Ransomware and Cyberinsurance

James Carter, Omid Safa, and Jared Zola

At the beginning of 2017, many publications predicted that ransomware would be one of the most significant cyber threats of the year. The year is not even half over and that prediction appears to be coming true.

On Friday, May 12, 2017, tens of thousands of organizations and companies across the world fell victim to a virulent form of ransomware known as “WannaCry.” The global event has been recognized as one of the largest cyberattacks ever. Continue reading “Ransomware and Cyberinsurance”

Managing Cyber Risks: Tips for Purchasing Insurance That Works for Your Business (Part 2)

Omid SafaJames S. Carter, and Jared Zola

This blog post is Part Two of our blog series and highlights several strategies for maximizing the value of a cyber insurance purchase. Part One of the blog series, highlighted the need for an organization to reevaluate its insurance coverage as part of a comprehensive strategy for addressing emerging cyber risks and outlined several ‘‘big picture’’ considerations relevant to any organization contemplating a cyber insurance purchase. This second part focuses on several strategies to consider when negotiating a cyber insurance purchase and seeking to customize a policy to align with an organization’s particular business needs. Continue reading “Managing Cyber Risks: Tips for Purchasing Insurance That Works for Your Business (Part 2)”

Cyberinsurance Buyers Beware! Is the Past Prologue?

James S. CarterOmid Safa, and Jared Zola

 

 

 

 

More insurers are offering stand-alone cyberinsurance policies than ever before. At the same time, there are very few decisions by courts regarding this relatively new breed of insurance policy. Most of the decisions construing insurance coverage for cyber risks to date involve other types of insurance policies, such as commercial general liability (“CGL”) and commercial crime policies. Although such cases may not involve cyber policies per se, buyers trying to navigate the cyberinsurance market ignore them at their peril. They illustrate the types of cyber incidents that have generated insurance coverage disputes significant enough to be litigated to decision. Familiarity with such cases can help buyers select and negotiate cyber risk policies with wording aimed at minimizing such disputes and increasing the scope and certainty of the coverage available to the policyholder.

Continue reading “Cyberinsurance Buyers Beware! Is the Past Prologue?”

Managing Cyber Risks: Tips for Purchasing Insurance That Works for Your Business (Part 1)

Omid Safa, James S. Carter, and Jared Zola

Safa, OmidCarter, James S.Zola, Jared With information technology impacting nearly every aspect of commerce in our “wired” economy, few issues present more concern to businesses today than cybersecurity. Cyberattacks continue to proliferate at an alarming rate and the threats facing companies continue to evolve and become more sophisticated with each passing day. The legal and financial costs associated with such events also grow more serious, as legislators, regulators, and customers insist on greater protection and impose more stringent requirements. Meanwhile, insurance companies have sought to limit the coverage available under traditional insurance policies with new exclusions aimed at cyber-related risks. As a result, it has become imperative for organizations to reevaluate their cybersecurity protocols and breach response plans—and their insurance coverage assets to help offset losses and liabilities associated with such events when all other safeguards fail. Increasingly, this means that companies must consider purchasing cyber-specific coverage to insure against these emerging risks and address the potential gaps in their traditional insurance programs. Continue reading “Managing Cyber Risks: Tips for Purchasing Insurance That Works for Your Business (Part 1)”

The Ins and Outs of Cyber Extortion Insurance Coverage

James S. Carter

Carter, James S.According to FBI data, cyber-criminals are on pace this year to collect approximately $1 billion through cyber extortion. This is a practice in which extortionists threaten to cripple a computer system or obtain and/or release confidential information unless their demands (usually for money) are satisfied. Although much of this money is coerced from individuals in increments of several hundred dollars, more and more organizations are finding themselves in cyber extortionists’ crosshairs, including documented incidents against local governments, schools, hospitals and businesses in a range of industries. As cyber extortionists increasingly target organizations rather than individuals, security professionals fear the costs of cyber extortion incidents could dramatically increase. Continue reading “The Ins and Outs of Cyber Extortion Insurance Coverage”

How to Use the Attack on Dyn to Improve Your Companies’ Cyberinsurance

James S. Carter

Carter, James S.October was National Cyber Security Awareness month. The goal was to raise awareness about the importance of cybersecurity. That message was underscored on October 21, 2016, when attackers staged a massive cyberattack against Dyn, a company that provides services that help Internet users connect to Dyn’s customers’ websites. The attack on Dyn had the effect of disrupting access to major websites, such as Twitter, Netflix, and The New York Times, as well as perhaps lesser known but no less critical websites that many companies rely on for hosted services that they use to operate their businesses. Continue reading “How to Use the Attack on Dyn to Improve Your Companies’ Cyberinsurance”

Insurance Liability, Risks, and Options in Augmented Reality: Catch ‘Em All

Kevin R. Doherty, Kevin J. Bruno and James S. Carter

Kevin R. Doherty Kevin J. Bruno Carter, James S.The rising Pokémon Go sensation has dramatically increased the popularity of augmented reality games, but it has also brought with it increased risks and liabilities for both game users and developers alike. For those who don’t know, Pokémon Go is a mobile app that, although released just last month, has already been downloaded over 75 million times, generated more than $75 million in revenue, and boasts daily usage statistics that have exceeded Snapchat, Twitter, Instagram, and Facebook. It’s a location-based augmented reality game that allows users to partake in virtual scavenger hunts. Using the user’s GPS and mobile camera, players are encouraged to explore their surroundings, seek out animated characters in real world places, and “catch ‘em all.” The characters are overlaid on the player’s screen and displayed as if they exist in reality. Unfortunately, distracted players on the hunt can end up wandering (or driving) into places they shouldn’t be, and becoming injured or injuring others as a result.

The number of Pokémon Go calamities increases daily, with incidents ranging from the mundane to the absurd and dangerous. In the few short weeks since its debut, users have experienced or caused numerous personal injuries, property damage, and car accidents. Some users have become stuck in trees and locked in cemeteries, while more serious incidents involve users straying onto train tracks, falling off cliffs, or entering restricted nuclear power facilities—all while on the hunt for Pokémon characters. Still others in pursuit of Pokémon have trespassed on private property, and some users have even been robbed after being targeted and led to specific locations using the app. Continue reading “Insurance Liability, Risks, and Options in Augmented Reality: Catch ‘Em All”