Fraud Is Dominating Cyber Insurance Claims

Uploaded on 2025-04-22 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial

Ransomware continues to be the most costly cyber insurance claims in 2024, however incidents of financial fraud continue to be far more numerous, with both often triggered by security failures at a third-party firm. This comes from the recent batches of cyber-insurance data released recently by cyber insurance firm At-Bay

Financial fraud is the second most common type of cyber attack leading to an insurance claim, but is certainly the most costly, according to At-Bay's 2025 InsurSec Report. 

While the cyber insurer saw 16% more claims in 2024 than the year before, the overall cost of each incident declined to $166,000, down from $213,000 in 2021. The 2025 data sheds light on the most significant cyber threats faced by companies, where specialist cyber insurance firms are a reliable source of data on the true cost of security incidents.

Technology choices directly impact cyber risk, with poor decisions by companies significantly increasing the likelihood of an attack, while properly implemented security controls demonstrably reduce losses,. Furthermore, exposure to the vulnerability of third parties in the corporate supply chain  has become an increasing weakness for many companies. While direct ransomware continued to have a larger effect, to the tune of $468,000 per incident on average, the impact of indirect ransomware has climbed quickly.

Damages due to ransomware attacks targeting a third party, and not the policyholder, resulted in an average claim per incident of $241,000, an increase of 72% since 2023. 

The manufacturing sector experienced almost double the ransomware claim frequency compared to the overall average, a disparity attributable to security technology selection and security culture rather than any single event. Unlike heavily regulated industries such as health care or financial services, manufacturers typically lack industry-level cyber security regulations and often adopt security controls primarily to obtain cyber insurance rather than as part of a holistic risk management approach, according to the report.

The most damaging incidents of 2024, were in the US Healthcare sector, along with the self-inflicted outage at cyber security firm CrowdStrike, caused disruption in many of their client companies' ability conduct business.

The data heavily suggests that certain strategies can pay off in managing risk. Perhaps the biggest advantage for companies is to have an endpoint detection and response (EDR) system in place and a team of security experts monitoring the system and responding to incidents.

At-Bay   |    Dark Reading   |    Risk Insurance   |   Bank Director  |   Digiatl Terminal

Image: Ideogram

You Might Also Read:

How Companies Can Manage Third-Party Vendor Risk:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« For Sale: Cheap DIY Cyber Crime Kits
Hackers Claim They Are Selling FortiGate Firewall Access »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Cloud Security Alliance (CSA)

Cloud Security Alliance (CSA)

The CSA is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing

Firebrand

Firebrand

Firebrand is the leader in Accelerated Learning in the field of IT and project management.

Hewlett Packard Enterprise (HPE)

Hewlett Packard Enterprise (HPE)

HPE is an information technology company focused on Enterprise networking, Services and Support.

SiteGuarding

SiteGuarding

SiteGuarding provide website security tools and services to protect your website against malware and hacker exploits.

MixMode

MixMode

MixMode's PacketSled platform delivers network monitoring, deep forensic analysis and incident response.

Claranet

Claranet

Claranet are experts in modernising and running critical applications and infrastructure through end-to-end professional services, managed services and training.

Excelsecu Data Technology

Excelsecu Data Technology

Excelsecu is a global solution provider of online identity authentication, widely applied in banks, government bodies and enterprises.

Council to Secure the Digital Economy (CSDE)

Council to Secure the Digital Economy (CSDE)

CSDE brings together companies from across the ICT sector to combat increasingly sophisticated and emerging cyber threats through collaborative actions.

Global EPIC

Global EPIC

Global EPIC is an international cybersecurity initiative designed to combat growing world challenges by facilitating global collaboration in the field of cyber security.

SOFTwarfare

SOFTwarfare

SOFTwarfare deliver high-quality, reliable and secure enterprise application integrations through RESTful APIs for Cyber, Ops & Dev.

Secfix

Secfix

Secfix helps companies get secure and compliant in weeks instead of months. We are on a mission to automate security and compliance for small and medium-sized businesses.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.

Xact IT Solutions

Xact IT Solutions

Xact IT Solutions are a certified cybersecurity firm offering cybersecurity, compliance and managed services.

Semgrep

Semgrep

Semgrep is a fast, open-source, static analysis tool for profoundly improving software security and reliability.

WBM Technologies

WBM Technologies

WBM Technologies is a Western Canadian leader in the provision of outcomes-driven information technology solutions.

Inroad Technologies

Inroad Technologies

Inroad Technologies provide IT services that help keep your business computers, servers and networks secure and trouble-free.