SolarWinds could have ‘chilling effect’ on cyber insurance

Is this massive cyberattack ushering in a new era of hackers increasing their focus on supply chain vulnerabilities?

“Ultimately cyber insurance is going to demand a level of underwriting precision that is probably higher than any other form of insurance because of the nature of risk,” Seth Rachlin, of Capgemini, said.

The overall damage dealt by the SolarWinds incident is still be determined, but the event could send shockwaves through the cyber insurance market, as it highlights the massive exposures this sector must contend with as hackers revamp their approaches.

Brian Krebs, a well-known security and cybercrimes journalist, noted the SolarWinds incident might have exposed as many as 18,000 customers after installing what they thought were routine software updates. However, hackers injected malware into the update. This gave the malicious actors, who are believed to be Russian-backed, undetected and unfettered access to high-value data.

“SolarWinds will have a chilling effect on the market,” Seth Rachlin, executive vice president and insurance lead at Capgemini, told PropertyCasualty360.com. “The most interesting aspect is that it is a supply chain attack.”

He explained typical cyberattacks in the past used methods such as phishing to gain access. These were attacks on a single organization. With a supply chain attack, the vehicle of entry is something used by many companies, such as SolarWinds’ security automation software. This results in cataclysmic events involving hundreds or, in the case of SolarWinds, thousands of companies simultaneously.

“From a market perspective, insurance companies tend to not like things like this,” Rachlin said. “This could become a sort of model event, if you will, for attackers going forward.”

While bigger payouts could be part of the reason hackers start deploying this strategy, he told PC360 it is more about other forms of malicious actions.

“Russians aren’t concerned with the payday; they want access and disruption,” Rachlin said. “As it moves to more state-based actors, some of the ransomware activity will really be a form of disruption. I’m not convinced it is so much about money as it is about power and economic influence.”

Is SolarWinds a cybercrime stalking horse?

Given the SolarWinds breach went undetected for months, there is a possibility a similarly scaled malicious endeavor is currently being run.

“There is always a chance, particularly given that a lot of the objectives of certain breach events is to steal secrets and data,” Rachlin explained. “The hackers are getting pretty crafty at doing this in an unobtrusive way. More and more, the time between the actual event and awareness of it seems to be growing.”

For some carriers, this has been a wake-up call to how pervasive cyberattacks can be.

To stay ahead of these developments, Rachlin said insurers need to consider the evolution of cyber insurance products to include more risk management and “protection type” features as opposed to strictly focusing on risk transfer.

“Ultimately, cyber insurance is going to demand a level of underwriting precision that is probably higher than any other form of insurance because of the nature of these risks,” he said.

Additionally, the industry should look at working with government agencies on something similar to the Terrorism Risk Insurance Program that would trigger protection mechanisms following catastrophic cyber losses. This, Rachlin explained, would bring stability to the market.

Leave a Reply Cancel reply

Risk Management

Mitigating Financial Losses During Hurricane Season: A Skyscraper Insurance Guide

As hurricane season approaches, businesses must take proactive steps to safeguard against financial losses. At Skyscraper Insurance, we understand the unique challenges companies face in times of disaster, and we’re committed to helping our clients navigate them successfully. Here’s how your business can mitigate financial risks with the right strategies and support. 1. Diversifying Income Streams for Resilience A diversified revenue model is crucial to withstanding the disruptions caused by hurricanes. Skyscraper Insurance works with businesses to evaluate new opportunities—whether it’s launching an online platform, expanding services, or entering new markets. This ensures that if one revenue stream is impacted, others can sustain the business. 2. Comprehensive Insurance Coverage The first line of defense is making sure your insurance policies are up to date and cover potential hurricane-related damages. Skyscraper Insurance specializes in providing tailored insurance solutions, including business interruption coverage, property damage, and flood insurance, to protect our clients against catastrophic financial losses. 3. Creating a Contingency Plan with Experts In partnership with Skyscraper Insurance, businesses can develop disaster contingency plans that ensure operations continue smoothly, even in the face of supply chain delays or power outages. We help you establish backup solutions, such as alternate suppliers or inventory management systems, minimizing financial fallout. 4. Maintaining a Recovery Fund Skyscraper Insurance advises its clients to maintain a recovery fund, ensuring fast access to resources for repairs, inventory restocking, and other unforeseen costs. This proactive approach enables businesses to get back on their feet quickly without waiting for loans or insurance claims to process. 5. Leveraging Government Aid and Local Resources In the aftermath of a hurricane, government aid can be crucial for businesses. We assist our clients in navigating grants, low-interest loans, and tax breaks available through local and federal disaster relief programs, ensuring that financial recovery is swift. 6. Risk Management Strategies At Skyscraper Insurance, we provide businesses with customized risk management strategies designed to reduce vulnerabilities and protect financial stability. From evaluating potential hazards to implementing risk-transfer solutions, we help you mitigate loss before a disaster strikes. 7. Ensuring Proper Documentation for Claims Keeping detailed financial records is essential for filing accurate and timely insurance claims. We help clients organize and maintain critical documents that streamline the claims process, ensuring a quicker recovery period. Skyscraper Insurance: Your Partner in Resilience While hurricanes can be unpredictable, your business doesn’t have to face them alone. At Skyscraper Insurance, our commitment goes beyond coverage; we provide expert guidance and comprehensive risk management services that empower businesses to stay strong and resilient during hurricane season.

Safety Tips

How Natural Disasters Impact Supply Chains: Lessons from Hurricanes

Natural disasters like hurricanes wreak havoc on supply chains, causing major disruptions that can affect business operations for weeks or even months. For businesses, it’s critical to understand how these disruptions occur and to take steps to mitigate them. At Skyscraper Insurance, we help our clients navigate these challenges with smart risk management strategies that protect their bottom line. Here’s how hurricanes impact supply chains and what businesses can do to prepare. The Impact of Hurricanes on Supply Chains Hurricanes affect supply chains in several key ways: Minimizing the Impact: Strategies for Business Resilience While hurricanes are unpredictable, businesses can minimize their impact on supply chains through proactive planning: Inventory and Distribution Strategies Hurricanes often lead to localized supply shortages in the regions directly affected, but businesses that rely on global supply chains must also be wary of broader impacts. Global markets can feel the ripple effects as businesses look for alternative suppliers or routes, which might drive up costs and delay deliveries. Supporting Employees and Customers Beyond the logistical impact, hurricanes also bring safety risks to employees and customers. Ensure that safety plans are in place, including clear evacuation procedures and communication strategies. For employees working in distribution or warehouses, it’s essential to prioritize their well-being by closing operations in unsafe conditions and providing post-storm recovery support. Final Thoughts Supply chains are the backbone of many businesses, but they are also vulnerable to the unpredictable forces of nature. By diversifying suppliers, investing in technology, and planning ahead, businesses can minimize the disruption caused by hurricanes and other natural disasters. At Skyscraper Insurance, we’re here to help our clients protect their supply chains and navigate the challenges posed by these extreme events.

SolarWinds could have ‘chilling effect’ on cyber insurance