While headlines are dominated by major data breaches and, more recently, by audacious Distributed Denial of Service (DDoS) attacks, it is encryption ransomware and cyber extortion that is one of the fastest growing cybercrimes, reports AIG Europe.
The insurer, part of global group American International Group, has released details of European cyber claims received between 2013 and September 2016 – highlighting both most frequent and developing trends in the sector.
Ransomware and cyber extortion accounted for 16% of the cyber claims received by AIG in Europe, the Middle East and Africa (EMEA) during the period, with a further 4% of claims relating to other cyber extortions. There has, in particular been a proliferation of cyber extortion attacks in 2016.
“This year we have had a lot of notifications from businesses that were victims of ransomware type attacks, and nearly all of them had extortion elements to them as well,” said Noona Barlow, head of liabilities and financial lines claims, Europe.
“We are seeing cyber extortion and ransomware as one of the fastest growing areas of claims. In cases of cyber extortion, claims severity depends on the type of organisation, the level of business interruption caused and need for forensic investigation and system restoration.
“While ransom demands typically remain small, this form of extortion is a lucrative and relatively straightforward way of accessing ‘fast cash’ for cyber criminals and we can only see it growing in the future.”
Unsurprisingly, the majority of cyber claims currently emanate from industries that are required to notify customers if sensitive data has been compromised, with financial services accounting nearly a quarter (23%) of all AIG’s EMEA cyber claims received during the past three years, followed by communications, media and technology (18%), a category that includes telecommunications.
Extortion and ransomware however tend to be found across a wide range of industries – often without any obvious online or IT angle – and are as likely in smaller businesses as large, AIG Europe reports.
For example, an online gardening business that discovered ransomware was encrypting their files. While the small business did not have a significant amount of sensitive data that could have been compromised, they were unable to contact customers and access invoices.
The US Federal Deposit Insurance Corporation is suing nine European banks for allegedly contributing to the collapse of 39 US banks that had a collective value of more than $440bn (€375.6bn).
A study of the leadership pipeline at the UK’s FTSE 100 corporates shows modest progress, but many top companies still have no ethnic minority presence.
The world’s second-biggest economy will grow faster than previously predicted over the next four years, but the rate is unsustainable unless China addresses the problem says the International Monetary Fund.
The insurance industry will also benefit as private businesses increasingly bypass the public internet and communicate with one another direct, predicts Equinix.