At-Bay Documents

At-Bay Cyber Insurance
At-Bay Cyber
Help Prevent Loss
At-Bay Cyber Insurance: Cyber Insurance Designed to Help Prevent Loss

At-Bay Cyber Insurance
Designed to Help Prevent Loss

At-Bay offers cyber insurance designed to help businesses prevent and recover from cyber-attacks. Their comprehensive approach includes:

Key Features

  • Detailed Security Report: Provided at the time of quote to assess security strength before policy purchase.
  • At-Bay Stance™: Offers mission-critical products and services to reduce cyber risk as part of the insurance policy.
  • In-house Claims & Incident Response Teams: Experienced professionals who help policyholders recover quickly from cyber events.

At-Bay policyholders are up to 5 times less likely than the industry average to experience a ransomware attack.

Coverage Highlights

At-Bay’s cyber policy covers various aspects of cyber risk, including:

  • Ransomware
  • Financial fraud and cybercrime
  • Business interruption losses
  • Breach response and data recovery
  • Liability claims from network security or information privacy events

Why Cyber Insurance is Essential

Cyber insurance is crucial for businesses that:

  • Sell products or services online
  • Use technology to conduct business
  • Store or process sensitive data or customer information

Even small businesses are frequent targets for cyber attacks due to their limited resources and expertise in combating evolving threats.

First-Party Coverage

At-Bay’s policy includes:

  • Event Response & Recovery
  • Event Response & Management
  • Direct and Contingent Business Interruption
  • System Failure Coverage
  • Cyber Extortion
  • Social Engineering & Computer Fraud
  • Reputational Harm Coverage

Third-Party Coverage

The policy also covers:

  • Information Privacy Liability
  • Network Security Liability
  • Regulatory Liability
  • Payment Card Liability
  • Media Liability

Real-World Examples

The document provides two case studies demonstrating At-Bay’s effectiveness:

1. A food retailer suffered wire fraud, resulting in a $60,000 reimbursement from At-Bay.
2. A construction company experienced email compromise, leading to At-Bay covering nearly $28,000 in breach-related costs.

At-Bay’s cyber insurance offers comprehensive protection against a wide range of cyber threats, combining financial coverage with proactive security measures to help businesses prevent, respond to, and recover from cyber incidents.

At-Bay Cyber
Admitted vs Surplus
At-Bay Cyber Insurance: Admitted vs Surplus

At-Bay Cyber Insurance
Admitted vs. Surplus

At-Bay comprehensively compares its admitted and surplus cyber insurance coverage options. At-Bay takes an innovative approach to cyber insurance underwriting, continuously analyzing and monitoring the risk of every company in their portfolio to provide ongoing education, advice, and support to brokers and businesses.

Admitted vs. Surplus Coverage

The key differences between the admitted and surplus coverage options are:

Target Customer:

  • Admitted: Micro to small businesses with standard risk profiles seeking affordable but comprehensive coverage
  • Surplus: Small to midsize businesses seeking premium, customizable cyber insurance

Minimum Premium:

  • Admitted: $100 for $100K aggregate limit ($750 for $1M aggregate)
  • Surplus: $950 for $1M aggregate limit

Revenue Limit:

  • Admitted: Up to $25M
  • Surplus: Up to $100M

Coverage Limit:

  • Admitted: Up to $1M
  • Surplus: Up to $3M

Coverage Highlights

Both admitted, and surplus options include:

  • Information Privacy – Event Response & Liability
  • Network Security – Event Response & Liability
  • Data Recovery
  • PCI Liability
  • Business Interruption (Direct and Contingent)
  • System Failure (Direct and Contingent)
  • Reputational Harm
  • Cyber Extortion
  • Financial Fraud

The surplus option offers additional coverages such as Media Liability & Event Response, Broker-Specific Amendatories, Contingent Bodily Injury, HIPAA Betterment, and PCI Betterment.

Additional Features

State Availability:

  • Admitted: All states, including D.C., except for Alaska
  • Surplus: All states, including D.C.

