“GONE PHISHING!” – The Real Liability of the Virtual World

/ BLOG

“GONE PHISHING!” – The Real Liability of the Virtual World

May 31, 2017 · 5 minutes to read

Phishing is a criminal practice that exploits individuals via fraudulent electronic communication and interaction. Together with spear phishing, clone phishing and whaling, the Internet can be a scamming minefield.  If you don’t already, it might be a good time to pay attention to the security breaches you hear about in the news, like Gawker.com in 2010, Sony, Epsilon and others in 2011, and most recently Zappos in early 2012.

Generally speaking, social engineering is putting bait on a virtual fishing pole, casting it out into the vast ocean of the Internet, and waiting to see who might naively take a bite. After being hooked by the apparently trustworthy communication, the unknowing target then proceeds to give up confidential information (social security number, credit card number, etc.) – anything that can help perpetrate identity (ID)  theft or credit card fraud.  In other cases, the scammer can even get cash from his hooked ‘phish’ by sending emails from a hijacked email account posing as a friend in need.  It’s been estimated that scammers can make $500 a day from their victims, if not more.

Businesses of all sizes are subject to security breaches. It can be because their networks were compromised, an employee lost a laptop or perhaps there was an accidental disclosure of confidential information (like posting a spreadsheet of client data to a public website). When this type of breach happens, and it does often, the business can be liable for a host of breach-related costs. To mitigate the consequences, the negligent company must bear the responsibility to:

  • Notify customers their data has been disclosed,
  • Incur information technology (IT) forensics costs to investigate what caused the breach,
  • Be subject to privacy regulatory activity, and/or
  • Third-party liability from those who were caused financial harm from the breach.

The liability does not stop at the business that lost customer data; it extends to that company’s subcontractors, independent contractors and vendors who may be the linchpin in the breach.  When contracting with business clients, a subcontractor may take on its client’s highly sensitive customer information and therefore is also responsibile for maintaining its security.

Let’s consider what happened to Epsilon in April 2011.  Epsilon is one of the largest email and online marketing firms, whose customers includes seven of the Fortune 10 amongst its 2,500 clients.  Their breach exposed the names and email addresses of massive customers like Best Buy, Citibank, and Walgreens.  While it may not seem like highly prized data in and of itself, names and email addresses are quality bait and useful in constructing a successful scam.  Receiving a personalized message from a company that you already have an account with can be convincing and leaves many people susceptible to ID theft.

Whether you’re a big vendor like Epsilon, who performs email marketing services for huge Fortune 500 clients or an independent contractor working on your personal laptop with your client’s confidential data, you can become liable for a security breach of your customer’s (or your customer’s customers’) data if you or your equipment is somehow the weak link.  The general consensus from the privacy/security community is not whether someone will be hacked, but when.  After that happens, it’s about what was done to mitigate the loss.  In a recent study entitled “Empirical Analysis of Data Breach Litigation,”[1] law researchers at Carnegie Mellon and Temple University found that a company that offered credit monitoring after a breach was six times less likely to get sued.  If it’s not preventable, then why not at least transfer and minimize the risk and cost.  Having a strong service contract that protects your position in the event of a security breach is one way to start, along with maintaining industry standard privacy and security controls.  One cost-effective way to transfer the risk of this liability is through Cyber Insurance.

Cyber Insurance combines Technology Professional Liability (a.k.a. Errors & Omissions), Miscellaneous Professional Liability, Privacy Liability and Network Security Liability into one omnibus coverage that protects a company against today’s ever growing need to safeguard electronic information.  The coverage can help cover costs like Information Technology forensics, third-party liability, and credit monitoring.  The nuance of whether you’re subject to a third-party liability claim or first-party privacy cost claim can be avoided, when you have a policy that covers you from all angles.

One obvious lesson is to be very careful with all communications and actively protect your own confidential information and passwords.  If you’re not careful on a personal level, you may have your account hijacked and have to deal with your email’s support team who may, or may not, be able to retrieve your emails from the last five years.  Not to mention the scorn of your friends and family who may have given up money or other confidential data to someone perpetrating a scam from Nigeria.  For a business, however, it’s critical to not be known as the company that let down its guard and made its customer’s data vulnerable to the scores of hackers, scammers, and organized e-crime syndicates that are on the prowl.

As you explore and utilize the wonderful World Wide Web, enjoy surfing, but don’t get hooked!

