The Source for Cyber Insurance News, Insights and Data
We recently told you how a cyber insurance settlement of $30 million boosted Q1-2025 results for Sonic Automative, which was hit by the ransomware attack last year on CDK Global, provider of software for auto dealerships. Now two more of America’s largest auto dealers have made public filings touching on the hack and their actual … Read more
“Quishing (QR Code Phishing) (is a) rapidly growing attack vector, increasing from 0.8% of phishing attempts in 2022 to 12.4% in 2024,” reports Intersys, a UK company that provides cyber risk management services to the insurance sector. Other cyber experts are sounding the same alarm, plus warning of “brushing,” another scam increasingly linked in quishing. The quishing … Read more
We’ve reported extensively on the SEC cyber disclosure rule that requires public companies to submit 8-K filings when they’re hit with cyber attacks. For some reason, the rule has attracted criticism from several media outlets in recent days. Earlier this week Bloomberg Law provided a critical review (under paywall) of how companies have responded to … Read more
A recent CyberArk study found that 30% of employees share workplace passwords, creating an MFA security gap. The study surveyed 14,003 employees across six countries and revealed that 49% reuse passwords across multiple work applications, creating additional vulnerabilities. Findings like these are not new, and they highlight the ongoing risks businesses face. Risks that are … Read more
A new report from SecurityScorecard reveals some interesting details about third-party cyber risks in insurance. Among them, 59% of insurance industry breaches stem from third-party attack vectors. These findings underscore vulnerabilities in the supply chain that expose critical policyholder data to cyber threats. The study analyzed 150 top insurance firms, revealing an industry struggling with … Read more