Cyber Threats Are The Top Insurance Risk

Cyber insurance is evolving fast as the incidence of data breaches from insider and malicious external threats have become more prevalent. Just a few years ago, cyber insurance was considered important because of data breach concerns and protecting organisations’ liability if private data was exposed. Today, the focus is on the potentially huge losses stemming from cyber-crime.

Research carried out by the  UK insurance firm Gallagher polled 1000 UK business leaders in organisations of various sizes and nearly two-fifths (39%) cited cyber-attacks as one of their biggest concerns. Of these, 82% reported  they do not have specialist insurance.

The shift in the number one cause of loss is a result of both the growing sophistication of cyber criminals’ attack methods as well as businesses’ ability to adapt to cyber threats. It calculated the average number of attacks aimed at a single business last year was 576,575, around 152% higher than the 281,094 recorded in 2018 and the highest since the ISP began analysing this kind of data in 2016. 

A few years ago, credit card breaches at retailers like Home Depot, with 56 million cards compromised, and Target, with 41 million cards compromised, were making headlines. Today, the number of credit card breaches in the news has dropped off, and that’s because businesses have learned their lesson and adopted end-to-end encryption, among other controls. 

Now criminals set their sights on phishing emails, which entice users to click on suspicious links and provide crucial information, and business email compromise, where criminals impersonate employees and management to convince other employees to wire money to nefarious accounts.

Cyber risks have evolved even further. The range of businesses that can become victims of ransomware is broad. In one example highlighted a recent analysis carried out by the Tokio Marine insurance firm, an assistant restaurant manager downloaded an email attachment that looked like a spreadsheet from her manager on to the restaurant’s computer. 

Unfortunately, the file contained the Ryuk virus, which blocked access to the operating system and encrypted all the files on the computer.  A message appeared on the computer notifying the manager that the system and all files were encrypted and would only be unlocked if he paid a ransom of more than $200,000 using Bitcoin.

The higher levels of ransom increasingly being demanded by hackers to restore data is a notable trend and insurers are sensitive to the soaring costs of a successful ransom attack. 

Insurance Business:       Infosecurity:      Reinsurance News:       Infosecurity:     Gallagher Insurance:     CyberCureMe:

You Might Also Read:

Paying Cyber criminals A Ransom Will Double Your Recovery Costs:

British CEOs Worry About Cyber Attacks While Their Businesses Are Under-Insured:

 

« Inside The Deep & The Dark Web
Twitter Is Trying To Control Propaganda »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Feitian Technologies

Feitian Technologies

Feitian Technologies provides authentication and transaction security products for financial institutions, telecoms, government and leading business enterprises.

InfoSec World

InfoSec World

InfoSec World conference and expo covers all aspects of information security with a broad agenda of sessions on key security issues.

Introspective Networks

Introspective Networks

Introspective Networks (IN) is a Cybersecurity company focusing on securing data in the network and automating knowledge work to decrease vulnerability points to critical infrastructure.

NRI Secure Technologies

NRI Secure Technologies

NRI SecureTechnologies is a Cybersecurity group company of the Nomura Research Institute (NRI) and a global provider of next-generation Managed Security Services and Security Consulting.

Wise-Mon

Wise-Mon

Wise-Mon is expert in its field of network monitoring and control. We give solutions to huge organizations with tens of thousands of ports, as well as small companies with one switch.

Approachable Certification

Approachable Certification

Approachable Certification is a UKAS accredited certification body offering down-to-earth and competitively priced audits against ISO Management Systems standards.

Lexsynergy

Lexsynergy

Lexsynergy is a global domain name management and online brand protection company.

Cythereal

Cythereal

Cythereal is the leader in predicting and preventing advanced malware attacks. Security Automation for the Overwhelmed Administrator.

Cognyte

Cognyte

Cognyte is a global leader in investigative analytics software that empowers a variety of government and other organizations with Actionable Intelligence for a Safer World.

US Marine Corps Forces Cyberspace Command (MARFORCYBER)

US Marine Corps Forces Cyberspace Command (MARFORCYBER)

US Marine Corps Forces Cyberspace Command (MARFORCYBER) conducts full spectrum military cyberspace operations in order to enable freedom of action in cyberspace and deny the same to the adversary.

AI Spera

AI Spera

AI-Driven Cyber Threat Intelligence Security. AI Spera provides real-time intelligence to empower your security competences in all aspects of the business.

Redefine

Redefine

Redefine are Crypto-Native, Cyber Experts, and Blockchain Believers. We are here to make Web3 anti-fragile, safe and accessible to all.

CERT.ar

CERT.ar

CERT.ar is the national Computer Emergency Response Team for the technical-administrative management of computer security incidents in the National Public Sector of Argentina.

Icon Information Systems (ICONIS)

Icon Information Systems (ICONIS)

ICONIS is an integrated infrastructure and service provider, offering unified Information Technology (IT) solutions globally.

ACDS (Advanced Cyber Defence Systems)

ACDS (Advanced Cyber Defence Systems)

ACDS was founded in the belief that cyber security can be done better. We’re combining emerging technologies and proven methods to bring a new approach to tackling the growing threat landscape.

Adili Group

Adili Group

Adili Group is a leading pan-African corporate advisory firm. We deliver tailored solutions in regulation and compliance, risk management, and improving business efficiency.