Personal Cyber Insurance Market Could Be Worth $3B by 2025

Uploaded on 2019-02-26 in FREE TO VIEW, BUSINESS-Services-Financial

Every week, there seems to be a major new data breach that impacts tens of thousands, if not millions, of people. Moreover, words like “phishing” and “malware” have officially tipped into the cultural mainstream. And just about everyone knows someone who has been recently hacked, in the form of identity theft or outright fraud.

So it’s perhaps no surprise that major insurance companies are creating personal cyber insurance products specifically designed to cover any loss or liability in the event of a cyber-attack.

In fact, a new Swiss Re report details how quickly the market is growing, and exactly why personal cyber insurance products are so attractive to people who spend a lot of their lives online.

Swiss Re’s report says that the global market for personal cyber insurance could be worth as much as $3.1 billion by the year 2025. That’s the high end of the predicted range.

A more conservative figure would be $1.6 billion, not quite as impressive, but still a billion-dollar market opportunity in just over five years.
 
This phenomenal growth in the market for personal cyber insurance would largely follow the same trajectory as the market for commercial cyber insurance, which is projected to become a $7.5 billion to $10 billion market opportunity by the year 2020.

In a survey that Swiss Re conducted for the report, just over one-half (56%) of respondents said they would be willing to buy personal cyber insurance. However, rather than purchasing a standalone policy, for many respondents, the clear preference is for “cyber extensions” that could be added on to existing policies for home, motor or health.

Thus, if your home has been transformed into a “smart home” with smart meters and devices connected to the Internet, you might purchase a cyber extension on your homeowner policy designed to protect you in the event that someone hacks your home, causing your personal financial loss.

What, exactly, is personal cyber insurance?

Given the newness of the cyber protection market category, it’s clear that the major insurance companies are, first, trying to figure out to whom they should pitch the product; and secondly, trying to figure out what should be included.

In terms of a target market, it appears that the most likely candidate (for now, at least) is the wealthy homeowner (e.g. a vice president of a major company) with something very real to lose. Most of the first personal cyber insurance policies, for example, are designed to cover losses up to $250,000.

According to insurers like Chubb, that would be enough to replace the smart lighting system in your connected home, order a “white glove” consultant to come and clean up the damage, and potentially, pay off any ransom fees using Bitcoin.

According to Swiss Re, personal cyber insurance products should, as a minimum, cover the cost of any financial losses due to financial fraud or ID theft; any cyber extortion fees; and the costs of any IT specialists removing malware from devices and replacing any lost data from your computer operating system.

Presumably, wealthy customers are very concerned about hackers draining their bank accounts, stealing their credit card information and extorting tens of thousands of dollars from them.

Of course, there are doubtless going to be all sorts of bells and whistles added on to personal cyber insurance policies. For example, AIG now offers a “Family CyberEdge” policy that covers not only ransomware and network infiltration, but also “cyber bullying.”

This sounds good, but it’s hard to imagine a huge insurance company paying out significant sums of money if someone writes a series of mean tweets about you on Twitter.

The big question for many people is whether it’s actually worth it to purchase a personal cyber insurance policy.

Here is where you will have to do a little cost-benefit analysis, because you might be paying for something that you don’t really need.

For example, according to the Federal Trade Commission (FTC), the average cyber fraud report from a millennial customer is just $200, while the average cyber fraud report from an older Baby Boomer is just $1,200.

Now compare those two figures to the average policy size, $250,000 in losses, and you can see why personal cyber insurance is still very much a niche market.

Moreover, another question to ask is whether you’re better off spending the money for a personal cyber insurance premium on other must-have products for protecting your digital identity.

For example, many subscription-based ID theft-monitoring services charge just $9.99 per month. And many financial services companies now provide free fraud alerts for all credit and debit card customers.

And will insurance companies actually pay out the claim?

When people purchase a personal insurance policy, they naturally expect that insurers that offer cyber coverage will pay as long as the claim is reasonable and can be backed up with documented proof of loss. However, that might be a misguided assumption, especially if your policy covers third-party claims.