AM Best Rating:

  • Both options are underwritten by A- (Excellent) rated carriers

Security Solutions:

  • Both options include Active Risk Monitoring, At-Bay Response & Recovery, and access to the At-Bay Security Partner Network. The surplus option provides access to At-Bay Stance Exposure Manager and At-Bay Stance Managed Security.

Fees:

  • Admitted: State surcharges (if applicable)
  • Surplus: Surplus lines tax and embedded security fee based on risk exposure

At-Bay emphasizes that its approach to cyber insurance is dynamic, recognizing that numerous new threats emerge over an insurance year. Their regular risk analysis and monitoring allow them to provide ongoing support and education to their clients throughout the partnership.

At-Bay Cyber
Ransomware Attack
At-Bay Cyber Insurance: Ransomware

CFC Cyber Insurance
Claim Case Study: Ransomware Attack

At-Bay Cyber presents a case study of a ransomware attack on an engineering firm and the subsequent response. The attack targeted a company with 800-1,000 employees and revenue between $75M-$125M, exploiting an open Remote Desktop Protocol (RDP) port to access internal systems and hold project files, contracts, and sensitive client information for ransom.

The case study outlines a detailed timeline of the incident response:

1. Initial Contact: On a Sunday morning, the firm’s insurance broker contacted At-Bay and a breach coach.

2. Team Assembly: At-Bay quickly assembled a response team, including a breach coach, forensics firm, cryptocurrency payment facilitator, and ransom negotiator.

3. Assessment: The team conducted a scoping call and created a Statement of Work (SOW) to outline necessary actions.

4. Negotiation: At-Bay approved contact with the attacker, identified as the Lockbit ransomware group. After negotiations, the ransom was paid at a 50% reduction from the initial demand.

5. Resolution: The response team received a decryption tool, verified its safety, and began restoring the firm’s systems.

6. Recovery: The most critical systems were operational within three days, and the company resumed partial operations. Full business operations were restored within 10 days of the attack.

At-Bay maintained close communication with the client throughout the incident and conducted external scans to identify potential vulnerabilities. They discovered an open port connected to a third-party service provider, which was subsequently closed to reduce the risk of future attacks.

The document emphasizes At-Bay’s role as an “InsurSec provider,” offering a combination of insurance and cybersecurity technology. It claims that At-Bay’s approach makes its customers up to 5 times less likely than the industry average to experience a ransomware attack.

The case study highlights At-Bay’s commitment to providing prompt, efficient, and equitable claims handling, noting that response timelines may vary. It also includes a disclaimer that the information provided is for informational purposes only and does not define any policy commitments.

At-Bay Cyber
Company Overview

At-Bay Cyber Insurance: Company Overview

At-Bay Cyber Insurance
Company Overview

At-Bay is an InsurSec provider founded in 2016 by Rotem Iram (CEO) and Roman Itskovich (CRO). The company combines cutting-edge technology with insurance and security expertise to offer comprehensive protection for businesses in the digital age.

Key Facts

  • Raised $295M across four funding rounds
  • 300+ employees globally distributed
  • Protects nearly 40,000 US businesses with revenues up to $5B
  • Offers Cyber, Tech E&O, and Miscellaneous Professional Liability insurance
  • Named on Forbes’ Fintech 50 list (2023, 2024) and Fortune’s Cyber 60 list (2024)
  • At-Bay Specialty Insurance Company rated A- by AM Best

Insurance and Security Services

At-Bay provides end-to-end protection through its InsurSec approach, which includes:

  • Insurance policies (Cyber, Tech E&O, Miscellaneous Professional Liability)
  • Security solutions (At-Bay Stance Managed Detection & Response)
  • Threat intelligence
  • Human expertise

This comprehensive approach aims to close the cybersecurity gap for small and medium-sized businesses.

Company Growth and Recognition

Since its founding, At-Bay has experienced rapid growth, as evidenced by its inclusion on prestigious lists such as Forbes’ Fintech 50 and Fortune’s Cyber 60. The company’s innovative approach to combining insurance and security has positioned it as a leader in the InsurSec space.

In conclusion, At-Bay represents a new breed of insurance provider, leveraging technology and expertise to offer comprehensive protection for businesses in an increasingly digital world. With its strong leadership team, innovative products, and rapid growth, At-Bay is well-positioned to continue expanding and impacting the InsurSec industry.

