Log In

Reset Password

Insurers warned to test for cyber threats

First Prev 1 2 Next Last

Insurers and reinsurers holding large books of East European business are being urged to stress-test their portfolios against the threat of Russian and Ukrainian cyber attacks.

A new report published by cyber-risk analytics expert CyberCube identifies a series of potential cyber-attack scenarios.

The report, War in Ukraine creates fundamental shift in the cyber threat landscape, encourages insurers and reinsurers to urgently re-evaluate their exposures.

According to the research, the range of relevant scenarios include cyber attacks on off-shore oil rigs, utility suppliers, mobile phone network operators, hospitals, airlines, the Swift banking system, plus the widespread use of wiper malware.

CyberCube confirmed that it had observed cyber attacks on Ukrainian critical infrastructure, government services, banks and telecoms.

Russian government institutions and enterprises are also being targeted by cyber attackers.

Some of these attacks, the company said, have spilt over into neighbouring Belarus, Poland, Lithuania and Latvia.

William Altman, CyberCube’s principal cyber security consultant, said: “This conflict will undoubtedly push the boundaries of acceptable behaviour in cyberspace.

“What’s worrying is that the cyber elements of this conflict could escalate quickly. We have the potential for unprecedented cyber-physical impacts, including attacks on critical infrastructure.

“However, before a full-blown cyber disaster becomes likely, we believe there will be several levels of escalation needed to reach that stage.”

CyberCube’s report recommends that insurance brokers and risk carriers encourage their clients to focus on threat modelling Russian advanced persistent threats, known criminal gangs’ tactics, techniques and procedures, and cyber security best practices.

Since the conflict began, the company said, both Ukraine and Russia have openly recruited a global volunteer cyber force to attack their enemies’ IT systems and networks.

The company said infamous hacking collective Anonymous has joined the conflict alongside Ukraine, while prolific ransomware gang Conti has sided with Russia.

As of March 1, there were at least 33 different cyber threat actor groups actively assisting Ukraine (22) and Russia (9), CyberCube said.

The report states that companies in the high-risk geographies of Ukraine, Russia and CIS countries are most at risk of experiencing losses due to cyber attacks. Business interruption claims are likely to stem from cyber attacks on critical infrastructure and key IT single points of failure (SPoF).

Darren Thomson, head of cyber security strategy, said: “The risk of a cyber disaster impacting re/insurers’ portfolios is higher as a result of Russia’s intent, opportunity, and capability to compromise SPoF targets that give them widespread and unfettered access to critical computer networks and data.

“Hacktivist coalitions and cyber criminals are taking sides, with prolific groups pledging services to aid the Russian government’s war machine.”

CyberCube said its Portfolio Manager is used by the global insurance industry and the Lloyd’s of London market to evaluate portfolios of cyber risk against a series of realistic cyber threat scenarios.

CyberCube’s report War in Ukraine creates fundamental shift in the cyber threat landscape is available from https://insights.cybcube.com/war-in-ukraine-report.

William Altman, CyberCube’s principal cyber security consultant
Darren Thomson, head of cyber security strategy at CyberCube

You must be Registered or to post comment or to vote.

Published March 07, 2022 at 7:50 am (Updated March 07, 2022 at 7:50 am)

Insurers warned to test for cyber threats

What you
Need to
1. For a smooth experience with our commenting system we recommend that you use Internet Explorer 10 or higher, Firefox or Chrome Browsers. Additionally please clear both your browser's cache and cookies - How do I clear my cache and cookies?
2. Please respect the use of this community forum and its users.
3. Any poster that insults, threatens or verbally abuses another member, uses defamatory language, or deliberately disrupts discussions will be banned.
4. Users who violate the Terms of Service or any commenting rules will be banned.
5. Please stay on topic. "Trolling" to incite emotional responses and disrupt conversations will be deleted.
6. To understand further what is and isn't allowed and the actions we may take, please read our Terms of Service
7. To report breaches of the Terms of Service use the flag icon