A Comprehensive Guide To Cyber Insurance | Ask biBERK (2024)

November 07, 2023 | Cyber

Every business owner should be aware of—and take action on—the risk of cyberattacks. The potential continues to grow steadily as cybercriminals find new and better ways to breach digital defenses. Some of their many methods include:

  • Phishing attacks using emails that appear to come from trusted sources
  • Ransomware attacks that “lockdown” the victim’s computers or networks—and threaten to release the data unless they pay a ransom
  • Monster-in-the-middle (MITM) attacks that involve a cybercriminal illegally viewing data sent between two people, computers, or networks
  • Brute force attacks where a “bot” rapidly tries a long list of passwords to gain access to a computer or network

And cybercriminals don’t just target large companies.

The belief that only organizations with “deep pockets” are victims of cyberattacks is understandable. However, some cybercriminals focus on small businesses, feeling they have fewer cybersecurity resources and their network and computer defenses are easier to breach. Consequently, it’s critical that companies of all sizes take steps to address their risk of cyberattacks.

A Comprehensive Guide To Cyber Insurance | Ask biBERK (1)

Cyber Insurance: Vital Financial Protection for Your Business

It goes without saying that the least damaging cyberattack is one that fails. Small businesses should do all they can to protect their networks, computers, and other devices from illegal access. But cybercriminals are relentless, and breaches occur even in the most carefully controlled environments.

Fortunately, bibERK offers another layer of protection from cyberattacks: cyber insurance. It provides financial protection for a business when a hacker steals sensitive information by gaining access to its network, computers, or other devices, steals sensitive information, and uses it to commit fraud or is likely to do so. It can also cover the accidental release of sensitive information.

Read on to learn more about this crucial coverage, including what it covers.

What is Cyber Insurance?

Also referred to as cyber liability insurance, cybersecurity insurance, and cyberattack insurance, cyber insurancecovers costs related to the compromise of sensitive data from a successful cyberattack.

Imagine you arrive at work one morning and discover someone has hacked into your computer network and stolen sensitive customer information. This might be credit card numbers, Social Security numbers, or other information a criminal could use to make unauthorized purchases and commit other types of fraud.

Immediately, you know you’ve got to take action to minimize the impact of the breach, including:

  • Notifying your customers about the incident
  • Providing customers with informational materials to help them protect themselves in the wake of the breach
  • Setting up a “helpline” people can contact for guidance and support
  • Arranging credit report monitoring for affected customers
  • Preparing for potential lawsuits from customers (and later, paying for things like your legal defense and damages awarded)

All of these actions have costs, and the sum can be significant. Without cyber liability insurance, your business must pay these expenses. But when you have coverage from biBERK, these services are covered after a data compromise.

What Does biBERK Cyber Insurance Cover?

Cyberattacks can have wide-ranging consequences. biBERK cyber insurance policies provide cost-effective protection from the most common costs of data compromise from a cyberattack.

Your biBERK policy addresses what are called response costs, which are categorized as first-party and third-party expenses. First-party response expenses (incurred by the business) include:

  • Notifying affected individuals
  • Providing services for affected individuals
  • Securing public relations services
  • Conducting forensic IT and legal reviews

A Comprehensive Guide To Cyber Insurance | Ask biBERK (2)

Third-party response expenses (incurred by others or related to their losses) are your legal defense and your liability costs—meaning money a court orders you to pay to customers.

The expenses your biBERK cyber insurance covers are based on the type of policy to which your coverage is added. To maximize convenience for policyholders, we add our cyber insurance coverage to other biBERK policies, such as general liability insurance or a business owners policy (BOP).

What Does biBERK Cyber Insurance NOT Cover?

As noted above, biBERK cyber liability insurance protects businesses from the most common data compromise costs. Other expenses that can result from a breach and are not covered by our cyber insurance include:

  • Business interruption losses. This is lost income from a temporary halt in business operations caused by a cyberattack.
  • Technology errors and omissions claims. These are claims by customers because they are unable to access business services due to a cyberattack that has prevented a business from performing.
  • Dependent business interruption losses. This includes things like interruption of services from a third-party provider due to the failure of the insured’s network.
  • Cyber extortion losses. These are losses such as payments to keep cybercriminals from releasing sensitive stolen data.
  • Payment card liability. This liability is related to the improper handling and protection of payment card data (so-called PCI or DSS compliance).
  • Regulatory defense costs. These are legal fees to defend the business from accusations it violated regulations such as for safe handling of credit card information.
  • Data recovery costs. These are expenses related to retrieving data.
  • Stolen funds. This means replacing money stolen by a cybercriminal.
  • Telephone fraud. This refers to losses from an employee providing sensitive information to someone in a phone call.
  • Fraudulent instruction. This is when an employee follows directions provided under false pretenses by a third party.
  • Funds transfers. This is money moved electronically into the possession of a cybercriminal.
  • Criminal rewards. This is money offered for information on a cybercrime and those responsible.
  • Cybersecurity enhancements. These are costs related to upgrading cyber defenses to prevent future attacks.