At-Bay Cyber
Remote Desktop Protocol
At-Bay Cyber Insurance: Remote Desktop Protocol (RDP)

At-Bay Cyber Insurance
Remote Desktop Protocol (RDP)

At-Bay Cyber provides an overview of Remote Desktop Protocol (RDP) and its significance in cybersecurity, particularly in the context of ransomware attacks and the services offered by At-Bay.

Remote Desktop Protocol (RDP)

RDP is a server connection provided by Microsoft and other operating systems that enables users to connect to other computers over a network remotely. With the increased remote work, open RDP ports have become a prime target for cybercriminals.

Cybersecurity Risks

As of November 2020, over 3.5 million internet-connected devices had externally facing RDP ports. More alarmingly, more than 50% of all ransomware attacks in Q4 2020 were attributed to compromised RDP. The document emphasizes that an open RDP port is currently the most significant ransomware attack vulnerability for most businesses.

At-Bay’s Approach to Cybersecurity

At-Bay offers a proactive approach to managing cyber risks associated with RDP:

1. Security Scans: The company conducts sophisticated security scans for every business they quote, specifically looking for vulnerabilities like open RDP ports.

2. Active Risk Monitoring: At-Bay employs active risk monitoring technology to continuously scan for cyber threats throughout the duration of each policy.

3. Effective Results: This proactive approach has proven highly effective in reducing ransomware attacks. At-Bay reports that their ransomware claims frequency is 5 times lower than the industry average.

Vulnerability Detection and Response

When At-Bay detects a vulnerability, they take the following steps:

1. At Quoting Stage: If an open RDP port is identified during the quoting process, At-Bay provides recommendations to address the vulnerability quickly and securely.

2. During the Policy Period: If a new vulnerability is detected while a policy is active, At-Bay immediately alerts the insured business and their broker.

3. Technical Support: When necessary, At-Bay offers recommendations to the insured business’s technical team on how to resolve the issue while maintaining functionality securely.

4. Secure Alternatives: If an open RDP is required for business operations, At-Bay recommends hiding the RDP behind a secure gateway, such as a virtual private network (VPN), and enabling network-level authentication.

In conclusion, the document highlights the critical nature of RDP vulnerabilities in the current cybersecurity landscape and showcases At-Bay’s comprehensive approach to identifying, monitoring, and addressing these risks for its clients.

At-Bay Cyber
Multi-Factor Authentication
At-Bay Cyber Insurance: Multi-Factor Authentication

At-Bay Cyber Insurance
Multi-Factor Authentication (MFA)

Multi-Factor Authentication (MFA) is a crucial security measure that requires users to provide multiple verification methods when accessing websites or applications. This security setting, sometimes called two-factor authentication (2FA), is a simple yet highly effective way to protect against ransomware and other cyber attacks.

Importance of MFA

MFA adds an extra layer of security, making it significantly more difficult for attackers to breach a system. Cybercriminals often use stolen usernames and passwords to gain unauthorized access before deploying ransomware. According to security experts, by implementing MFA, businesses can block 99% of account compromise attacks.

At-Bay’s Approach to Security

At-Bay, a cybersecurity company, emphasizes the importance of MFA in its security assessments. They conduct sophisticated security scans for every business they quote and inquire about MFA implementation during the quoting process. At-Bay typically extends full ransomware coverage for large, high-risk companies seeking larger limits if MFA is in place.

Recommended MFA Implementation

At-Bay recommends implementing MFA at all sensitive access points, including:

  • Email
  • Internal applications
  • Remote network access
  • External-facing systems

The most secure verification method is an authenticator application, such as Google Authenticator, which is preferred over text messages or phone calls.

Addressing Concerns About MFA

Some businesses worry that implementing MFA may disrupt employee workflows. However, At-Bay assures that this doesn’t have to be the case. Companies can configure MFA to require authenticator codes only during the initial setup process and when employees use new devices. Implementing MFA should not be complicated or expensive for businesses that outsource IT support.

Conclusion

Implementing MFA is a straightforward, cost-effective security measure that protects against cyber threats. At-Bay strongly recommends that businesses invest in MFA implementation proactively, emphasizing that it’s better to act now rather than waiting until it’s too late.

