Attorney General James emphasized the responsibility of auto insurance companies, stating, "Auto insurance companies offer drivers protection during emergencies, but they must also protect their personal information from hackers and scammers. Noblr failed to secure its data systems making it easy for scammers to steal New Yorkers' information and use some of the stolen information to fraudulently obtain unemployment benefits."
Noblr's quoting tool exposed customers' sensitive data, displaying full, plaintext driver's license numbers in several ways. This lack of security highlights the importance of robust data protection protocols.
The breach resulted in serious consequences, as scam artists filed fraudulent unemployment claims with the stolen data during the COVID-19 pandemic, showcasing the risk to consumers when companies neglect cybersecurity.
In total, Attorney General James has brought accountability to auto insurance companies for cybersecurity failures, amounting to $5.6 million, underscoring that all companies must prioritize cybersecurity.
Collection
[
|
...
]