October 16
As attacker strategies and tactics evolve, risk officers with enterprise risk management mandates should as well
As the number of cyber attacks continues to soar, better identification of security blindspots is needed to prevent incidents happening in the first place and to contain losses if attackers strike. CISOs and Risk Officers should focus more closely on understanding the threat context to make better resource allocation decisions that will lower the risk.
October 08
When looking at what makes cyber risk ‘dynamic’, the need for a different approach is clear
Behind the “cyber is a dynamic risk” refrain is the reality that companies’ IT networks are becoming ever more complex, while attackers are constantly inventing new tactics, techniques, and procedures. Digital transformation is a business imperative, but companies are losing visibility of their IT environments and conventional threat detection responses are proving insufficient.
September 24
Cyber coverage gap won’t be fixed with more of the same
In last week’s CyFi™ note, we covered an overlooked issue in cyber: economic losses. What’s the point in taking stock of these events and the actual and potential losses? It’s important to understand the nature of this gap to then focus on creating better solutions to address it. This is a central topic in the forthcoming October edition of our monthly research note, The Intangibles.
September 10
One overlooked issue in cyber: growing economic losses
Two recent business interruption (BI) breaches involving US-listed Microchip Technology and US oil and gas services firm Halliburton are not generating the same headlines as the CrowdStrike-related disruptions or even the large-scale breach involving Change Healthcare. But BI incidents like this are causing economic losses for shareholders, and it’s becoming so common that the press barely picks up on it.
August 21
Focus on insured loss from CrowdStrike outage overlooks one key issue
Though the response and resilience of the cyber market is important, what is more critical is how risk teams proactively deploy resources to avoid large BI losses in future.
August 09
Similarities between property and cyber markets present an opportunity
At first glance, the property and cyber markets don’t have much in common, with the property’s scale of losses in the last year of $123 million far exceeding those of cyber. But there are some parallels that can help risk officers present a cohesive risk management strategy to the C-suite and board across both risks with the common objectives of more efficient risk financing and avoiding losses.
August 06
Need to look beyond security controls to avoid large costly breaches
Security controls alone, even when well managed, are not enough to protect a company from cyber criminals. Seeing the threat from the cyber attacker’s point of view is key to bolstering risk prevention efforts before the large breach. It’s no different than how we approach sports matches.
July 29
Slowing US cyber insurance market prompts need to further invest in risk prevention
In 2023, direct written premium in the US rose by only 0.1% according to recent numbers reported by AM Best. Intangic explores how a deceleration in the speed of cyber market expansion points to the need for a new approach.