- Property
- Reports
2024 Q3 State of the Property Market
On the heels of a profitable 2023, carriers are now in a stable and competitive — yet fragile — Property insurance market.
When it comes to the ever-evolving world of Cyber insurance, the RPS Cyber team sees it all and is ready to share. Here's a look at their encounters in their daily handling of Cyber insurance submissions, quotes, renewals and claims. These anecdotes can be great nuggets for retail agents to share with their insureds when asked about new developments (or important reminders) in the Cyber insurance arena.
One insurer issued a brief moratorium on all new business submissions after the recent highly publicized failure of a security software vendor's software update. Additionally, several insurers required no-loss attestations relative to this event as a condition of binding new business and renewals.
We're seeing various approaches to carrier fees on Cyber policies. One market is offsetting the cost of their risk management offerings by adding new fees to their policy. The fees range from $250 to $2,500, depending on the size of the insured and their associated premium. Conversely, another market is doing away with fees. As Cyber insurers continue to expand risk management offerings, it will be interesting to see how these offerings are financed.
We can't emphasize enough the importance of training employees to recognize fund transfer scams. Just last week, an insured received an email requesting what they thought was a change in payment instructions from a fellow employee, appearing to come from their internal accounting department. Moments later, that same "employee" sent another internal email claiming they had called the requestor and validated the authenticity of the request, with instructions to process immediately. Seeing these message as reasonable evidence of check and balance, the employee sent the funds, learning later that both emails were from a fraudster, and the money was diverted to a criminal's bank account. Criminals are increasingly learning their victims' protocols to prevent fraud and are developing ways to circumvent them.
A hacker gained unauthorized access to an insured's network and obtained passwords for the CEO's cryptocurrency wallet, stealing $70,000. Some policies address this exposure, but many do not.
A legacy top-tier insurer for auto dealers recently amended their dependent business interruption (BI) waiting period to 24 hours on all accounts after a recent SaaS provider ransomware attack. Conversely, a newer specialty entrant is offering full policy limits for dependent BI, with an eight-hour waiting period. This example illustrates the current dichotomy that often exists among players in the Cyber insurance market.
As claims related to the February 2024 ransomware attack on a medical billing software vendor continue to develop, we're hearing differing interpretations among carriers about the description of services that the vendor provided to its healthcare provider customers. Dependent/contingent BI insuring agreements in Cyber insurance policies address coverage via defined terms such as "service provider" or "outsourced provider," while some assign meaning within the definition of "computer system." These nuances become important as carriers interpret the work that this vendor provided, delineating between clearinghouse claims services and more literal IT services such as cloud hosting and processing digital assets.
Switching gears from the very real to the very fake, in our 2024 Q2 Cyber Market Update, we warned of the anticipated use of generative artificial intelligence (AI) in attempts to influence outcomes of the 2024 US elections. We're seeing this play out in various ways.
Whether politics or business, it's clear to see the impact of these technologies on both reputations and finances. While fraudulent payment claims on Cyber insurance policies represent the highest frequency, we can expect the use of AI to exacerbate this trend. As threat actors employ new methods to make their schemes more believable, the importance of old-fashioned human intervention, due diligence and employee training becomes even more important.