Struggle as Cyberattack recovery costs exceed insurance coverage

 

Cyberattack recovery costs have outpaced insurance coverage according to a new report by online security solutions provider Sophos.

The survey titled “Cyber Insurance and Cyber Defenses 2024: Lessons from IT and Cybersecurity Leaders,” shows that recovery costs from cyberattacks are outpacing insurance coverage with only one percent of those that made a claim saying that their carrier funded 100 percent of the costs incurred.

The most common reason for the policy not paying for the costs in full was because the total bill exceeded the policy limit.

According to The State of Ransomware 2024 survey, recovery costs following a ransomware incident increased by 50 percent over the last year, reaching $2.73 million (Sh353million) on average.

In the latest findings 97 per cent of those with cyber insurance improved their defenses to qualify for coverage, with 76 per cent saying it helped them get coverage, 67 per cent got better pricing, and 30 per cent secured improved policy terms.

The survey also revealed that recovery costs from cyberattacks are surpassing insurance coverage.

Only 1 per cent of claimants said their insurance covered all costs, with most facing bills that exceeded their policy limits.

Chester Wisniewski, Sophos’ Global Field CTO, noted that many cyber incidents result from not following basic cybersecurity practices, like timely patching.

“The Sophos Active Adversary report has repeatedly shown that many of the cyber incidents companies face are the result of a failure to implement basic cybersecurity best practices, such as patching in a timely manner.”

“In our most recent report, for example, compromised credentials were the number one root cause of attacks, yet 43 per cent of companies didn’t have multi-factor authentication enabled,” said Chester Wisniewski, director, global Field CTO.

Wisniewski emphasized that while cyber insurance encourages better security practices, it is just one part of a risk mitigation strategy.

Among 5,000 surveyed IT and cybersecurity leaders, 99 per cent of companies that improved their defenses for insurance purposes also reported broader security benefits, such as improved protection and fewer alerts.

Wisniewski added that investments in cyber defenses can lead to insurance savings, which can further enhance security.

He notes that as more companies adopt cyber insurance, their overall security will improve, even though insurance alone won’t eliminate ransomware attacks.

The survey included responses from 5,000 IT and cybersecurity leaders in 14 countries, covering organizations with 100 to 5,000 employees and revenues ranging from under $10 million to over $5 billion.

Leave a Reply

Your email address will not be published. Required fields are marked *

Next Post

Global Workers Increasingly Trust AI with Work Tasks, Study Reveals

Fri Jun 28 , 2024
Share on Facebook Tweet it Share on Reddit Pin it Share it Email Workers are increasingly relying on AI, with a recent study showing that they trust AI to handle about 43 per cent of their work tasks. This marks a notable shift towards delegating tasks to AI. Interestingly, leaders […]

You May Also Like

Chief Editor

Jacktone Lawi

Meet Jacktone Lawi, a seasoned technology journalist with years of experience in the industry. I have developed my passion for technology during my formative years, which has been instrumental in shaping my career trajectory. My expertise lies in reporting on emerging technologies and their impact on businesses and consumers worldwide. Through my experience I’m well-versed in covering topics such as artificial intelligence, blockchain, cybersecurity, cloud computing, and digital transformation, among others. Throughout my career, I have has demonstrated an exceptional ability to distill complex technical information into accessible and engaging content that resonates with my readers. My writing style is clear, concise, and informative, allowing me to communicate even the most technical concepts to a broad audience. Beyond my writing skills, I have also become known for extensive network of industry contacts and ability to secure exclusive interviews with high-profile figures in the technology world. These connections have enabled me to gain unique insights into the latest trends and developments in the field, giving me a competitive edge in my reporting. In addition to my work as a journalist, I’m also actively engaged in the broader technology community. Where I regularly attend conferences and events, share insights and stays up-to-date on the latest innovations in the industry. Overall, my wealth of experience as a technology journalist have given me a deep understanding of the industry and its impact on society.

Quick Links