It’s essential to understand precisely what a biBERK cyber liability insurance policy covers and doesn’t cover. If you are unclear about any aspect of biBERK coverage you have or are considering, you should talk with one of our licensed insurance experts.

A Comprehensive Guide To Cyber Insurance | Ask biBERK (3)

What Does a Cyber Insurance Policy Cost?

biBERK cyber insurance provides cost-effective protection from expenses related to data compromise from cyberattacks—especially when you think about the potential financial and reputational damage from an incident. Remember that your business faces immediate costs to address the breach but also the risk of long-term harm if you don’t have the resources to manage an incident promptly, completely, and to your customers’ satisfaction.

A biBERK cyber insurance policy costs $85-$200 per year (on average) for base coverage. Based on the policy to which it’s added, it can provide $50,000 for response expenses and $50,000 for defense liability. And our cyber insurance coverage comes with low down payments.

We also reduce the time required to respond to a breach by enabling you to report a claim quickly and efficiently online. The last thing you need when dealing with a cyberattack is a complicated claims process!

Get an instant, self-service, online quoteto determine your cyber insurance cost.

8 Steps for Protecting Your Business From Cyberattacks

You can reduce your company’s risk of being a victim of cybercrime by taking these steps:

  1. Create a cybersecurity plan. It can be as simple as a document with guidelines for keeping your devices, network, and data safe. You can also find templates for more detailed documents online, such as the Federal Communications Commission’s Cyberplanner.
  2. Evaluate your cybersecurity strategy regularly. Follow an internal checklist, use the services of a cybersecurity company, or get a free vulnerability scanning through the U.S. Cybersecurity and Infrastructure Security Agency (CISA).
  3. Defend your technology. Use data encryption wherever and whenever possible, implement an internet firewall, password-protect your routers, etc.
  4. Use multi-factor authentication where appropriate. Require users to do more than enter their user ID and password to access a system. For example, you can have them enter a code sent to their phone to complete the login process.
  5. Keep your antivirus software updated. Cybercriminals continually modify their viruses, so it’s crucial to have the latest antivirus software active at all times.
  6. Back up sensitive data. You should have strong data security measures in place, provide access only to those who need it, and maintain a copy of your critical data in a safe location.
  7. Ensure remote employees can share data securely. If team members collaborate remotely and their work involves sharing sensitive information, ensure they can do so safely, such as through a secure cloud-based data-sharing service.
  8. Educate your employees. People using your computers and other devices must understand the importance of not clicking on links in emails, avoiding suspicious downloads, using strong passwords, etc.

Frequently Asked Questions About Cyber Insurance Coverage

Below are some common questions and answers about cyberattack insurance.

What types of businesses need cyber insurance?

Any business that collects sensitive information about its customers or clients should have cyber insurance. In today’s digital world, that is nearly all companies. Sensitive information includes credit card numbers, Social Security numbers, health or medical records, or any other information a cybercriminal could use to commit fraud.

What does cyber insurance cost?

biBERK cyber insurance costs $85-$200 per year on average for base coverage, which includes $50,000 for response expenses and $50,000 of defense liability.

How does a cyberattack insurance claim work?

You can report a cyber insurance claim on the biBERK website. Our claims team will then connect with you and guide you through the process.

What does biBERK cyber liability insurance cover?

Our cost-effective cyber insurance protects your business from the most common costs of a data compromise from a cyberattack, including forensic IT review, legal review, notification of affected individuals, services for affected individuals, public relations services, legal defense expenses, and third-party damage claims. Coverage is based on the type of policy to which you add cyber insurance. Contact usfor details.

What does biBERK cyber liability insurance NOT cover?

Certain costs don’t fall under our cyber insurance coverage, including system outage damages, business interruption, PCI/DSS compliance violations, extortion, stolen funds, and others. Contact usfor details.