At-Bay Cyber
Active Risk Monitoring
At-Bay Cyber Insurance: Active Risk Management

At-Bay Cyber Insurance
Active Risk Monitoring

At-Bay’s active risk monitoring (ARM) is an innovative solution designed to address the dynamic nature of cyber risk in the insurance industry. This approach combines frequent security scans with an in-house security team to help insured businesses maintain their security throughout the year.

Key Features of Active Risk Monitoring

Continuous Vulnerability Detection: At-Bay conducts regular security scans of their insureds’ digital assets at the time of quoting and throughout the policy year. This ongoing process helps identify security issues that attackers commonly exploit.

Real-Time Security Alerts: At-Bay’s security team promptly alerts the insured and their broker when new vulnerabilities are detected. These alerts focus on critical and time-sensitive vulnerabilities highly linked to potential losses.

Rapid Mitigation Support: The security team provides recommendations on how to resolve identified issues, helping insureds patch vulnerable software five times faster than average.

Benefits of Active Risk Monitoring

1. Reduced Ransomware Incidents: At-Bay customers experience five times fewer ransomware incidents than the industry average through active risk monitoring.

2. Improved Vulnerability Detection: At-Bay uncovers 80% of the Remote Desktop Protocol (RDP) risk that one-time scans miss.

3. Enhanced Underwriting Decisions: ARM serves as a feedback loop, providing immediate security insights that inform better underwriting decisions.

Types of Vulnerabilities Monitored

At-Bay’s active risk monitoring focuses on various security issues, including:

  • Vulnerable software
  • Unprotected email services
  • Exposed system entry points
  • Missing password protections
  • Unpatched business-critical systems
  • Software exploits targeting core infrastructure
  • Targeted protocols and services, such as RDP

Comprehensive Approach

At-Bay’s active risk monitoring offers a comprehensive approach to managing cyber risk, providing continuous protection and support to insured businesses throughout their policy year. This proactive strategy helps businesses stay ahead of emerging threats and significantly reduces the likelihood of cyber incidents.

At-Bay Cyber
Data Recovery

At-Bay Cyber Insurance: Backup Breakdown

At-Bay Cyber Insurance
Backup Breakdown: Data Recovery

This document, titled “Backup Breakdown: How Data Recovery Impacts the Outcome of Cyberattacks,” is a comprehensive report by At-Bay’s Cyber Research team analyzing the effectiveness of backups in mitigating ransomware attacks. The study examined 186 ransomware claims from At-Bay’s database of 50,000 policy years.

Key findings include:

1. While 92% of policyholders reported having backups, 31% failed to restore data when needed.

2. Successful backup restoration reduced claim severity by 41% compared to failed restorations.

3. Cloud backup solutions had the highest recovery rate at 80%, followed by hybrid (67%), onsite (56%), and offsite (55%).

4. Organizations with successful backups were 3 times less likely to pay a ransom than those with failed backups.

5. Businesses with cloud backups paid ransoms least often (27%), while those with offsite backups paid most frequently (67%).

The report highlights that effective backup strategies can significantly reduce cyber insurance premiums, potentially by up to 25% on average. It also provides hypothetical insurance pricing examples based on company size and backup architecture.

At-Bay’s Incident Response team offers advice for enhancing backup strategies, including:

1. Understanding how IT systems work together
2. Implementing strong password protection policies
3. Investing in adequate internet bandwidth
4. Regularly testing backup integrity

At-Bay emphasizes that backups are just one part of a holistic cybersecurity plan, which should include strong security measures, regular system updates, employee training, and a robust business continuity plan.

The report underscores the importance of cloud-based backups in limiting risk and providing resilience. It advises organizations to pay attention to factors that impact successful restorations, such as network bandwidth, data integrity, and system inventory. The document recommends partnering with an InsurSec provider like At-Bay to ensure a strong backup strategy is in place.

At-Bay Cyber
Ransomware Insights
At-Bay Cyber Insurance: Ransomware Insight Attack Prevention

At-Bay Cyber Insurance
Ransomware Insights & Attack Prevention

At-Bay provides insights into ransomware attacks and prevention strategies, highlighting the growing threat to businesses and At-Bay’s effective approach to risk management. The average ransom payment increased by 43% to over $220,000 in Q1 2021, underscoring the severity of the issue.

