Ransomware remains a top cyber risk for businesses - Insurance News | InsuranceNewsNet

InsuranceNewsNet — Your Industry. One Source.™

Sign in
  • Subscribe
  • About
  • Advertise
  • Contact
Home Now reading Property and Casualty News
Topics
    • Advisor News
    • Annuity Index
    • Annuity News
    • Companies
    • Earnings
    • Fiduciary
    • From the Field: Expert Insights
    • Health/Employee Benefits
    • Insurance & Financial Fraud
    • INN Magazine
    • Insiders Only
    • Life Insurance News
    • Newswires
    • Property and Casualty
    • Regulation News
    • Sponsored Articles
    • Washington Wire
    • Videos
    • ———
    • About
    • Advertise
    • Contact
    • Editorial Staff
    • Newsletters
  • Exclusives
  • NewsWires
  • Magazine
  • Newsletters
Sign in or register to be an INNsider.
  • AdvisorNews
  • Annuity News
  • Companies
  • Earnings
  • Fiduciary
  • Health/Employee Benefits
  • Insurance & Financial Fraud
  • INN Exclusives
  • INN Magazine
  • Insurtech
  • Life Insurance News
  • Newswires
  • Property and Casualty
  • Regulation News
  • Sponsored Articles
  • Video
  • Washington Wire
  • Life Insurance
  • Annuities
  • Advisor
  • Health/Benefits
  • Property & Casualty
  • Insurtech
  • About
  • Advertise
  • Contact
  • Editorial Staff

Get Social

  • Facebook
  • X
  • LinkedIn
Property and Casualty News
Property and Casualty News RSS Get our newsletter
Order Prints
October 27, 2022 Property and Casualty News
Share
Share
Tweet
Email

Ransomware remains a top cyber risk for businesses

By Press Release

New York – Oct. 26, 2022 - Ransomware remains a top cyber risk for organizations globally while business email compromise incidents are on the rise and will increase further in the "deep fake" era. At the same time, the war in Ukraine and wider geopolitical tensions are a major concern as hostilities could spill over into cyber space and cause targeted attacks against companies, infrastructure or supply chains, according to a new report from Allianz Global Corporate & Specialty (AGCS).

The insurer’s annual review of the cyber risk landscape also highlights the emerging threats posed by the growing reliance on cloud services, an evolving third-party liability landscape that means higher compensation and penalties, as well as the impact of a shortage of cyber security professionals. Such potential vulnerabilities mean that today a company’s cyber security resilience is scrutinized by more parties than ever before, including global investors, meaning many firms now rank it as their major environmental, social, and governance (ESG) risk concern, the report notes.

“The cyber risk landscape doesn’t allow for any resting on laurels. Ransomware and phishing scams are as active as ever and on top of that there is the prospect of a hybrid cyber war,” says Scott Sayce, Global Head of Cyber at AGCS and Group Head of the Cyber Centre of Competence. “Most companies will not be able to evade a cyber threat. However, it is clear that organizations with good cyber maturity are better equipped to deal with incidents. Even when they are attacked, losses are typically less severe due to established identification and response mechanisms.

“Although we see good progress, our experience also shows that many companies still need to strengthen their cyber controls, particularly around IT security trainings, better network segmentation for critical environments and cyber incident response plans and security governance. As a cyber insurer we are willing to go beyond pure risk transfer, helping clients to adapt to a changing risk landscape and raising their protection levels.”

Around the world, the frequency of ransomware attacks remains high, as do related claims costs. There was a record 623 million attacks in 2021, double that of 2020.  Although frequency reduced by 23% globally during the first half of 2022, the year-to-date total still exceeds that of the full years of 2017, 2018 and 2019, while Europe saw attacks surge over this period. Ransomware is forecast to cause $30bn in damages to organizations globally by 2023. From an AGCS perspective, the value of ransomware claims the company was involved in together with other insurers, accounted for well over 50% of all cyber claims costs during 2020 and 2021.

Double and triple extortion now the norm

“The cost of ransomware attacks has increased as criminals have targeted larger companies, critical infrastructure and supply chains.  Criminals have honed their tactics to extort more money,” Sayce explains. “Double and triple extortion attacks are now the norm – besides the encryption of systems, sensitive data is increasingly stolen and used as a leverage for extortion demands to business partners, suppliers or customers.” Ransomware severity is likely to remain a key threat for businesses, fueled by the growing sophistication of gangs and rising inflation, which is reflected in the increased cost of IT and cyber security specialists.

