 |
|
 |  |  |  |
 Turbulent risk environment with multiple incidents, but favourable buying conditions. This is a half-year update looking back at the GB cyber insurance market in H1 2025, providing analysis and insights, covering market trends of pricing, capacity, coverage, and notable cyber incidents. The cyber risk environment in H1 has been incredibly turbulent, with multiple incidents reported in mainstream media; however, this is countered by very favourable buying conditions for cyber insurance |
By Simon Basham, Head of Cyber Broking GB and Adrian Ruiz, Head of FINEX Cyber & Tech, WTW Delivering an acute juxtaposition and highlighting that the decision of how much cyber insurance capacity to purchase is undoubtedly a c-suite responsibility. How to utilise these insights
01. Understanding market trends
Assess: Evaluate your current cyber insurance programmes/decisions against the latest market conditions and risk environment
Anticipate changes: Use premium, capacity and incident insights to inform your tactical and longer-term strategic cyber insurance purchasing decisions
02. Inform strategic decisions
Enterprise risk considerations: decisions concerning the treatment and transfer of cyber risk remains a C-Suite enterprise-level risk for boardrooms – our 2025 Global Cyber, Directors and Officers Survey, showed that as a risk for directors and officers, cyber-attacks and data loss are ranked as third and second in the top seven risk concerns for directors and officers
Optimise purchase timing: Capitalise on the current buyer's market to purchase coverage or purchase extra capacity
Enhance coverage strategically: Consider how new offerings and innovations may benefit your cyber insurance programme needs and wants
03. Key observations from H1 include
Prolific volume of high-profile malicious incidents: UK retailers were materially impacted by malicious cyber-attacks, resulting in a surge in demand for cyber insurance capacity – see our retail cyberattacks article for more details
Buoyant market capacity: Capacity availability remained very high, supporting ultra-competitive market conditions, continuing the trend prevalent since the latter half of 2023 Human error: H1 showed that humans remain the greatest strength and weakness in protecting against cyber-attacks – malicious actors continue to find new and innovative ways of exploiting this dynamic, highlighted by the spate of UK retailer attacks Significant pricing reductions: Despite the claim’s trends, at this time clients commonly accessed substantial pricing decreases, with insurer competitive tension being sustained Enhanced buying conditions: H1 witnessed a continuation of exceptionally favourable conditions, precipitating very competitive rates and pricing Tailored policy coverage: Clients continue to utilise market-leading cyber insurance innovation to expertly tailor policy coverage to their specific wishes
Cyber insurance market trends
Claims and notifications
H1 has been dominated by the continually reported nefarious work undertaken by the ransomware-as-a-service group DragonForce (and affiliates falling under the ‘Scattered Spider’[4] moniker), who allegedly perpetrated many of the attacks against UK retailers. The impact of these incidents being so severe that it is already publicly reported to have resulted in hundreds of millions of profits being lost as a result, and the incidents being constantly reported across mainstream media channels. Worryingly the techniques at play are not new, nor are they overly sophisticated. As with so many frauds they have been deploying phishing techniques, in recent instances to obtain access credentials from IT helpdesks, making two things clear; Phishing has been prevalent for well over a decade (Sony Pictures hack and leak in 2014 as an example, Colonial Pipeline in 2021 yet another) yet it cannot be neutralised, only risk mitigation is possible against this ever-evolving threat vector
No amount of investment in fantastic security tooling and the very best information security teams can stop malicious actors from bypassing the same by manipulating employees and/or partners business rely on to operate In addition to tried and tested techniques such as phishing, threat actors are ever resourceful in finding new techniques to circumnavigate security measures, developing tooling such as those to bypass Endpoint Detection and Response (EDR) systems, which businesses have invested significant sums in to reduce their exposure to malicious cyber events. Cyber incident response provider S-RM, who handled over 600 cyber incidents in 2024, comment that the more organisations have adopted EDR tooling, the more threat actors have focused on the development of bypass tools and techniques and that these techniques will be particularly attractive to financially motivated groups looking to spend as little time inside a network as possible to act on their objectives. It's clear that threat actors are not letting up in finding any new opportunities to monetise their efforts and/or further their or their master’s ideals.
Cyber insurance market capacity In the wake of the retail cyberattacks, clients have been utilising the plentiful supply of capacity to increase limits both at renewal and mid-term. In the wake of the retail cyberattacks, clients have been utilising the plentiful supply of capacity to increase limits both at renewal and mid-term. Many insurers secured very favourable outcomes when renewing their reinsurance programmes, emboldening their respective plans to grow in a highly competitive market.
Premiums and self-insured retentions Given the events in the public domain, such generous terms are resonating with many new buyers, allowing them to purchase large limits immediately. Many clients are tactically utilising the extremely appealing premiums on offer to either enter the cyber market or to increase the limits they purchase. Such astute decisions are unsurprising, with capacity pricing often (specific pricing is tailored to individual clients and many variables) assuming it will not be subject to claim in the next 50 to 200 years (5,000 to 20,000 per million of capacity). Given the events in the public domain, such generous terms are resonating with many new buyers, allowing them to purchase large limits immediately.
Policy coverage While expanding and tailoring coverage are critical, H1 has showed why our longstanding efforts on key policy efficacy areas, such as the ability for claim payments to be made at break-neck speed due to affirmative policy provisions are just as, if not more important when a client is reliant on the cornerstone of insurance, the ‘promise to pay’. |
|
|
|
| Consultancy Bonanza! | ||
| UK-wide / London / hybrid - Negotiable | ||
| Service Delivery Manager - Pensions | ||
| Scotland / remote / 2 dpm in the office - Negotiable | ||
| Life Actuarial Student – Risk | ||
| Glasgow / hybrid 2 dpw office-based - Negotiable | ||
| Senior Investment Analyst | ||
| London / hybrid - Negotiable | ||
| ALM Strategy Specialist | ||
| Bermuda - Negotiable | ||
| Senior Casualty Reinsurance Actuary | ||
| London - £140,000 Per Annum | ||
| Senior Pensions Administrator - Midlands | ||
| Birmingham / hybrid - Negotiable | ||
| Senior Pensions Administrator - Scotland | ||
| Scotland / hybrid 2 days per month office-based - Negotiable | ||
| Investment Analyst | ||
| South East / hybrid - Negotiable | ||
| International Capital Management Actuary | ||
| Bermuda - Negotiable | ||
| VP Reserving Actuary | ||
| London - £150,000 Per Annum | ||
| Calling all BPA analysts! | ||
| North West / hybrid 50/50 - Negotiable | ||
| Financial Planning & Analysis Actuary | ||
| London/Hybrid - Negotiable | ||
| Apply Your Doctorate to Technical Pri... | ||
| Fully remote / nationwide / hybrid working options all available - Negotiable | ||
| Senior Investment Manager | ||
| London / hybrid - Negotiable | ||
| P&C Consultant | ||
| London / hybrid 3dpw office-based - Negotiable | ||
| Senior Pricing Actuary | ||
| London - £140,000 Per Annum | ||
| Actuarial Pensions Manager | ||
| Flex / hybrid 2-3 dpw office-based - Negotiable | ||
| Financial Reporting in beautiful Bermuda | ||
| Bermuda - Negotiable | ||
| Make a difference within BPA Administ... | ||
| North West / hybrid 50/50 - Negotiable | ||
Be the first to contribute to our definitive actuarial reference forum. Built by actuaries for actuaries.
Copyright © 2025 Actuarial Post. Created by Zero-One Design Ltd
