First American fined $1M by NYDFS over 2019 cybersecurity breach
By 
Adrianne Appel2023-11-29T19:05:00
A title insurance company agreed to pay a $1 million fine and implement stronger compliance measures for allegedly not securing customers’ personal data, particularly during a 2019 cybersecurity breach.
First American Title Insurance Company, the second largest title insurer in the nation, did not address a known vulnerability on its proprietary storage platform, EaglePro, before the issue was exposed by a cybersecurity journalist months later, according to the New York State Department of Financial Services (NYDFS). The regulator announced the action Tuesday.
Under the NYDFS’s 2017 Cybersecurity Regulation, First American was required to have controls in place to secure its customer data.
Related articles
-
News BriefVF discloses data breach impacted 35.5M customers
Apparel company VF Corp., the owner of brands including The North Face, Vans, and Timberland, disclosed its estimation approximately 35.5 million customers had their personal data stolen as part of a cybersecurity incident it uncovered in December.
-
News BriefGenesis Global Trading fined $8M by NYDFS over AML, cyber lapses
Virtual currency brokerage firm Genesis Global Trading agreed to pay an $8 million penalty levied by the New York State Department of Financial Services for alleged compliance failures that left it vulnerable to illicit activity and cybersecurity threats.
-
News BriefOneMain Financial fined $4.25M in NYDFS cybersecurity case
Mortgage servicer OneMain Financial Group will pay $4.25 million to settle allegations it left customer information vulnerable to cyberattacks by failing to implement required controls under New York’s cybersecurity law.
More from Regulatory Enforcement
-
News BriefFTC raises antitrust concerns over $1.57B Circle K deal, orders divestitures
Since President Donald Trump took office, the U.S. Federal Trade Commission has yet to keep up the level of enforcement it had under previous chair Lina Khan. The agency, however, returned to antitrust action in the case of fuel stations, just in time for the July 4th holiday.
-
News BriefJudge reinstates fired CPSC commissioners in latest battle over government cuts
In May, three commissioners for the Consumer Product Safety Commission were abruptly fired by President Donald Trump and sued for their jobs shortly after. A federal judge has ruled that the commissioners should be reinstated, although it’s unclear whether that ruling may itself be reversed.
-
PremiumUK’s Failure to Prevent Fraud law may expose firms to unlimited fines and prosecution, says Moody’s compliance risk expert
Fraud now accounts for around 40% of all crime in the U.K., posing a major problem for banks and consumers. Ted Datta, head of industry practice for financial crime compliance at Moody’s, warns that the risk is growing fast.