Increasingly, smaller and mid-sized  companies which often lack controls and resources to invest in cyber security are being targeted by gangs as larger businesses invest more heavily in security. Gangs are also using a wide range of harassment techniques, are tailoring their ransom demands to specific companies and are using expert negotiators to maximize returns.

Sophisticated scams

Business email compromise (BEC) attacks continue to rise, facilitated by growing digitalization and availability of data, the shift to remote working and, increasingly, ‘deep fake’ technology and virtual conferencing. BEC scams totalled $43bn globally from 2016 to 2021 according to the FBI, with a 65% spike in scams between July 2019 and December 2021 alone. Attacks are becoming more sophisticated and targeted with criminals now using virtual meeting platforms to trick employees to transfer funds or share sensitive information. Increasingly, these attacks are enabled by artificial intelligence enabling ‘deep fake ‘audio or videos that mimic senior executives. Last year, a bank employee from the United Arab Emirates made a $35mn transfer after being misled by the cloned voice of a company director.

The threat of cyber war

The war in Ukraine and wider geopolitical tensions are a major factor reshaping the cyber threat landscape as it increases the risk of espionage, sabotage and destructive cyber-attacks against companies with ties to Russia and Ukraine, as well as allies and those in neighboring countries. State-sponsored cyber acts could potentially target critical infrastructure, supply chains or corporations. “As yet the war between Russia and Ukraine has not led to a notable uptick in cyber insurance claims, however it does point to a potentially increased risk from nation-states,” Sayce explains. Although acts of war are typically excluded from traditional insurance products, the risk of a hybrid cyber war has accelerated efforts in the insurance market to address the issue of war and state-sponsored cyber attacks in wordings and provide clarity of cover for customers.

AGCS experts identify a number of other trends in the Cyber: The changing threat landscape report including:

  • Hackers zero in on vulnerable supply chains: Supply chain attacks – whether on critical infrastructure such as the Colonial Pipeline or on cloud services  – have emerged as a significant risk. Increasingly, ransomware gangs use the threat of disruption to pressure firms into paying ransoms, with manufacturing companies particularly vulnerable.
  • Cloud outsourcing: Companies continue to shift their services and data storage on to the cloud, despite growing concerns around security and risk aggregation. By relying on a small number of providers for cloud services or cyber security, society is creating large concentrations around a few single points of failure. It is a common misconception that the outsourcing or cloud vendor will assume full responsibility in the event of an incident.
  • Third-party liability, including fines and penalties, is becoming more relevant with advances in technology, organizations collecting more information and enforced data privacy regulation. Almost any cyber incident – including double-extortion ransomware –   can lead to litigation and demands for compensation from affected parties. 
  • A shortage of professionals is hindering efforts to improve cyber security. While there is growing awareness among boards, the number of unfilled cyber security jobs worldwide has grown 350% over the past eight years to 3.5 million, estimates show, meaning many companies struggle to hire, impacting their ability to improve their cyber security posture.
  • Cyber security increasingly seen through the ESG lens. Today, companies’ cyber security resilience is scrutinized by far more stakeholder groups than in the past. Increasingly, cyber security considerations are incorporated into the ESG risk-analysis frameworks of data providers, who look into companies’ practices to evaluate their preparedness for cyber crime. Making sure a company’s cyber processes and policies are understood at the board level and that risk monitoring processes are in place has never been more important.

In response to a more complex risk environment and increasing cyber claims activity, the insurance industry is more diligently assessing companies’ cyber risk profiles in a bid to incentivize companies to improve their security and risk management controls.

“The good news is that we are now seeing a very different conversation on the quality of cyber risk than a few years ago,” says Sayce. “We are gaining much better insights and appreciate clients going the extra mile in order to provide comprehensive data to us. This also helps us to provide more value and offer useful information and advice to customers, such as which controls are most effective or where to further improve risk management and response approaches. The net result should be fewer – or less significant – cyber events for our customers and fewer claims for us. Such collaboration will also help in creating a long-term sustainable cyber insurance market which not only relies on traditional coverages but, increasingly, on integrating cyber risks into captive programs and other alternative risk transfer concepts.”

