Estimated reading time: 3 minutes
Marsh McLennan’s 2025 Insurance Report Highlights Digital Vulnerabilities
In a rapidly digitizing world, businesses are increasingly exposed to evolving cyber threats. Marsh McLennan Agency’s “2025 Business Insurance Trends Report” offers a sobering outlook on this new digital era. Companies that are embracing AI, automation, and interconnected supply chains now face heightened cybersecurity risks from cyberattacks, misinformation, and the misuse of AI. The report warns that while digital tools enhance efficiency, they also expose organizations to deepfake scams, AI-driven fraud, and cyber espionage. Businesses must strike a balance between innovation and security.
Deepfake Scams Reach Multimillion-Dollar Heights
A startling example highlights this risk. In 2024, a finance worker was deceived into wiring $25 million after joining a video call with AI-generated deepfakes of his colleagues, including a fake CFO. This marks a dangerous trend where attackers leverage artificial intelligence to mimic trusted individuals with chilling accuracy.
(Editorial note: In our minds, this is the extreme, a sort of modern Lufthansa Heist or Gardner Museum robbery. Extraordinary crimes. And, as with the deepfake scam, not frequently committed. Time will tell whether digital crimes continue to rise to the extraordinary.)
Get The Cyber Insurance News Upload Delivered
Every Sunday
Subscribe to our newsletter!
However, the scale is here, so be wary of the extraordinary and the more mundane. The FBI reports that from 2013 to 2023, Business Email Compromise (BEC) scams resulted in $55.5 billion in global losses. These scams, often rooted in social engineering, now include vendor impersonation and sophisticated phishing. AI is the new weapon of choice.
AI: Double-Edged Sword for Cybersecurity
Artificial intelligence is revolutionizing the way companies operate. Yet, without proper oversight, it can introduce bias, data privacy violations, and cyber vulnerabilities. Businesses using AI must ensure vendor software is secure and ethically designed.
Analysts predict a 40% boost in productivity by 2035 from AI integration. However, businesses must manage AI’s risks with vigilance—especially in sectors such as finance, manufacturing, and healthcare, which are top targets for cybercriminals.
Nation-State Attacks on the Rise
The Microsoft Digital Defense Report ranks IT, education, and government among the top sectors targeted by nation-state threat actors. These attacks seek intellectual property, financial data, and strategic disruption. Organizations must now assume they are in the crosshairs, regardless of size or location.
Twelve Cybersecurity Must-Haves
Marsh outlines 12 key cybersecurity controls. These include:
- Multifactor authentication
- Email filtering
- Endpoint detection and response
- Incident response planning
- Vendor risk management
Together, these help organizations strengthen their defenses and enhance their insurability. Marsh also recommends sandbox testing for new tech and regular assessments with security partners.
Manufacturing and Healthcare Face Sector-Specific Risks
Manufacturers now question: “What if ransomware halts our operations for 24 hours?” Healthcare leaders ask: “What if patient records go dark for a day?” Such “what-if” planning is now essential.
Healthcare organizations, which handle nearly 18% of the U.S. GDP, are increasingly reliant on digital systems. Cyberattacks disrupting electronic health records or telehealth platforms could have dire consequences.
2025 Forecast: Misinformation, Espionage, and Data Dangers
Looking ahead, the report predicts:
- More AI-driven misinformation and executive impersonation
- Increases in cyber espionage and warfare
- Higher liabilities from AI model misuse
- Biometric data privacy lawsuits
The landscape is complex. However, early awareness and proactive strategies offer businesses a fighting chance.
RELATED COVERAGE
