The SolarWinds breach is already one of the most significant cybersecurity incidents ever. And as with any unprecedented cyber event, this will have long-term effects on the way businesses and government consider their security programs. While many questions remain unanswered, the SolarWinds impact on the insurance sector has become clearer after an analysis we’ve completed with one of our partners. So, what should we expect the financial impact of SolarWinds on cyber insurers? And how can cyber insurers quantify a breach of this scale in the future?
Today, BitSight and Kovrr announced our new partnership and released a joint analysis of the financial impact of the SolarWinds hack to the insurance industry. We find that although the SolarWinds attack is a cyber catastrophe from a national security perspective, insurers may have narrowly avoided a catastrophic financial incident to their businesses. We estimate the insured losses to be $90,000,000, which includes incident response and forensic services for companies who were impacted by this incident and have cyber insurance coverage.
Together, BitSight and Kovrr are able to produce the cost associated with the breach by breaking down the different elements into cost components. Based on the specific organization location, industry, and size, we are able to determine the cost of forensics, incident response, regulatory fines, addressing the incidents, and using public relations services to communicate information about the attack. This information is mostly derived from claims and other data sources of prior incidents.
We estimate the insured losses from the SolarWinds attack to be $90,000,000, which includes incident response and forensic services for companies who were impacted by this incident and have cyber insurance coverage.
While the number of SolarWinds victims from the attack may grow in the following months, we do not expect the direct insured costs to change significantly. We note that many of the organizations affected by this incident include Federal government agencies, who typically do not buy insurance for most risks, including cyber.
In order to come up with an estimation of insured costs associated with the SolarWinds attack, BitSight-Kovrr looked into multiple elements:
In the specific case of SolarWinds, we now know the profile of the businesses being attacked and the number of businesses that were actively compromised by the threat actor. According to Microsoft:
While there are still some missing data pieces, we know that the initial phase of this attack has ended and we can begin to consider the factors that allow us to model the financial impact of the attack and come up with an accurate estimate of the insured costs associated with it.
While the SolarWinds hack is proving to be a devastating cyber attack from a national security perspective, the attack did not evolve into a cyber catastrophe for the insurance market. Why?
We define a cyber catastrophe for insurance in the following manner:
In the SolarWinds attack, while a specific technology was targeted that has a significant customer, it appears the threat actor has avoided large scale exploitation of organizations. The threat actor mainly focused on maintaining access and collecting sensitive data. If, for example, the threat actor chose to disrupt the networks and use Solarwinds alongside other vectors to gain network access to cause business interruption or even destruction of networks, the impact of the event could have led to a catastrophe.
Insurers will likely be concerned that future supply chain incidents resembling SolarWinds may have widespread impact on their insured base. More robust modeling, working with insureds to help them better understand their third and fourth party risk, and adjustments to the way supply chain risk is underwritten may all be required for the insurance market moving forward.
BitSight and Kovrr are partnering to deliver the most comprehensive data-driven cyber risk financial quantification solution for the insurance market. Together, BitSight and Kovrr provide cyber insurers the tools required to more accurately and confidently make decisions about key areas of the cyber insurance business including underwriting, modeling, and portfolio management. For information about the BitSight-Kovrr Financial Quantification for Insurance Cyber Risk solution please visit https://www.bitsight.com/security-ratings-cyber-insurance.
The SolarWinds breach is already one of the most significant cybersecurity incidents ever. And as with any unprecedented cyber event, this will have long-term effects on the way businesses and government consider their security programs....
This post was originally published July 18, 2016 and has been updated for accuracy and comprehensiveness.
Hardly a day goes by without the emergence of a disturbing new trend in cyber crime or headline-grabbing hack. Hackers are getting smarter and threat vectors are constantly evolving. The escalating threat is forcing businesses to file more
© 2021 BitSight Technologies. All Rights Reserved. | Privacy Policy | Security | For Suppliers
Contact Us | BitSight Technologies | 111 Huntington Ave, Suite 2010, Boston, MA 02199 | +1-617-245-0469