![]() |
While the cyber insurance market may categorize business email compromise (BEC) claims as more attritional and frequency-driven, a new report from Guy Carpenter, sheds light on the potentially devastating financial consequences of this often-overlooked threat. |
The report, Cyber's Sleeper Threat: Business Email Compromise, was published in conjunction with Marsh McLennan’s Cyber Risk Intelligence Center and investigates the threat and impact of BEC attacks – sophisticated forms of phishing that exploit human vulnerabilities rather than technical weaknesses. In these scenarios, attackers impersonate trusted entities to deceive employees into transferring funds, making it difficult for traditional security measures to detect and mitigate the risk effectively. An analysis of Marsh’s proprietary claims database over the last five years found more than 550 successful BEC events impacting Marsh clients with either a cyber or crime insurance policy in place. Of these events for which loss data is available, the report reveals the greatest number have a loss around 0.1% of the company revenue. For a company with $1 billion in revenue that amounts to a $1 million loss. Despite the considerable financial threat, commercially available cyber vendor models have mixed approaches as to whether BEC claims should be accounted for in their catastrophe event catalogue, the report says. The report found that only one industry-leading vendor has incorporated BEC as an explicit cyber peril into its models. “Cyber threats such as ransomware attacks, zero-day vulnerability exploits, and cloud service provider outages dominate the headlines. The consequences of a successful BEC attack, however, can also be devastating for an organization and create large losses for cyber (re)insurers,” said Erica Davis, global co-head of cyber, Guy Carpenter. “By driving awareness of the right cybersecurity measures, we can collectively improve the resilience of organizations against BEC threats and mitigate its impact on underwriting profitability.” |
|
|
|
Head of Actuarial Reporting (Life) | ||
South East / hybrid 3dpw office-based - Negotiable |
CONTRACT: London Market Capital Actuary | ||
London/hybrid 2-3dpw office-based - Negotiable |
Portfolio Manager | ||
Hybrid - Negotiable |
Pricing Assurance Manager | ||
London - £145,000 Per Annum |
Actuarial Director with BD and CatMod... | ||
London/hybrid 2-3dpw office-based - Negotiable |
Pensions data expert: buy-out/residua... | ||
Any UK Office location / Hybrid 2dpw office-based - Negotiable |
Senior Portfolio Manager | ||
London - £150,000 Per Annum |
Senior Pensions Trustee Actuarial Con... | ||
London / hybrid 3 dpw office-based - Negotiable |
Shape the future of the pensions in... | ||
UK Flex / hybrid 2dpw office-based - Negotiable |
Challenge the pensions industry! | ||
UK Flex / hybrid 2dpw office-based - Negotiable |
Actuarial Pricing Manager - Non-life | ||
London/hybrid 2-3dpw office-based - Negotiable |
Senior Pricing Actuary | ||
London/hybrid 2-3dpw office-based - Negotiable |
GI Actuarial Senior Manager | ||
London/hybrid 2-3dpw office-based - Negotiable |
BPA Implementation Manager | ||
North / hybrid working 50/50 - Negotiable |
Head of Reserving | ||
City of London - £150,000 Per Annum |
PRT or BPA Specialist | ||
Nationwide offices / hybrid working - Negotiable |
Retirement Consultant | ||
UK-wide / hybrid 2 dpw office-based - Negotiable |
GI Associate Actuarial Director | ||
London / hybrid 2-3 dpw office-based - Negotiable |
GI Actuarial Senior Manager | ||
London / hybrid 2-3 dpw office-based - Negotiable |
Actuarial Manager - GI/Risk | ||
London / hybrid 2-3 dpw office-based - Negotiable |
Be the first to contribute to our definitive actuarial reference forum. Built by actuaries for actuaries.