The use of cloud collaboration apps such as Zoom, Webex, and Microsoft Teams, has grown dramatically over the past several months. As a result, application-based cyber attacks are becoming more prevalent. Capabilities inherent in applications are being used to gain unauthorized access to people’s data.
Read more about this emerging risk on our TechRisk Blog >>
Bradley York, President of OneBeacon Government Risks, was recently quoted in an Independent Agent Magazine article on the evolving landscape for public entities.
Check out the full article >>
As today’s environment continues to rapidly evolve, we are all focused on maintaining service levels and remaining aware of COVID-19’s impact on our customers. Given the latest federal social distancing guidelines, all of us at OneBeacon will continue working from home at least through April. In the meantime, below are several resources we thought you may find helpful.
General COVID-19 Resources
Health & Safety Institute: this dedicated COVID-19 “digital toolbox” offers access to curated content from WHO, OSHA, the CDC and other trusted sources. Materials include videos, podcasts, training courses and other relevant tools.
American Property Casualty Insurance Association (APCIA) offers COVID-19 related rules, regulations and insurance department communications.
Council of Insurance Agents and Brokers (CIAB) content highlighting COVID-19’s impact on the commercial insurance industry.
Insurance Information Institute’s (I.I.I.) recent NAIC presentation addressing COVID-19’s impact on our industry.
Working from home Materials:
- OSHA tips for productivity and wellness.
- Insurance Industry Charitable Foundation’s (IICF) long-time early literacy partnership with the Sesame Workshop offers “Every day is a reading and writing day” resource for employees or customers who are working from home while also caring for young children.
Cyber criminals understand vulnerability and are using the public’s preoccupation with COVID-19 for targeted cybercrimes. Our recent blog post offers several precautionary tips.
Update & Questions
We will continue to provide updates as necessary. We particularly appreciate your business and friendship during these challenging times. Be well.
The tactics employed by internet scammers continue to become more sophisticated. Recently, KrebsOnSecurity reported a new phone-based scam that “spoofs” Apple Inc. and its customer service phone number for iPhone users.
Spoofing disguises the caller’s identity by using fake caller ID information. This particular vishing scam starts with an automated phone call that displays Apple’s logo, correct address and their correct phone number. This scam warns about a data breach at the company, and requests that the caller contact a toll-free number prior to doing anything else with their phone.
If an iPhone user requests a call back from Apple’s legitimate Customer Support line, the fake call gets indexed in the iPhone’s “recent calls” list and looks like the legitimate Apple Support line call.
A call to the fake toll-free number by KrebsOnSecurity was answered by an automated message indicating that Apple Support had been reached along with an expected wait time. Though the call was disconnected prior to a conversation, the call was eventually answered by an individual who did not work at Apple but at a call center. This scenario is indicative of a call center scam.
Security best practices suggest the following:
- Do not answer calls from telephone numbers you do not recognize.
- If you answer, do not respond to any questions and immediately hang up the phone.
- Beware that fake telephone numbers linked to scammers are becoming more prevalent in search engine results.
- Obtain a telephone number directly from a company’s website (not just a Google search).
For the complete article and other security insights, visit KrebsOnSecurity.com.
OneBeacon Government Risks (OBGR) is attending the Public Risk Management Association’s (PRIMA) 2018 Annual Conference, June 3-6, 2018 in Indianapolis, Indiana.
If you’re attending the conference, stop by Booth #409 during exhibit hall hours to meet representatives from the team. Additionally, OBGR will lead an educational seminar entitled, Caught on Video: Employers, Municipalities and Trial by Social Media.
For more details about the conference, visit the event website at conference.primacentral.org .
OneBeacon Government Risks (OBGR) will be sponsoring the upcoming 2018 MO/KS PRIMA Conference on April 11 – 13. The conference is being held in Lake of the Ozarks, Missouri at the Lodge of Four Seasons.
Curtis Weible, Business Development Manager, and Joe Garcia, Risk Management Specialist, will be on site during the conference so if you are at the event, be sure to stop by their booth!
For updates on the conference, photos, blog posts and more, follow OBGR on Twitter @OneBeaconGov.
When you consider how a Hollywood film gets made, you may immediately think about the most publicized players- the actors, directors, producers and film studios involved. And while they are all vital to the process (including the crews and technical experts who contribute their talents), did you know that none of it could happen without insurance?
We are proud to be the behind-the-scenes players, experts and consultants who can weigh in on everything from actor and location selection to stunt coordination and special effects.
As the industry gears up for its most anticipated award ceremony, the 90th Academy Awards, we would like to take a moment to congratulate the nominated films our Entertainment division has been very proud to support this year – “I, Tonya”, “All the Money in the World”, “Three Billboards Outside Ebbing Missouri” and “The Shape of Water.”
All of us at OneBeacon congratulate you on your achievements and wish you luck on Sunday!
Earlier this month, the Consumer Product Safety Commission (CPSC) announced the recall of roughly 40.5 million Kidde portable fire extinguishers sold in the U.S. (37.8 million units) and Canada (2.7 million units). The recall involves 134 different models manufactured between Jan 1, 1972 and August 15, 2017, including models that were previously recalled in March 2009 and February 2015. Kidde extinguishers are commonly sold for residential, vehicle and sometimes commercial use.
This recall involves two styles of Kidde extinguishers – plastic handle and push-button Pindicator portable fire extinguishers. The CPSC notes that these fire extinguishers can become clogged or require excessive force to discharge and can fail to activate during a fire emergency. In addition, the nozzle can detach with enough force to pose an impact hazard.
There have been nearly 400 reports of failed or limited activation or nozzle detachment, including a 2014 fatality involving a car fire following a crash where emergency responders were unable to get a recalled Kidde fire extinguisher to work. Extinguisher failure has also resulted in approximately 16 injuries including smoke inhalation, minor burns and approximately 91 reports of property damage.
Replace your Extinguisher
Consumers can immediately contact Kidde to request a free replacement fire extinguisher and to obtain instructions on returning the recalled unit, as it may not work property in a fire emergency.
This aptly named article, authored by OneBeacon Government Risks’ Kenny Smith, highlights some of the unique considerations cities and towns should be taking into account now regarding the autonomous vehicles that will be on the roads in our communities in the future. Read the article here , which was published on PropertyCasualty360.com.
As the interest in cyber insurance products escalates, getting a clearer view of claims trends is critical. NetDiligence, a cyber risk assessment and data breach services company, recently published a comprehensive analysis of reported data breach and other cyber event losses. Titled, 2016 Cyber Claims Study, the report was sponsored by OneBeacon Technology among others. Topics include the types of data exposed, causes of loss, business sectors involved, sizes of affected organizations, insider involvement, and third-party involvement. New analyses include:
- Cloud involvement
- Cyber extortion/Ransomware
- Phishing and wire transfer fraud
- POS-related/common point of purchase/CPP investigations
Additionally, the costs associated with crisis and recovery services (e.g., forensics, notification, credit/ID monitoring, legal counsel and miscellaneous other), legal damages (defense and settlement), regulatory action (defense and settlement) and PCI fines are highlighted.
We invite you to download this whitepaper and to review our technology and life science library of whitepapers, visit our website resource library.