First American fined $1M by NYDFS over 2019 cybersecurity breach
By 
Adrianne Appel2023-11-29T19:05:00
A title insurance company agreed to pay a $1 million fine and implement stronger compliance measures for allegedly not securing customers’ personal data, particularly during a 2019 cybersecurity breach.
First American Title Insurance Company, the second largest title insurer in the nation, did not address a known vulnerability on its proprietary storage platform, EaglePro, before the issue was exposed by a cybersecurity journalist months later, according to the New York State Department of Financial Services (NYDFS). The regulator announced the action Tuesday.
Under the NYDFS’s 2017 Cybersecurity Regulation, First American was required to have controls in place to secure its customer data.
Related articles
-
News BriefVF discloses data breach impacted 35.5M customers
Apparel company VF Corp., the owner of brands including The North Face, Vans, and Timberland, disclosed its estimation approximately 35.5 million customers had their personal data stolen as part of a cybersecurity incident it uncovered in December.
-
News BriefGenesis Global Trading fined $8M by NYDFS over AML, cyber lapses
Virtual currency brokerage firm Genesis Global Trading agreed to pay an $8 million penalty levied by the New York State Department of Financial Services for alleged compliance failures that left it vulnerable to illicit activity and cybersecurity threats.
-
News BriefOneMain Financial fined $4.25M in NYDFS cybersecurity case
Mortgage servicer OneMain Financial Group will pay $4.25 million to settle allegations it left customer information vulnerable to cyberattacks by failing to implement required controls under New York’s cybersecurity law.
More from Regulatory Enforcement
-
News BriefFreight forwarder fined $1.6M after using OFAC-blocked Venezuelan, Iranian carriers
A Houston-based freight forwarder, Fracht FWO Inc., will pay $1.6 million for violating U.S. sanctions tied to Venezuela and Iran, according to the Treasury Department’s Office of Foreign Assets Control (OFAC). The fine comes as OFAC ramps up enforcement in recent months.
-
ArticleCFTC clears deck of ‘compliance’ enforcement actions to focus on fraud
BNY, Citigroup, Santander, UBS, and two other financial institutions paid a total of $8.3M to settle separate compliance violations with the CFTC.
-
News BriefHong Kong securities regulator hits repeat offender Deutsche Bank with $3M fine
Deutsche Bank has agreed to pay a $3 million fine and has returned $5 million in fee overcharges to customers as part of a resolution with Hong Kong’s financial services regulator.