Key Prevention Strategies

Secure Email Gateway (SEG)

SEG is crucial for protecting against phishing, which accounts for over 25% of ransomware attacks. At-Bay’s data shows that 67% of attacks affected businesses without SEG. The document recommends implementing SEG software, especially for non-Gmail users, with specific suggestions for Office365 users.

Multi-Factor Authorization (MFA)

MFA is a simple yet effective method to prevent 99% of account compromise attacks. It requires users to provide multiple verification methods to access systems. The document advises implementing MFA at all sensitive access points, preferring authenticator applications over text messages or phone calls.

Data Backups

Comprehensive data backups are essential for recovering from ransomware attacks without paying the ransom. The document recommends following the “3-2-1 Rule”: three copies of data stored across two different mediums, with one copy kept offsite. Without backups, businesses may face average costs of $732,000 to restore data from scratch.

Remote Desktop Protocol (RDP)

An open RDP port is identified as the biggest ransomware attack vulnerability, responsible for over 50% of attacks in Q4 2020. The document suggests either addressing this vulnerability quickly or, if RDP is necessary, hiding it behind a secure gateway like a VPN and enabling network-level authentication.

At-Bay’s Approach

At-Bay’s proactive tactics have resulted in a ransomware claims frequency that is 5 times lower than the industry average. This success demonstrates the effectiveness of their modern approach to risk management and their commitment to the market.

At-Bay emphasizes the importance of implementing these preventive measures to reduce the risk of ransomware attacks significantly. By focusing on email security, multi-factor authentication, data backups, and secure remote access, businesses can better protect themselves against this growing cyber threat.

At-Bay Cyber
Social Engineering
At-Bay Cyber Insurance: Financial Fraud

At-Bay Cyber Insurance
Claim Case Study: Financial Fraud- Social Engineering

At-Bay presents a case study of a financial fraud incident handled by At-Bay, an insurance provider specializing in cybersecurity. The case involves a financial lending company in Texas that fell victim to a social engineering attack through email compromise.

The Incident

The target company, a small financial lending firm with 2-10 employees and revenue between $5M-$10M, received fraudulent ACH instructions from a compromised email account of a trusted vendor. As a result, the company wired nearly $100,000 to a fraudulent account. The fraud was discovered two days later when the insured company and the vendor realized the funds had been misdirected.

At-Bay’s Response

At-Bay’s claims team responded promptly and efficiently to the incident:

1. The claim was reported to At-Bay after the insured confirmed they couldn’t recover the payment.
2. Within 24 hours, an At-Bay adjuster contacted the insured to gather details and request necessary documentation.
3. The incident was classified as a first-party Social Engineering event, triggering coverage under the Financial Fraud Insuring Agreement.
4. Over the next two weeks, the insured provided the required documentation to At-Bay.
5. At-Bay then proceeded with the compliance process to issue payment.

Resolution

At-Bay resolved the claim swiftly, paying the insured in full for the loss (minus retention) less than 30 days after the claim was reported. This prompt response and resolution earned high praise from the broker, who stated, “This is the best claims handling I’ve ever seen on a financial fraud claim.”

At-Bay’s Approach

At-Bay highlights it’s role as an “InsurSec provider for the digital age.” Their approach combines advanced technology with insurance and security expertise to offer comprehensive protection for modern businesses. This integrated strategy aims to address the cybersecurity gap for small and medium-sized businesses by providing end-to-end protection that includes security measures, threat intelligence, and human expertise.

This case study demonstrates At-Bay’s efficiency in handling cybersecurity insurance claims, particularly in cases of financial fraud resulting from social engineering attacks. Their quick response time, clear communication with the insured, and prompt payment resolution showcase their commitment to providing their clients with effective cybersecurity protection and insurance services.

