{"id":208717,"date":"2026-05-05T01:04:00","date_gmt":"2026-05-05T05:04:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/05\/delta-dental-insurers-to-pay-new-york-2-25m-over-cybersecurity-incident\/"},"modified":"2026-05-05T01:15:08","modified_gmt":"2026-05-05T05:15:08","slug":"delta-dental-insurers-to-pay-new-york-2-25m-over-cybersecurity-incident","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/05\/delta-dental-insurers-to-pay-new-york-2-25m-over-cybersecurity-incident\/","title":{"rendered":"Delta Dental Insurers to Pay New York $2.25M Over Cybersecurity Incident"},"content":{"rendered":"<p><a href=\"https:\/\/www.insurancejournal.com\/news\/east\/2026\/05\/05\/868416.htm\">Delta Dental Insurers to Pay New York $2.25M Over Cybersecurity Incident<\/a><\/p>\n<p><a href=\"https:\/\/www.insurancejournal.com\/news\/east\/2026\/05\/05\/868416.htm\">https:\/\/www.insurancejournal.com\/news\/east\/2026\/05\/05\/868416.htm<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-05 01:04:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.insurancejournal.com\">www.insurancejournal.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.<br \/>\n        Delta Dental Insurance Co. (DDIC) and Delta Dental of New York, Inc. (DDNY) will pay a $2.25 million penalty for violations of New York\u2019s cybersecurity regulation, the Department of Financial Services (DFS) reported.<br \/>\nActing DFS Superintendent Kaitlin Asrow said that an investigation determined that the companies\u2019 \u201cinadequate incident response policies and procedures\u201d allowed threat actors to obtain unauthorized access to New Yorkers\u2019 personal information including names, addresses, social security numbers, driver\u2019s license numbers, financial account information, and patient health information.<br \/>\nThe investigation found that the cybersecurity program used by the companies did not comply with DFS\u2019s cybersecurity regulation, which requires them to implement retention settings, policies, procedures, and controls designed to protect consumer data and the information systems of the financial institutions themselves.<br \/>\nIn addition DDIC and DDNY failed to timely report their respective cybersecurity events as required, DFS said.<br \/>\nDDIC is a licensed accident and health insurer and DDNY is a licensed non-profit dental expense indemnity. company. Both companies use MOVEit Transfer servers for transferring files among their affiliates\u2019 customers, business partners, medical professionals, and employees.<br \/>\nOn June 2, 2023, the DFS alerted regulated entities of this vulnerability and its remediation in an industry guidance letter. DDIC and DDNY notified all affected consumers by March 2024.<br \/>\nDFS\u2019s cybersecurity regulation became effective in March 2017, with an updated amendment effective as of November 2023.<\/p>\n<p>            Topics<br \/>\n            Carriers<br \/>\n            Cyber<br \/>\n            New York<\/p>\n<p>        Was this article valuable?<\/p>\n<p>            Yes<br \/>\n            No<\/p>\n<p>        Here are more articles you may enjoy.<\/p>\n<p>            Interested in Carriers?<br \/>\n            Get automatic alerts for this topic.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Delta Dental Insurers to Pay New York $2.25M Over Cybersecurity Incident https:\/\/www.insurancejournal.com\/news\/east\/2026\/05\/05\/868416.htm Publish Date: 2026-05-05&#8230;<\/p>\n","protected":false},"author":1,"featured_media":208718,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.insurancejournal.com\/app\/uploads\/2024\/09\/email-fraud-pic-scaled.jpeg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,27],"class_list":["post-208717","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208717"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=208717"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208717\/revisions"}],"predecessor-version":[{"id":208719,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208717\/revisions\/208719"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/208718"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=208717"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=208717"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=208717"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}