One lesson for insurers from the COVID-19 pandemic is that carefully considered wording for potentially massive losses is essential. Cyber risk can lead to such losses.
Here are links to some of the articles we have written on cyber risk to remind you:
Lloyd’s of London requires its insurers to exclude or provide affirmative cover for cyber risks.
Insurers connected to Lloyd’s must make sure they do not have unintended exposure to cyber risk.
From the beginning of 2020 underwriters are required to ensure that their property damage policies specifically affirm or exclude cyber cover. This applies to
Cyber insurers should note the debate going on in London regarding reform of the war exclusion clause in cyber insurance. The perpetrators of cyber incidents are often untraceable and it is difficult to ascertain whether they constitute state-sponsored acts of war subject to the war exclusion clause.
There is at least one pending action where
The cautionary warnings continue for insurers regarding the cyber risks that they underwrite. Although cybersure is seen as one of the major opportunities for the insurance industry, there are a number of risks including the increasing frequency of cyberattacks, the difficulty in pricing for the risks, and the fact that existing policies, including liability and
The Cyber Risk Management (CyRiM) Report 2019 shows that the economic damage to the world from a concerted global cyber-attack propagated by malicious email could range between $85 billion (least severe) to $193 billion (most severe).
Retail at least could suffer the highest total economic loss globally ($15 billion), followed by healthcare ($10 billion) and
A Florida court held that the insurer had no duty to defend a hotel operator’s information technology subsidiary against allegations that it was responsible for a hacking incident that exposed hotel customers’ credit card data because, under the general liability policy, there was no ‘making known to any person or organisation covered material that violates
Where an insurer’s policy covered computer fraud, a Georgia US judge refused to grant the insured an indemnity when the fraud had been committed over the phone.
The insured provides a service that allows customers to load funds onto debit cards issued by third party banks and sold by retailers. The amount on the card
If insurers don’t want to cover cyber liability under a general liability policy they’d better check their wordings and introduce exclusions if necessary.
Whether or not cyber breaches are covered under the “personal and advertising injury” section of commercial general liability policies depends on the circumstances of each case. I discuss two cases which illustrate
One of the main concerns for South African businesses is dealing with cyber threats. While loss or harm caused by cyber incidents is not entirely new, these incidents have become more common in recent years due to the rapid advances in technology and the changes in many business models. By way of an example, machines