At-Bay Cyber
MPL Extension
At-Bay Cyber Insurance: MPL Extension Coverage

At-Bay Cyber Insurance
Miscellaneous Professional Liability (MPL) Extension

This document outlines the Miscellaneous Professional Liability (MPL) Extension Coverage offered by At-Bay as part of their blended Tech E&O and Cyber policy. The document is structured as a Frequently Asked Questions (FAQ) section, providing key information about the coverage and its applicability.

Why Add MPL Coverage?

Integrating technology with traditional products and services has created potential coverage gaps between standard E&O policies and actual E&O risks. At-Bay’s blended coverage, including MPL, aims to address these gaps and simplify insurance purchasing. This coverage is particularly relevant for businesses whose professional services involve technology services/products and other specified services.

Coverage Provision

The MPL coverage is provided as an extension to At-Bay’s current Tech E&O insurance product. Brokers can request quotes online through the Broker Platform or directly from an underwriter.

Classes of Business

At-Bay tailors the coverage definition based on the description of services provided in the insured’s application. The document lists preferred classes of business, which are categorized into three main groups:

1. Advertising and Marketing: Including advertising agents, consultants, direct mail/display advertising, event planners, graphic designers, telemarketing firms, and videographers.

2. Business Services: Encompassing billing services, call center services, bookkeeping services, document shredding or storing services, printer services, litigation support services, and telemarketing services.

3. Miscellaneous Consulting: Covering a wide range of consulting services such as audio/visual, business management, strategic planning, sales and marketing, market research, communications/media/public relations, procurement and project planning, training and development, energy and green consulting, and compensation and benefits consulting.

It’s worth noting that At-Bay is open to considering classes outside of this prescribed list on a case-by-case basis, demonstrating flexibility in their underwriting approach.

At-Bay emphasizes the importance of this coverage extension in addressing the evolving landscape of professional services and the increasing integration of technology across various industries. By offering this blended coverage, At-Bay aims to provide a more comprehensive insurance solution that better aligns with the current business environment and the associated risks.

At-Bay Cyber
InsuSec Report – Ransomware

At-Bay Cyber Insurance: InfoSec Ransomware

At-Bay Cyber Insurance
InfoSec Ransomware

The 2024 InsurSec Report: Ransomware Edition, published by At-Bay, provides an analysis of ransomware trends and cybercrime data based on claims information from 2021 through 2023. The report highlights several key findings:

Ransomware frequency increased by 64% in 2023 compared to 2022, with direct ransomware claims rising by 17% and indirect ransomware claims surging by 415%. Larger companies experienced higher frequencies of direct ransomware attacks, while indirect ransomware impacted companies across all revenue bands nearly equally.

The average direct ransomware severity decreased by 24% to $370,000 in 2023, while indirect ransomware severity dropped by 55% to $47,000. Law firms experienced the highest severity for direct ransomware attacks, 32% higher than the average.

Remote access tools accounted for 58% of ransomware claims where an entry vector could be determined. Self-managed VPNs, particularly Cisco ASA and Citrix SSL, were associated with a significantly higher risk of security incidents than cloud-hosted VPNs or other remote access technologies.

The average ransom demand in 2023 was $1.26 million, but only 46% of incidents resulted in a ransom payment. The average amount paid ($282,000) was 77% lower than the initial demand. Larger companies received higher average ransom demands and paid higher amounts than smaller counterparts.

LockBit and BlackCat/ALPHV were the most prevalent ransomware strains, accounting for 35% of all claims tied to direct ransomware attacks. The report identified 41 unique strains of ransomware used in 2023.

Over half of ransomware attacks in 2023 involved both encryption and exfiltration, a tactic referred to as “double leverage.” This approach resulted in the highest median ransom paid ($195,000) compared to encryption-only ($66,000) or exfiltration-only ($110,000) incidents.

The report concludes that while ransomware attacks continue to be costly for businesses of all sizes, the focus has shifted to targeting self-managed VPNs and employing double-leverage tactics. It emphasizes the importance of managed security and the need for higher accountability and scrutiny over perimeter-facing technology, especially remote access tools.

At-Bay Cyber
Proactive Security
At-Bay Cyber Insurance: InfoSec Can Drive an Effective Proactive Security Strategy

At-Bay Cyber Insurance
InfoSec – Proactive Security

This document, titled “InsurSec Can Drive An Effective Proactive Security Strategy,” presents findings from a survey conducted by Omdia in the first quarter of 2024. The survey involved over 400 security decision-makers from North America, the UK, France, and Germany, focusing on proactive security solutions and cyber insurance.

