3 Most Costly Types of Cyber Insurance Claims
A good cyber insurance policy starts with two core coverage components. These are:
- Data Breach coverage
- Cyber Liability coverage
Data Breach coverage is also referred to as 1st party coverage. This helps your business respond to a breach if PII (personally identifiable information) gets lost or stolen, whether it’s from a hacker breaking into your network, or an employee accidentally getting their laptop stolen at a coffee shop.
Data Breach insurance coverage can help pay the [expensive] costs for such things as:
- Notifying affected customers, patients, or employees;
- Hiring a public relations firm for damage control;
- Offering ongoing credit monitoring services to data breach victims;
- Business income coverage to help replace lost income if you can’t run your business because of a data breach;
- Extortion Coverage helps cover the amount you paid if someone takes your business’ data and demands a ransom.
Between data breach coverage and cyber liability coverage, more than 95% of cyber insurance claims costs come from data breach losses! And these data breach losses fall into three broad categories:
Theft of funds
This is the straightforward theft of money from a company’s bank account. The fact that nearly every business can now move its money around electronically and remotely means that it is much easier to steal. Instead of stealing physical funds, criminals are increasingly stealing electronic funds through social engineering scams. And if a business has somehow been negligent in allowing this to happen, their bank may not reimburse them.
Theft of data
Data is valuable, and if something has value, it is worth stealing. Identity theft has reached record levels around the world and in order to commit identity theft, criminals need data. Seemingly harmless information such as names and addresses stored on a computer network can be worth more money than you think
Damage to digital assets
In order to operate, businesses now have an incredibly high dependency on their systems, and criminals know that. By either damaging or threatening to damage a company’s digital assets, attackers know that they can extort money from their victims who might prefer to pay a ransom rather than see their business grind to a halt. And even after paying up, the victim is often left with systems that are unusable and costly to fix. Your cyber insurance policy will help do this too…..fix and patch your system.
So, when contemplating the purchase of a cyber insurance policy, data breach coverage (1st party coverage) is the heavyweight coverage you must incorporate into your policy. Cyber liability (3rd party coverage) is just as important, but that’s not where the bulk of the claim dollars are paid in the event of a data breach.
Regardless, make sure both of these coverages are included in your cyber insurance policy. And then drill down even further into the data breach coverage section to make sure the line item coverages such as Incident Response Expenses, Cyber Extortion Loss, Network Restoration Expenses, and Business Interruption are included as well.
No two carrier policies are the same and cyber insurance is absolutely not one size fits all!
Hackers Are Shutting Down Factories
A growing number of cyber criminals are targeting factories for ransom, knowing that the industry’s time-sensitive nature puts pressure on companies to pay up. “if we don’t make our product in time, that means Toyota doesn’t make their product in time, which means they don’t have a car to sell on the lot that next day. It’s that tight,” says John Peterson, AW North Carolina’s IT manager. The factory was hit with malware last year, with the potential to lose $270,000 in revenue, plus employee wages, for every hour it was out of commission.
Manufacturers: do you carry Cyber Liability / Data Breach insurance? Cyber extortion coverage protects your business against losses caused by ransomware and other types of cyber extortion. Many cyber liability policies cover three types of costs.
Ransomware Victims Have Paid Out More Than $25 Million in Past Two Years
Ransomware victims have paid out more than $25 million in the past two years, according to a new study by Google, Chainalysis, UC San Diego and the NYU Tandon School of Engineering. The study reviewed 34 separate families and discovered that a particularly harmful strain, Locky, received more than $7 million in payments. Ransomware, which infects and locks a system until payment has been received, has become “an almost unavoidable threat” over the past few years. It’s shown to be popular amongst cybercriminals, who often demand payment in the form of bitcoin. Two ransomware attacks made earlier this year by WannaCry and NotPetya had been “deemed destructive in nature,” Forbes writes, but only received $140,000 and $10,000, respectively.
A viable solution to this sort of threat? A good Cyber Liability insurance policy will pay extortion expenses and extortion monies as a direct result of a credible cyber extortion threat. This is only one of the many areas a Cyber Liability insurance policy can help.
Cyber insurance can be essential in helping your company recover after a data breach, with costs that can include business disruption, revenue loss, equipment damages, legal fees, public relations expenses, forensic analysis and costs associated with legally mandated notifications. A lesser-known benefit of cyber insurance is the role it can play in protecting your company long before a breach occurs.
Be Careful of Those ATM Card Skimmers
Are you like me where you get paranoid using public ATM’s and paying for gas with your card at the pump? I am sketched out about ATM / credit card skimmers that scammer’s place on public machines to trace your personal information. I stumbled across this video on Facebook. This is in Europe, but it doesn’t matter, this can happen anywhere. Be vigilant my friends!