BizInsure Guest Blogger: Natalie Chin


[1] Romanosky, Sasha, Hoffman, David A. and Acquisti, Alessandro, “Empirical Analysis of Data Breach Litigation” (February 19, 2012). Available at SSRN: http://ssrn.com/abstract=1986461 or http://dx.doi.org/10.2139/ssrn.1986461

Talk to us

Today’s BizInsure offerings are just the beginning. Please take the time to tell us what you think, offer advice, ask questions, give compliments, or make a request…customer feedback defines us. We’re listening. Click here to contact us.

Get Free Online Quotes and get coverage instantly

The coverage you need for your business.

Business insurance is divided into different policies. We offer 4 types so it's easy to design the coverage that fits your business.

Professional Liability Insurance

Get a quote

General Liability Insurance

Get a quote

Business Owner’s Policy (BOP)

Get a quote

Workers Compensation Insurance

Get a quote

Let's find

The coverage you need for your business

Professional Liability Insurance

Get a quote

General Liability Insurance

Get a quote

Business Owner’s Policy (BOP)

Get a quote

Workers Compensation Insurance

Get a quote

bizinsurance makes purchasing Business Insurance...SIMPLE!
Andrea W.
1701380391
Great quality of Service ,faster and convenience way to pay at most. Thank you for your Service to my Healthcare Facility .
Quick and easy!!!!
Terry
1701319042
Great service! Easy process and very informative representative. Andrea was great and very patience with our process. I would recommend using them!!
Terrance R.
1700848536
Always and easy process. Thanks!
Gerald S.
1700244544
Renewal was quick and easy online
Angelita K.
1699752900
I had a great experience working with Andrea from BizInsure. She was extremely knowledgeable, helpful, and responsive throughout the entire process. She guided me through the different options available and helped me find the perfect home care professional liability insurance policy that suited my needs. Her professionalism and expertise made the entire experience smooth and hassle-free. I highly recommend working with Andrea and BizInsure for all your insurance needs.
Juliette S.
1699032636
Easy to submit an application and to get quotes
Simone S.
1698775217
I had the most pleasant prompt and professional experience of my life with Bizinsure. Everything was completed in record time, at an unbelievable cost…and my certificate of Insurance was promptly emailed to me. Most of all it was effective immediately. No hassle no back & forth, just great service highly recommend to all small businesses.
Marcia S.
1698407456
Excellent
advanced U.
1697824466
Great service. Very professional and cordial. Thanks
Jeremiah U.
1697064641
BizInure has been a great company for our insurance needs. I wish customers services was 24/7, that would make it a five stars
Novilette L. J.
1696828014
Easy to navigate what you need. Always notify ahead of renewal!
Athena T.
1696646371
This is the best company I have ever worked with. They are professional and get you exactly what you need. I highly recommend them!
Jim P.
1696451803
this is really easy
Riaz R.
1696428004
Andrea was very useful and professional. I will be recommending Biznsure to my friends that need business insurance. Keep up the good work. I wish the agency also offers auto insurance and whenever you do I will be one of the first to sign up as sign of my appreciation.Mike Okonkwo.
Mike O
1696282284
Kalab was excellent. Great, great Agent. Every step was organized and well planned. I WILL recommend your firm to anyone. Thank you...
Easy to renew Policy
Plain S.
1695644756
Great total experience. The agent was professional, knowledgeable,and a pleasure to work with. The fastest business insurance purchase I've ever experience. I highly recommend Bizinsure.
Tony W.
1695492357
Communication was excellent and the process was easy.
Jessie R.
1695153508
I have been using Bizinsure for several years and find the ease of renewing as well as generating additional insured certificates to be easy and useful, especially as a sole prop. thank you
Michelle C.
1695060008
Kaleb tailored the right coverage to our business. Customer service was good and gave great understanding of coverage. Thank you from Goleda's Gentle Homecare LLC
Aneesah M.
1695056651
A GOOD COMPANY FOR HEALTH CARE INC
Supreme A.
1694871640
Easiest & fastest online quote and purchasing experience out there. Inside of 10 minutes I had a quote, payment draft, and policy in force... and at the most competitive GL rates I found.
Rusty H.
1694699044
very quick and prompt service.
Sally Jo W.
1694180429
caleb was great in helping me navigate thecorrect liabilty insurance for my company
Lindsay Erin P.
1694135867
Friendly fast service I recommend you to all vendors
Terry R.
1694133043
Great
Kemi S.
1694119021
Great Customer service and easy renewal process!!!! I would refer this company to anyone.
Chris H.
1694038325
Great company easy to work with, Andrew was very helpful,you can call him any time he is ready to listen and help
Olu A.
1693959486
Good customer service indeed
BASSI T.
1693944217
js_loader
Google Rating
4.6
Based on 214 reviews
×
js_loader