Key findings include:

1. Proactive Security Adoption

  • Over 70% of respondents increased spending on proactive security solutions compared to the previous year.
  • Larger and more mature companies are more likely to adopt proactive security solutions strategically.

2. Security Challenges

  • Organizations of all sizes face similar productivity challenges, including dealing with false positive alerts, maintaining legacy infrastructure, and completing administrative tasks related to compliance and cyber insurance.
  • IT/security teams spend less than 50% of their time focused on improving security or helping business growth.

3. Cyber Insurance

  • 72% of respondents view cyber insurance as critical or important to their organization.
  • 79% of respondents either have cyber insurance or plan to acquire it within 12 months.
  • Cyber insurance requirements are a major driver of cyber spend for 43% of all respondents, rising to 52% among the largest organizations.

4. Security Maturity

  • Larger organizations tend to have higher security maturity levels.
  • 84% of the most security-mature respondents currently have cyber insurance.

5. InsurSec Approach

  • Only 13% of respondents work proactively with their insurer to reduce cyber risk.
  • InsurSec companies, which combine cybersecurity products and services with insurance offerings, are emerging as a comprehensive solution for prevention and protection.

At-Bay emphasizes the importance of proactive security solutions and cyber insurance in modern cybersecurity strategies. It suggests that organizations, especially smaller and less mature ones, could benefit from partnering with cyber insurance providers to improve their security posture. The report also highlights the potential of InsurSec companies in providing data-driven expertise for assessing and managing cyber risk.

At-Bay Cyber
Overcoming Ransomware
At-Bay Cyber Insurance: Overcoming Ransomware

At-Bay Cyber Insurance
Overcoming Ransomware

This document, titled “Overcoming Ransomware: A Blueprint for Thriving in a Digital World,” presents At-Bay’s approach to addressing the growing threat of ransomware attacks in the cyber insurance industry. The report highlights the severity of ransomware, which accounts for an estimated 60% of all cyber insurance claims in the United States, with the average ransom payment nearly doubling in the past year and total recovery costs reaching $1.8 million per incident.

At-Bay’s strategy focuses on active risk monitoring, which combines frequent scans to detect vulnerable businesses in their portfolio and an in-house security team to help resolve issues before attackers can exploit them. This approach has resulted in a ransomware attack frequency seven times lower than the industry average in At-Bay’s portfolio.

The document emphasizes two main attack vectors for ransomware:

1. Remote Desktop Protocol (RDP)

Responsible for nearly 50% of all ransomware attacks. At-Bay found that 10.1% of businesses have an open RDP port during the policy year, five times greater than identified by a one-time scan at underwriting.

2. Software vulnerabilities:

Account for nearly 20% of all ransomware incidents. At-Bay’s active risk monitoring approach achieves 80% remediation of vulnerable software within one month, compared to the industry average of five months.

The report also highlights the limitations of traditional underwriting methods, which typically assess cyber risk only once a year. At-Bay’s approach involves continuous monitoring and rapid response to new threats, enabling them to update underwriting rules and deploy new technical scans within days.

At-Bay presents its blueprint for managing cyber risk in the digital age, emphasizing the importance of active risk monitoring, technical analysis at underwriting, and a scalable cloud technology stack. This approach allows At-Bay to provide broad coverage at affordable prices while significantly reducing the impact of ransomware on their insurance portfolio.

At-Bay Cyber
Lawyers Cyber
At-Bay Cyber Insurance: Lawyers Cyber Insurance

At-Bay Cyber Insurance
Lawyers Cyber Insurance

This document provides an overview of cyber insurance for law firms, focusing on the services offered by At-Bay, a specialized insurance company. The document highlights the following key points:

Cyber Risk for Law Firms

Law firms are particularly vulnerable to cyber threats due to their often weak cybersecurity practices. The main risks include:

  • Confidential Information: Law firms handle sensitive client data, making them attractive targets for cybercriminals.
  • Social Engineering: Employees can be tricked into transferring funds or information to malicious actors.
  • Ransomware: Attackers can encrypt critical data and demand payment for its release.