 

Press Release

Older

Annual family premiums for employer coverage average $22,463 this year

Newer

Improvements, drug pricing changes precede Medicare open enrollment

Advisor News

  • A blind spot for younger Americans: Prioritizing investing over insurance
  • No Taxes For Guys Named Joe: Trump’s Overtime Tax Exemption – OpEd
  • Thrivent to add nearly 600 advisors by year-end
  • Guardian report finds Americans’ financial health at a 14-year low
  • Retirement confidence and ‘the great decide’
More Advisor News

Annuity News

  • Jeffrey Cutter files appeal from guilty verdict on Advisors Act disclosures
  • Connecticut regulators court potential buyers for PHL Variable blocks
  • Guardian report finds Americans’ financial health at a 14-year low
  • MetLife Names Jane Slusark as Chief Communications Officer
  • Workers want employers to offer lifetime income in 401(k) plans
More Annuity News

Health/Employee Benefits News

  • Illinois Medicaid covers gender-affirming care. The massive House bill aims to end that.
  • Study Findings from University of Texas Dallas Broaden Understanding of Health Informatics (A Blockchain-based Health Insurance Model Enhanced With Quadratic Voting): Information Technology – Health Informatics
  • Massachusetts General Hospital Reports Findings in Cancer (Assessing the effect of virtual navigation interventions to improve health insurance literacy and decrease financial burden in cancer survivors: The HINT II study protocol): Cancer
  • Taunton man sentenced for bilking insurance companies out of more than $1 million
  • Millions at Risk: Komen Speaks Out Against House Reconciliation Bill
More Health/Employee Benefits News

Life Insurance News

  • AM Best Affirms Credit Ratings of Symetra Financial Corporation and Its Subsidiaries
  • Thrivent to add nearly 600 advisors by year-end
  • Granville man at center of triple homicide now named in life insurance legal issue
  • Prudential shareholders ask court to OK $10M derivative suit settlement
  • Scam centers on bogus life insurance claims
More Life Insurance News

- Presented By -

Top Read Stories

  • UnitedHealthcare eliminating commissions on Medicare drug plans
  • UnitedHealth asks shareholders to support CEO’s $60M stock options
  • SEC needs to show its hand on disclosures after Cutter verdict, analysts say
  • XRP Price To Soar After Futures Debut With CME Group Shows Rising Institutional Demand
  • Retirement confidence and ‘the great decide’
More Top Read Stories >

NEWS INSIDE

  • Companies
  • Earnings
  • Economic News
  • INN Magazine
  • Insurtech News
  • Newswires Feed
  • Regulation News
  • Washington Wire
  • Videos

FEATURED OFFERS

Increase sales up to 30% with INN Academy
Master sales strategies from industry legends. Flexible learning, immediate results. Don't miss out—save up to 50% on enrollment today!

Press Releases

  • WealthFeed Partners with Wells Advantage Group to Empower Agents with Next-Level Prospecting and Insurance Solutions
  • Wichita National Life Implements Hexure’s FireLight to Power Annuity Sales and Market Expansion
  • RFP #T01325
  • RFP #T01825
  • Industry Vets Launch AI Powered Premium Finance & Agency Bill Fintech
More Press Releases > Add Your Press Release >

How to Write For InsuranceNewsNet

Find out how you can submit content for publishing on our website.
View Guidelines

Topics

  • Advisor News
  • Annuity Index
  • Annuity News
  • Companies
  • Earnings
  • Fiduciary
  • From the Field: Expert Insights
  • Health/Employee Benefits
  • Insurance & Financial Fraud
  • INN Magazine
  • Insiders Only
  • Life Insurance News
  • Newswires
  • Property and Casualty
  • Regulation News
  • Sponsored Articles
  • Washington Wire
  • Videos
  • ———
  • About
  • Advertise
  • Contact
  • Editorial Staff
  • Newsletters

Top Sections

  • AdvisorNews
  • Annuity News
  • Health/Employee Benefits News
  • InsuranceNewsNet Magazine
  • Life Insurance News
  • Property and Casualty News
  • Washington Wire

Our Company

  • About
  • Advertise
  • Contact
  • Meet our Editorial Staff
  • Magazine Subscription
  • Write for INN

Sign up for our FREE e-Newsletter!

Get breaking news, exclusive stories, and money- making insights straight into your inbox.

select Newsletter Options
Facebook Linkedin Twitter
© 2025 InsuranceNewsNet.com, Inc. All rights reserved.
  • Terms & Conditions
  • Privacy Policy
  • InsuranceNewsNet Magazine

Sign in with your Insider Pro Account

Not registered? Become an Insider Pro.
Insurance News | InsuranceNewsNet