Renaissance Life & Health Insurance Suffers Data Privacy ‘Incident’

<p>Insurance companies and their partners and vendors are highly data-driven. They handle and process huge volumes of sensitive health and personal information for a variety of reasons, including claims processing, data analytics, and new product development. Unfortunately, threat actors are aware of the treasure trove of valuable data these organizations possess. We can’t be surprised that the Renaissance Life &amp; Health Insurance Company received notice, then, that a third-party vendor experienced a cyberattack targeting their PHI. As a matter of fact, all insurance companies (and enterprises in general) should assume that at some point a successful attack like this one may penetrate protected perimeters, allowing hackers to get their hands on that valuable data.</p>
<p>To nullify the value of that data on the black market, insurance companies and their partners can apply data-centric security such as format-preserving encryption or tokenization. Tokenization in particular replaces sensitive data elements with meaningless representational tokens, so even if threat actors apprehend the data, the sensitive information is obscured and worthless. Better yet, data-centric security is not restricted to protected borders and can travel with data as it moves through a processing environment. If companies are looking for effective insurance against cyberattacks, look no further than data-centric security.</p>