MS Exchange attacks could lead to thousands of insurance claims

Insurers are being warned of the potential for a large volume of claims following recent cyber attacks on Microsoft’s email servers.

Tens of thousands of Microsoft Exchange servers in businesses and organisations around the world could have been infected during a series of concerted attacks since the beginning of this year.

Cyber analytics specialist, CyberCube, believes companies in North America to be at greater risk than those in Europe, but large to medium sized businesses globally are all vulnerable. It says that the insurance and reinsurance industries are “likely to see a long-tail of attritional claims resulting from this attack”.

William Altman, cyber security consultant at the firm, said: “The insurance industry is only just beginning to understand the scope of possible damage. It is too early to calculate potential losses from the theft of a corporation’s intellectual property. These kinds of data breaches could have delayed - but long-lasting - impacts on commercial competitiveness.

“An accumulation of loss could result in multiple – theoretically, tens of thousands – of companies making insurance claims to cover investigation, legal, business interruption and possible regulatory fines. There is still the ongoing possibility that even more attackers will launch ransomware or other types of destructive cyber attacks.”

Researchers believe that 10 different “advanced persistent threat actors” globally are now actively exploiting the code used in this attack in a variety of ways. Microsoft has provided patches for the vulnerabilities, but attackers seem to have stepped up their efforts to identify unpatched servers.

    Share Story:

Recent Stories


Cyber physical risks
Property damage as a consequence of cyber attack is often excluded from standard property policies, but as the industrial internet of things expands, so too do the risks. This podcast examines the evolving threat landscape. Published October 2021

Financial institutions were early adopters of cyber security and insurance. Are they still on top of the game?
Managing huge amounts of sensitive data online makes financial institutions a prime target for hackers. As such, the sector was an early cohort for insurers in creating cyber cover. Since then, the market has evolved almost beyond recognition. It continues to challenge itself to this day, complying with rigorous regulatory demands and implementing avant-garde enhancements to keep abreast of the ever-changing risks. Published June 2021

Advertisement