Trust biBERK for Crucial Cyber Insurance Coverage

Proper cyber insurance coverage for your business has many benefits—from financial and reputational protection to peace of mind. When you buy cyber insurance from biBERK, you get a great balance of coverage and price. You also get the confidence of knowing we’ll address covered incidents promptly and thoroughly.

biBERK is part of the Berkshire Hathaway Insurance Group, which has helped business owners protect their companies for over 75 years. Just as importantly, our friendly and knowledgeable team members are eager to assist you in finding the right coverage and to help you recover if your company suffers a cyberattack.

As an expert in cybersecurity and risk management, I've spent years delving into the intricate workings of cyber threats and protective measures. My expertise extends from understanding the nuances of various attack vectors to advising businesses on robust security strategies. Here's a breakdown of the concepts mentioned in the provided article:

  1. Phishing Attacks: These are deceptive attempts by cybercriminals to trick individuals into revealing sensitive information, often through emails that appear legitimate but are actually fraudulent.

  2. Ransomware Attacks: This type of attack involves malicious software that encrypts a victim's data and demands payment (a "ransom") for its release.

  3. Monster-in-the-Middle (MITM) Attacks: MITM attacks occur when a cybercriminal intercepts and possibly alters the communication between two parties, such as users and websites or systems.

  4. Brute Force Attacks: In these attacks, automated bots repeatedly attempt different combinations of passwords until they find the correct one to gain unauthorized access to a system.

  5. Cyber Insurance: This is a specialized insurance coverage designed to protect businesses from financial losses incurred due to cyber incidents, including data breaches and cyberattacks.

  6. Response Costs: These are expenses related to mitigating the aftermath of a cyber incident, including notifying affected individuals, providing support services, legal defense, and more.

  7. First-party Response Expenses: Costs incurred directly by the business affected by the cyber incident, such as forensic investigations, customer notification, and public relations services.

  8. Third-party Response Expenses: Costs incurred by others or related to their losses, including legal defense expenses and liability costs.

  9. Business Interruption Losses: Financial losses resulting from the disruption of business operations due to a cyber incident.

  10. Technology Errors and Omissions Claims: Claims by customers or clients against a business due to the failure of its technology or services.

  11. Cyber Extortion Losses: Costs associated with payments made to cybercriminals to prevent the release of sensitive data or to restore access to encrypted information.

  12. Regulatory Defense Costs: Legal expenses incurred in defending against regulatory investigations or actions related to cybersecurity compliance.

  13. Data Recovery Costs: Expenses related to restoring and recovering data lost or compromised during a cyber incident.

  14. Stolen Funds: Monetary losses resulting from unauthorized transactions or theft facilitated by a cyberattack.

  15. Telephone Fraud: Losses incurred due to fraudulent activities conducted over the phone, such as social engineering attacks.

  16. Fraudulent Instruction: Financial losses resulting from employees following instructions provided under false pretenses by malicious actors.

  17. Criminal Rewards: Money offered as rewards for information leading to the identification or apprehension of cybercriminals.

  18. Cybersecurity Enhancements: Costs associated with improving or upgrading cybersecurity measures to prevent future cyber incidents.

These concepts highlight the multifaceted nature of cyber threats and the importance of comprehensive cybersecurity measures, including risk management strategies like cyber insurance, to mitigate potential damages. If you have any further questions or need assistance in understanding these concepts in more detail, feel free to reach out.

A Comprehensive Guide To Cyber Insurance | Ask biBERK (2024)
Top Articles
Romantic Valentines Day Gifts for Husband - Winni
49 Thoughtful and Unique 50th Birthday Gifts for Women
What to Do For Dog Upset Stomach
What Dog Food is Most Recommended by Veterinarians?
Latest Posts
The Complete Guide: Fun Ideas for Planning a Woman’s 50th Birthday Party (Planning Worksheet Included) PART 1 of 2
Ultimate Stromboli Recipe (Video) - Lauren's Latest
Article information

Author: Allyn Kozey

Last Updated:

Views: 6471

Rating: 4.2 / 5 (63 voted)

Reviews: 94% of readers found this page helpful

Author information

Name: Allyn Kozey

Birthday: 1993-12-21

Address: Suite 454 40343 Larson Union, Port Melia, TX 16164

Phone: +2456904400762

Job: Investor Administrator

Hobby: Sketching, Puzzles, Pet, Mountaineering, Skydiving, Dowsing, Sports

Introduction: My name is Allyn Kozey, I am a outstanding, colorful, adventurous, encouraging, zealous, tender, helpful person who loves writing and wants to share my knowledge and understanding with you.