Cyber risk remains a persistent threat to organizations with no appreciable change in incidence, but a new sophistication in threat actors’ approach is emerging, according to data released by Beazley today in a new report.
The inaugural Beazley Cyber Services Snapshot presents a deep dive into the growing issue of data exfiltration, exploring the myriad ways that extortion is evolving and becoming more intricate – and how organizations should respond to the associated risks. As explained in the report, threat actors are finding new ways to do business, resulting in double- and even triple-extortion, and as extortion techniques become increasingly complex, so do the risk exposures.
The report features data gathered between 2020 and Q1 of 2022, including cause of loss by industry, ransomware vectors, business email compromise, and data exfiltration. These key data points clearly illustrate a continued need for a multipronged approach to cyber security.
“Extortion incidents no longer just involves file encryption. We are seeing data exfiltration now prevalent in a significant majority of incidents reported to our cyber services team. Multiple threat actors are involved, and they are encrypting systems, stealing and selling data they’ve accessed, and also threatening to expose the fact that an organization’s data was stolen unless payment is provided,” said Raf Sanchez, Beazley’s Global Head of Cyber Services. “This is an increasingly complex landscape and it’s essential that organizations understand the threats and resulting vulnerabilities of these new threat vectors.”
With the quarterly Cyber Services Snapshot, Beazley aims to provide real-time insights into the state of cybersecurity, using incidents reported to Beazley as well as trend analysis from the cyber services team to reveal an ongoing picture of emerging cyber risk.
“This project was conceived as a rolling snapshot of cyber exposure and its impact on cybersecurity needs and recommendations. With threat actors continually evolving their techniques, the industry needs regular access to data and expertise to guide our response. Beazley’s Cyber Services Snapshot will provide that level of ongoing insight, along with thoughtful commentary about key trends our team is seeing that may not yet even be reflected in the data,” said Sanchez.
For further information, please contact:
Beazley Group
Samantha Whiteley
T +44 (0)7787 545529
Note to editors:
Beazley plc (BEZ.L), is the parent company of specialist insurance businesses with operations in Europe, North America, Latin America and Asia. In 2021, Beazley underwrote gross premiums worldwide of $4,618.9 million.
Beazley manages seven Lloyd’s syndicates, all Lloyd’s syndicates are rated A by A.M. Best.
Beazley's underwriters in the United States focus on writing a range of specialist insurance products. In the admitted market, coverage is provided by Beazley Insurance Company, Inc., an A.M. Best A rated carrier licensed in all 50 states. In the surplus lines market, coverage is provided by the Beazley syndicates at Lloyd's.
Beazley's European insurance company, Beazley Insurance dac, is regulated by the Central Bank of Ireland and is A rated by A.M. Best and A+ by Fitch.
Beazley is a market leader in many of its chosen lines, which include professional indemnity, cyber liability, property, marine, reinsurance, accident and life, and political risks and contingency business.