IRDAI advisory calls upon insurers to protect policyholders’ data

Insurers are required to follow cyber security guidelines for operations

geetanjali

Geetanjali Minhas | October 19, 2024 | Mumbai


#IRDAI   #Insurance   #finance   #cyber security  
(Illustration: Ashish Asthana)
(Illustration: Ashish Asthana)

IRDAI, in an advisory, has called upon all insurers to check their IT systems for vulnerabilities and take necessary steps to protect the policyholders’ data. The insurance regulatory body has said that insurers are required to follow cyber security guidelines and put in place robust IT and cyber security framework for carrying out their operations.

Recently in a major data breach that took place at Star Health Insurance, one of the country's largest health insurers, over 31 million customers' sensitive personal information was allegedly sold to hackers.

In its statement, IRDAI has said that it was closely monitoring the situation in case of the concerned insurers and was in touch with their management. Regular updates are being obtained to ensure that the policyholders’ data and interest are fully protected and the company is taking all steps to arrest the threat posed by this breach. The IRDAI will continue to engage with the insurance companies to ensure that the policyholders’ interests are fully protected.

“The concerned insurers have been instructed to appoint an independent auditor to undertake comprehensive audit of the company’s IT landscape.”

IRDAI has said that the concerned insurers have ring-fenced the impacted IT system by isolating it and at the same time appointed an external IT security company to undertake root cause analysis. The audit firm reported vulnerabilities in the company’s IT system and the methodology used by the threat actor to exploit the same which were acted upon by insurers. The Containment, Eradication and Recoverability plan as suggested by the audit firm are being implemented by the insurers.

The regulatory authority said that preventive steps outlined in the report are in the process of implementation to keep the policyholders’ data safe and secure. System upgrades over immediate, short and medium time period, will be acted upon by the insurers. The API vulnerabilities, gap assessment and VAPT Issues are at an advanced stage of rectification. The insurers have filed a criminal complaint with the law enforcement agencies against the threat actors. It served legal notice on the social media platform to prevent the threat actor from selling the policyholders' data.

Comments

 

Other News

New translation of Tagore’s modern classic speaks to our times

Four Chapters By Rabindranath Tagore Translated from the Bangla by Sekhar Bandyopadhyay and Subhransu Maitra Orient BlackSwan, 120 pages, Rs 515

Veteran journalist explains why 2024 election “surprised” India

2024: The Election That Surprised India By Rajdeep Sardesai HarperCollins, Rs 799.00, 560 pages It has been ba

When Golwalkar decided to become a monk…

Golwalkar: The Myth Behind The Man, The Man Behind The Machine By Dhirendra K. Jha Simon and Schuster India, 400 pages, Rs 899

AI can transform healthcare sector…

Over the last decade, India has initiated a range of progress-driven policies to advance the health sector towards greater overall digitisation. Frontline health workers are now trained to adopt digital health solutions, evolving from traditional paper-based record keeping systems to a centralised digital

An ideal primer on the Equality debate

Who Is Equal?: The Equality Code of the Constitution Saurabh Kirpal Penguin/Vintage, 304 pages, Rs 699 The idea of equality holds a place

Launched: TATA Aircraft Complex to manufacture C-295 aircraft

Prime minister Narendra Modi and his Spanish counterpart, Pedro Sanchez, jointly inaugurated the TATA Aircraft Complex for manufacturing C-295 aircraft at TATA Advanced Systems Limited (TASL) Campus in Vadodara, Gujarat on Monday. Both the PMs also took a walkthrough of the exhibition showcased on the occa

Visionary Talk: Amitabh Gupta, Pune Police Commissioner with Kailashnath Adhikari, MD, Governance Now


Archives

Current Issue

Opinion

Facebook Twitter Google Plus Linkedin Subscribe Newsletter

Twitter