At-Bay’s Approach

At-Bay differentiates itself by:

  • Employing a team of security professionals alongside insurance experts.
  • Using an automated reconnaissance engine to monitor clients’ technology stacks continuously.
  • Providing real-time vulnerability notifications and assistance to address security issues.

Coverage Highlights

At-Bay offers comprehensive cyber insurance coverage, including:

  • Full prior acts coverage
  • Full limits for direct and contingent system failure
  • Reputational harm coverage
  • Enhanced settlement provision
  • Coverage for financial fraud, including social engineering
  • Various additional coverages such as HIPAA/HITECH betterment and invoice manipulation

Claims Examples

The document provides two specific examples of cyber incidents affecting law firms:

1. Confidential Information Breach: A partner accidentally emailed confidential litigation logs to an unintended recipient, costing $173,000.

2. Ransomware Attack: A law firm’s network was infected with ransomware, leading to a total cost of $191,000, including ransom payment, forensics, and data reconstitution.

At-Bay emphasizes the importance of cyber insurance for law firms and highlights At-Bay’s unique approach to risk assessment, continuous monitoring, and comprehensive coverage tailored to the legal industry’s specific needs.

Cyber Insurance: Your Business’s Safety Net

Learn More about At-Bay Coverage & Pricing

No Spam. Promise!

At-Bay: Defending Cyber Crime

At-Bay discusses combining cyber insurance with security services (InsurSec). They explain that their company’s perspective on cyber threats is based on empirical data from insurance claims and investigations, providing a more objective view than other sources. The speakers highlight the top five risks for businesses they insure, with 80% of their claims resulting from these issues: unpatched vulnerabilities, exposed remote access, stolen credentials, ineffective backups, and email security.

The speakers delve into each risk, emphasizing the importance of basic security measures like patching systems, controlling remote access, implementing multi-factor authentication, maintaining backups, and improving email security. They stress that many attacks exploit simple vulnerabilities rather than using sophisticated methods and that proper implementation of basic security controls can significantly mitigate risks. The discussion also touches on the ransomware ecosystem, explaining how different criminal groups specialize in various aspects of attacks, from initial access to ransomware development and deployment.

The video concludes with a case study of a large e-discovery company that fell victim to a ransomware attack. Despite seemingly adequate security measures, the company suffered a significant breach due to a single phishing email and a lack of basic security controls like multi-factor authentication. The attack resulted in extensive downtime, financial losses, and company reputation damage. The speakers emphasize that this case demonstrates how even companies with substantial resources can fall victim to attacks if they neglect fundamental security practices.

What is Cyber Insurance

Cyber insurance is a specialized insurance product designed to protect businesses against the financial losses and disruptions that can arise from cyber-related incidents, such as data breaches, ransomware attacks, and other cyber threats. This type of insurance typically covers costs related to data recovery, legal fees, notification of affected parties, regulatory fines, and business interruption losses. Businesses need cyber insurance to mitigate the financial impact of cyber-attacks, ensuring they can quickly recover and continue operations while minimizing the potential damage to their reputation and customer trust.

What does cyber insurance cover?

Cyber insurance typically covers costs related to data breaches, including data recovery, legal fees, notification of affected parties, and regulatory fines. It may also cover business interruption losses and expenses related to restoring business operations.

Why is cyber insurance important for SMBs?

Small businesses, often with potentially weaker security measures, are prime targets for cyber attacks. Cyber insurance is a crucial tool in managing the financial burden of such attacks, ensuring they can recover quickly and sustain minimal operational disruption.

How is the cost of cyber insurance determined?

Factors such as the size of the business, the industry, the amount and type of data handled, and the company’s existing cybersecurity measures influence the cost of cyber insurance. Higher-risk businesses or those with poor security practices may face higher premiums.

What are the exclusions in a cyber insurance policy?

Standard exclusions in cyber insurance policies include claims related to pre-existing breaches, acts of war or terrorism, and the failure to maintain minimum security standards. It’s essential for businesses to review policy details to understand specific exclusions and limitations.