Security news aggregator

Latest coverage for Insurance

Insurance shapes how cyber risk is priced, transferred, and investigated, influencing breach costs, security incentives, and liability.

3 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Cyber insurance transfers some financial risk from security incidents to an insurer under a contract. Policies may cover first-party costs such as forensic investigation, system restoration, notification, and interruption of the insured’s business, as well as third-party privacy or security claims. Coverage depends on limits, deductibles, exclusions, and the policy’s definitions; regulatory penalties and ransom payments, for example, may be restricted or unavailable in some jurisdictions.

For security practitioners, insurance makes evidence of controls an operational and legal concern. Underwriting and claims may examine multifactor authentication, protected backups, logging, vulnerability remediation, access control, and tested incident-response plans. Inaccurate application answers or failure to meet policy conditions can reduce or invalidate recovery. During a claim, organizations may also share sensitive personal, technical, and investigative information with insurers, brokers, lawyers, and responders, requiring careful privacy, confidentiality, and evidence-handling practices.

Showing 3 most recent headlines Filtered view
Bank Info Security 1 year, 10 months ago

Moody's Ratings: Cyber Insurance Competition Up, Prices Down

Credit Rating Business Says Cyber Insurance Market 'Poised for Significant Growth'Competition has been increasing in the cyber insurance market, leading to a "moderate" decrease in insurance premiums after several years of rate increases. So reports Moody's Ratings, which said that the changes were driven by an influx of new players that is likely to continue.

Bank Info Security 1 year, 10 months ago

Banks Brace for DORA Cybersecurity Deadline on Jan. 17

New EU Rules Focus on Operational Resilience, Breach Reporting and Third-Party RiskThe Digital Operational Resilience Act aims to reshape the financial services industry by introducing strict cybersecurity standards. Financial institutions must comply with the new rules by Jan. 17, 2025, or face severe penalties, said Richard Breavington, head of cyber and tech insurance at RPC.