cyber insurance

Cyber insurance won’t save you from ransomware

Print Friendly, PDF & Email

Many businesses have some form of cyber insurance as a precaution in case of a data breach or other cyberattack. In some cases, ransomware attacks are also covered by that insurance. If you have ransomware coverage, you might think that your ransomware woes are behind you. After all, isn’t that the point of having insurance?

But what does having ransomware insurance really mean? Here are some things to keep in mind:

Recent attack trends

Most importantly, the actual ransom can be one of the least damaging aspects of a large-scale  ransomware attack. In over 77% of recent ransomware attacks, data was stolen during the attack, and then the victim was asked for even more money to buy back their data or it would be posted on the internet or sold to the highest bidder. In some cases, the stolen data contains sensitive information about customers or partners, damaging the organization’s reputation and relationships. Under regulations such as GDPR, you could also be heavily fined for allowing a data breach.

Insurance companies know these stakes all too well. A fairly recent trend has been ransomware attacks on the insurance companies themselves. The attackers steal the data on the insurer’s customers so that they know the individual customers’ insurance details: the terms of the insurance, what protections were mandated as a condition of the insurance, and how much the insurance will pay out after a ransomware attack. Major insurance companies such as CNA Financial (which paid $40 million in ransom) and AXA were targeted in 2021. AXA was hit just a few days after they announced that they would no longer pay out on ransomware claims.

Insurance companies are now trying to limit their ransomware coverage because there are so many claims and the ransoms have increased so much. In the first six months of 2021, ransomware payments totaling over $590 million were paid out — compared to $416 million for all of 2020. Insurance Journal has detailed that many insurers are raising premiums by as much as 100%  to try to retain profitability. For you, that could mean unpredictably spiraling costs and even difficulty finding insurance that will cover your business to the extent that you need.

What does all this mean?

Even if you have ransomware insurance, you should protect your business as though you had no insurance. Insurance money can fund your recovery from ransomware to a certain extent, but you’re never going to get back stolen data. Even if you “buy back” your stolen data, the attacker still has it and may demand payment from time to time to prevent its release.

In addition, it can be hard to find every bit of malware that an attacker may have placed during a breach. Many companies find that they are attacked many times within a year — sometimes even from the same attackers.

How to protect yourself

Barracuda has the most comprehensive ransomware protection portfolio available. We can help you prevent a successful ransomware attack by blocking the initial phishing attempt or a web application breach, as well as securely backing up your data so you have data for recovery purposes.

Get started today by downloading our ransomware protection checklist or by contacting us for a free ransomware protection consultation. We can help you go through your environment to secure any ransomware vulnerability points so you can feel secure in the fight against ransomware.

Get a three-step guide to ransomware protection

Scroll to top