About Steve Haase

Steve Haase, president of INSUREtrust, has 25 years of experience in risk management and insurance and B.A. and M.S. degrees in risk management and insurance from Georgia State University. He also holds CPCU and ARM designations. He is a frequent speaker at industry events on e-business risk management. In 1997 he launched the first insurance product focused on “breach of security” exposures for companies doing business over the Internet. This initiative eventually became INSUREtrust LLC, a leading cyber liability wholesaler in Norcross, Ga.

21st Century Oncology and the importance of cyber insurance in the healthcare space

By | 2018-03-19T10:41:42+00:00 March 19th, 2018|Cyber Crime, Cyber Liability|

In 2015, 21st Century Oncology, the largest global provider of integrated cancer care services, experienced a data breach that affected more than 2.2 million patients and employees. In December 2017, the company agreed to pay a $2.3 million fine to the Department of Health and Human Services (HHS) for the data breach. (Keep in mind,

Is your business GDPR compliant? Here are some steps to take to prepare for the regulation

By | 2018-02-26T11:30:54+00:00 February 26th, 2018|Recent News|

On May 25, 2018, the EU’s General Data Protection Regulation (GDPR) will be enforced, which will give EU citizens more control of their data. This regulation replaces the outdated Data Protection Directive, and addresses the creation of social networking sites, cloud computing, and location-based services. While GDPR is a EU regulation, it will apply to

You Need an Incident Response Plan

By | 2018-02-19T11:03:10+00:00 February 19th, 2018|Risk Management|

When a business faces a cyberattack, often what matters most is how they react and manage the fallout. Yahoo, Equifax, and Uber are all examples of companies whose reputations suffered greatly due to their slow response and poor communication with consumers.  According to an Edelman security study, 71 percent of global consumers said they would

Electronic toymaker VTech lawsuit highlights the importance of having strong data security

By | 2018-02-13T12:28:05+00:00 February 13th, 2018|Breach, Cyber Attack|

In November 2015, electronic toy manufacturer VTech’s company's “Learning Lodge” app store was hacked, affecting five million customers, over half of whom were not adults. While the data breach did not didn’t reveal credit card data, social security numbers, or driver’s license IDs, it gave the hackers access to customers’ names, addresses, encrypted passwords, birthdays,

The aftermath of the Meltdown and Spectre chip flaws, and how you can protect your devices

By | 2018-02-08T12:07:41+00:00 February 6th, 2018|Cyber Risk, Hacking|

Intel has recently named Michael Mayberry as its new chief technology officer and senior VP. This leadership change, plus other management changes, is amid a time when nearly every day there’s a new alarming headline about the two security vulnerabilities, such as “Meltdown And Spectre Patching Has Been A Total Train Wreck,” “Intel's Never-Ending Spectre

Beware of cyber-light policies

By | 2018-01-29T15:29:49+00:00 January 29th, 2018|Crime Insurance|

“Cyber-light” is a term used to describe policies that are low on actual cyber coverage, so that the carrier can promote cyber as part of a package policy, at very little additional cost to the insured. But this coverage can do more harm than good, because it gives the insured a false sense of security.

What to know about security vulnerabilities Meltdown and Spectre

By | 2018-01-23T15:08:42+00:00 January 23rd, 2018|Cyber Risk, Hacking|

In early January, it was revealed that nearly every computer chip made in the past 20 years contains fundamental security flaws called Spectre and Meltdown. Both bugs use a side-channel analysis attack, where malicious code can let attackers see information stored in a computer’s central processing unit (CPU). This is a big deal!  Virtually everyone

An explainer of the EU’s General Data Protection Regulation (GDPR)

By | 2018-01-17T22:21:15+00:00 January 15th, 2018|2018, Privacy|

In 1995, the EU introduced its Data Protection Directive to protect consumers. But 20 years later, with rapid changes in technology, the Data Protection Directive now seems outdated. Consumers are more worried than ever about what companies do with their consumer data, especially after security breaches occur. They want to have control over how their

“Mailsploit” makes phishing attacks tougher to detect

By | 2018-01-17T22:20:54+00:00 January 3rd, 2018|2018, Cyber Threat|

As if it weren’t already bad enough, phishing just got easier for the bad guys. A security researcher recently uncovered what is being dubbed “Mailsploit,” a variety of methods for making the identification of fake emails extremely difficult for the end user. According to Wired, Mailsploit is made possible by taking bugs found in many