One test case that everyone is watching right now is in the commercial cyber insurance sector, where consumer food giant Mondelez is taking Zurich to court for failing to pay out a claim. Mondelez says it was the victim of a cyber-attack, but Zurich is refusing to pay because it claims the cyber-attack was actually an “act of war,” so it shouldn’t be forced to pay.

And a recent report from Mactavish in the UK seems to support the notion that there are going to be plenty of disagreements about what claims insurers are actually required to pay.

The big takeaway lesson, then, might just be “Buyer Beware.” Always know what your personal cyber insurance covers, what your total coverage amount is, and what sorts of situations might negate coverage.

For example, Chubb requires customers to use a specific brand of Wi-Fi router to protect a home network. Always assume that insurance companies are going to do everything they can to avoid paying a claim.

In coming years, personal cyber insurance might just be a necessity, given how brazen cyber criminals are becoming, so this is definitely a market sector to watch.

We’ve already seen how quickly commercial cyber insurance has grown in popularity, so it’s perhaps only logical that personal cyber insurance will also see a similar sort of exploding popularity over the next few years.

CPOMagazine

You Might Also Read:

Cyber Insurance Risks Are Moving Too Fast For Underwriters:

 

 

 

 

« Three Ways the Pentagon Could Improve Cyber Intelligence
AI Driven Cybersecurity Gives Companies A Fighting-Chance »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Cybersecurity Tech Accord

Cybersecurity Tech Accord

The Cybersecurity Tech Accord promotes a safer online world by fostering collaboration among global technology companies.

Corsa Security

Corsa Security

Corsa Security is leading the transformation of network security with a private cloud approach that helps scale network security services with unwavering performance and flexibility.

Deep Mirror Automotive Cybersecurity

Deep Mirror Automotive Cybersecurity

Deep Mirror Automotive Cybersecurity make Cars & Infrastructures Cybersecure.

Cyturus Technologies

Cyturus Technologies

Cyturus Technologies delivers cybersecurity business risk quantification services using our proprietary Adaptive Risk Model (ARM).

Everbridge

Everbridge

Everbridge provides enterprise software applications that automate and accelerate organizations’ operational response to critical events in order to keep people safe and businesses running.

Concourse Labs

Concourse Labs

Concourse Labs Security Guardrails continuously verify cloud infrastructure and workloads. Continuously assess clouds for security, resiliency, and regulatory compliance.

VectorRock

VectorRock

Save Your Business From Cyber Criminals. We specialize in uncovering cyber risks which threaten your organization and fixing them.

LayerX Security

LayerX Security

LayerX's user-first browser security platform turns any browser into the most protected & manageable workspace, by providing real-time monitoring and governance over users’ activities on the web.

LastPass

LastPass

LastPass provides award-winning password and identity management solutions that are convenient, effortless, and easy to manage.

Arcserve

Arcserve

Defend your data with Arcserve all-in-one data protection and management solutions designed to be the right fit for your business, regardless of size or complexity.

Department of Homeland Security (DHS)

Department of Homeland Security (DHS)

The Department of Homeland Security has a vital mission: to secure the nation from the many threats we face. Our duties are wide-ranging, but our goal is clear - keeping America safe.

NetApp

NetApp

The NetApp portfolio includes intelligent cloud services, data services, and storage infrastructure that helps organizations manage applications and data everywhere across hybrid cloud environments.

Cybastion

Cybastion

Cybastion develops robust world-class cybersecurity solutions tailored to suit the needs of different businesses, governments and public sector entities.

Canadian Cyber Threat Exchange (CCTX)

Canadian Cyber Threat Exchange (CCTX)

The CCTX is Canada’s not-for-profit, private-sector cyber threat sharing hub and collaboration centre.

Munio

Munio

Munio is a leading Fortified IT Support and Cyber Security companies in the south east of the UK.

LockMagic

LockMagic

Lockmagic is an information asset management solution to protect, track, audit and control accesses to sensitive information inside and outside your organization.