General Insurance Article - MS Exchange attacks may lead to thousands of claims

Insurers are being warned of the potential for a large volume of claims resulting from recent cyber attacks by criminals on the servers running Microsoft’s best-selling email services.

 Tens of thousands of Microsoft Exchange servers in businesses and organisations around the world could have been infected during a series of concerted cyber attacks since the beginning of this year. According to cyber analytics specialist CyberCube, companies in North America are more at risk than their European counterparts but large-to-medium sized businesses globally are vulnerable.

 CyberCube’s new report analysing the threat for the insurance industry notes US organisations are more likely to have been using the affected Microsoft Exchange servers, as are larger businesses. Germany is also a high-risk region, as well as Africa, the Middle East, and Australasia. The report - Understanding the potential fall-out from the ongoing Microsoft Exchange attacks - states many smaller companies have opted for cloud-based email systems, which are unaffected.

 The cyber attacks, believed to have come from Chinese state-sponsored hackers, see vulnerabilities in Microsoft Exchange servers being exploited to allow malicious code to be placed on them. This code can be used for ransomware, espionage or even misdirecting the system’s resources to mine for cryptocurrency on behalf of the criminals.

 CyberCube’s report concludes that the insurance and reinsurance industries are “likely to see a long-tail of attritional claims resulting from this attack”.

 William Altman, Cyber Security Consultant at CyberCube and one of the report’s authors, said: “The insurance industry is only just beginning to understand the scope of possible damage. It is too early to calculate potential losses from the theft of a corporation’s intellectual property. These kinds of data breaches could have delayed - but long-lasting - impacts on commercial competitiveness.

 “An accumulation of loss could result in multiple – theoretically, tens of thousands – of companies making insurance claims to cover investigation, legal, business interruption and possible regulatory fines. There is still the ongoing possibility that even more attackers will launch ransomware or other types of destructive cyber attacks.”

 Using data from over 20 million companies worldwide, CyberCube has produced heatmaps for the insurance industry to identify those regions and industries most at risk. In addition to North American and larger businesses, organisations using legacy Microsoft Exchange servers are particularly vulnerable as is the public sector generally.

 Researchers believe that 10 different “advanced persistent threat actors” globally are now actively exploiting the code used in this attack in a variety of ways. Microsoft has provided patches for the vulnerabilities, but attackers seem to have stepped up their efforts to identify unpatched servers.

 Check out CyberCube’s report, Understanding the potential fall-out from the ongoing Microsoft Exchange attacks.




Back to Index

Similar News to this Story

Health and wellbeing benefits boosts SME productivity
Research from the Association of British Insurers (ABI) shows that offering health and wellbeing benefits to staff can play a valuable role in boostin
Pay by mile pricing to be standard within four years
Research from By Bits has found that the motor insurance industry is heading towards usage-based pricing models, with 91% of insurers regarding it as
Car insurance prices hit seven year low as mileages plummet
Car insurance prices have fallen sharply to reach their lowest point since 2014, according to new research by MoneySuperMarket, with experts putting t

Site Search

Exact   Any  

Latest Actuarial Jobs

Actuarial Login

 Jobseeker    Client
Reminder Logon

APA Sponsors

Actuarial Jobs & News Feeds

Jobs RSS News RSS


Be the first to contribute to our definitive actuarial reference forum. Built by actuaries for actuaries.