ArticleOCC drops $10M fine against former Wells Fargo risk officer fingered in “fake accounts” scandal
A former Wells Fargo risk officer previously ordered to pay $10 million by the Department of the Treasury’s Office of the Comptroller of the Currency (OCC) for her alleged role in the bank’s “fake accounts” scandal is completely off the hook, according to an OCC consent order issued Tuesday.