3 Changes to Cyber Insurance in 2021

3 Changes to Cyber Insurance in 2021
Published Oct 05, 2021

Cybersecurity Insurance in 2021 has been harder and considerably more expensive to get than in years prior.

There have been three significant changes to cyber-attack insurance in 2021:

  1. Premiums are higher than ever.
  2. It’s more difficult for companies to be insured.
  3. National governments are advising against paying certain ransoms under the threat of punishment.

>>Find out if you are at risk for cyberattacks.

Ransomware Insurance premiums are higher than ever

There has been a 500% increase in cyber claims in 2021 compared to 2020. In response, carriers have increased their premiums by about 75%, but some have increased it by 1000%.

$1M of coverage was about $2500/year pre-2021. In 2021, it’s risen to $3500 or more.

Threat actors are demanding more and more in ransom over the years. They’re now requesting multimillion-dollar amounts where previously they were only asking for tens of thousands of dollars.

Why are threat actors asking for more? Because they’ve asked for ransoms before and they’ve got it. They realize that people are paying, so they just keep pushing up the price to see what they can get.

Because of the increase in frequency and the increase in cost, cyber insurance companies are bleeding. They have raised premiums and are making it more difficult for companies to be insured than ever before.

So naturally, the cost of cyber attack insurance is rising.

The ability to be get cyber liability insurance is more difficult than ever

Insurers have also tightened the requirements for insurance. If certain precautionary steps are not taken and maintained, an insurance company can refuse to pay out the terms of the claim. Or they may ask the policyholder to front the ransom, requiring a small- or medium-sized company to potentially have a million and some change available to pay the hackers before the insurance company reimburses them.

To help pick the best cyber insurance policy for your company and uphold the terms of your insurance, it’s important to have a competent IT department. They can also help protect your company from cyber-attacks. But even the best IT department cannot guarantee you will never be hacked; so cyber insurance is a must.

Security controls needed to be insurable are minimally using Multi-Factor Authentication (MFA) for email and remote access, but the requirements have been increasing greatly and different per carrier. Additional requirements include advanced protection against your email domain from being spoofed, intrusion detection systems, AV, backups, disaster recovery, 3rd party audits, penetration testing, encryption of critical data.

>>Read how to tell if your email was hacked.

Paying ransom to hackers could be illegal

It doesn’t seem like it should be legal to pay threat actors online, and the topic has been much discussed recently as ransom prices go up and cybercriminal groups or state-sponsored hackers get bolder.

In October 2020, the U.S. The Treasury Department’s Office of Foreign Assets Control (OFAC) warned against making ransomware payments to a list of cybercriminal groups or state-sponsored hackers. If a privately-own company is found to have violated international sanctions, a company could be paying twice: once to the hacker and again to the rule of law.

This recent restriction on ransom payments potentially puts attacked companies at a disadvantage and reroutes their path to repair and recovery.

Having cyber insurance gets a company quick access to a knowledgeable legal team who will best know how to navigate such potential pitfalls.

>>Read more about cyber security insurance here.

For full service, IT support, contact XL.net today

IT services can help reduce your risk by up to 80%.

Small- to medium-sized businesses often make the mistake of thinking they are too small to be hacked, but that’s simply not true. They are frequently targeted and often have much more risk than big companies since the effects of a security breach tend to be more damaging. Plus, outside hackers aren’t the only threat to a business — human error is another big concern.

As a trusted cybersecurity services company in Chicago, XL.net can help with all of these issues and more. We provide comprehensive cybersecurity solutions to SMBs as part of our managed IT and technology alignment services.

Contact us today to get started assessing your cyber security.

You may also like

Oct 19, 2020

We were published on Forbes.com!!

Thank you to the wonderful editors and proofreaders at Forbes.com for launching our article Four Tec...

May 21, 2020

Chicago IT Support and Outsourcing Selection Guide

Your business has decided it's time to change your Information IT support / Information Technology d...

Sep 09, 2019

Why XL.net Exists

Dear Small businesses, the people within them and XLnetters, I have struggled since early 2009, b...

May 31, 2022

How Much Do Managed IT Services Cost for My Business?

Information technology has become an essential element in helping businesses grow and thrive. As the...

May 27, 2022

Thinking About Managed Outsourcing Services?

Information technology continues to transform the business landscape across all industries. Unfortun...

May 11, 2022

What is a Virtual CIO (vCIO)?

A vCIO, or virtual CIO, is an outside person or company that serves as an organization's chief infor...