The Source for Cyber Insurance News, Insights and Data
The Cybersecurity and Infrastructure Security Agency (CISA) release announces a new partnership with Stanford’s Empirical Security Research Group and focuses on analyzing the effectiveness of security controls, with a focus on ransomware. The effort begins in December. “CISA will ask working group members to collaborate with Stanford to improve analysis of the aggregated, anonymized loss … Read more
We’ve reported extensively on the insurance industry’s fear of “cyber war;” debate over exclusions for state-backed, systemic cyber attacks; moves by governments to backstop the cyber insurance industry for massive attacks; and the challenges of current modeling of risk accumulation and catastrophic cyber events. Now comes a contrarian view from a leading cyber risk risk … Read more
We’ve reported extensively on the challenges of the cyber insurance industry in modeling systemic risk and the related accumulation risk (insurance risk of multiple, unanticipated claims from the same or related events, such as a large cyber attack.) InsuranceERM, a provider of news and information on insurance and risk, suggests the industry is using a … Read more
“Cyber Risk Accumulation: Fully Tackling the Insurability Challenge’” is a useful new report from The Geneva Association (GA), “a global association of insurance and reinsurance CEOs and think tank for the insurance industry.” See information on the report here. We found a number of the report’s findings valuable, including the role and recent history of … Read more
The Securities and Exchange Commission (SEC) has sued SolarWinds Corporation, the software company, and its chief information security officer, Timothy G. Brown, for fraud and internal control failures in relation to the company’s major hack in 2020, reportedly conducted by Russian intelligence. “The complaint seeks permanent injunctive relief, disgorgement with prejudgment interest, civil penalties, and an … Read more