Jeremy King is a partner at Olshan Frome Wolosky. He wrote an article for Bloomberg where he analyzed cyber risk management issues that companies should prioritize in response to new SEC reporting requirements for cybersecurity incidents and threats. Here is a quick summary and I suggest you send the link to your InfoSec budget holder so that they can assess the importance. Ransomware is a big deal these days.

In today’s threat landscape, it is essential for companies to have a good cybersecurity strategy that is supported by cyber liability insurance. The global average cost of a data breach now reaches $4.45 million, according to IBM data. However, a 2022 survey highlights that only 19% of companies state that their insurance covers more than six hundred thousand dollars.

A short summary on the history of cyber insurance underwriting. What it is, how it got so complicated, and what can be done about it.

Most companies will quickly accept the insurance provider's first offer when negotiating cybersecurity insurance policies. Although a relatively new component of the insurance sector, providers have still been conducting cyber assessments and offers for years and are the so-called expert. ‍ However, this way of thinking costs enterprises thousands, if not millions, of dollars a year in deductibles.

Cyber attacks have grown significantly over the last few years, and their cost to victim organizations marches ceaselessly upward as well. Now many of those victim organizations are learning the hard way that business insurance policies often won’t cover the regulatory fines from security incidents that are considered “preventable.” Hence the need for extra protections from “cyber insurance” to fill any coverage gaps you might have.

The recent rise of ransomware, attacks on supply chains and increasing costliness of privacy regulations has made cyber insurance an important topic of discussion. But it can be tricky to keep up with cyber insurance requirements. One of the most robust ways to meet those requirements is with multi-factor authentication (MFA).

API security is a pressing concern for industries undergoing digital transformation, and none more so than financial services and insurance.

Imagine360 is a Pennsylvania-based company that works with employers to develop custom health plans for their workers. The organization specializes in helping companies save money on insurance while giving better insurance to their employees. The company works with medium and large businesses and handles a large amount of data for its clients. Imagine360 LLC was recently a victim of two different file transfer data breaches, which means that health-related data and personal data have been exposed.

Cybersecurity liability insurance has progressed dramatically since the first bona fide policies emerged in the late 1990s. Some of the greatest changes that have occurred in recent years include insurance companies no longer insuring against state-sponsored attacks or ransomware events. The insurers do not want to become part of a cyber-war.