<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=253481741744766&amp;ev=PageView&amp;noscript=1">

CSG Blog

The Dirty Loophole That Lets Insurance Companies Refuse to Cover a Cybercrime Theft in Your Business

Posted by Scott Spiro on Wednesday, 21 June 2017

pexels-photo-261625.jpeg

As hacking hit the headlines in the last few years — most recently the global hack in May that targeted companies both large and small — insurance policies to protect businesses against damage and lawsuits have become a very lucrative business indeed. Your company may already have cyber insurance, and that’s a good thing. But that doesn’t mean that you don’t have a job to do — or that the insurance will cover you no matter what.

The Basics of Cyber Insurance

When you buy a car, you get the warranty. But in order to keep that warranty valid, you have to perform regular maintenance at regularly scheduled times. If you neglect the car, and something fails, the warranty won’t cover it. You didn’t do your job, and the warranty only covers cars that have been taken care of.

Cyber Insurance Is All About prevention

Cyber insurance works the same way. If your company’s IT team isn’t keeping systems patched and up to date, taking active measures to prevent ransomware and other cybercrime attacks, and backing everything up in duplicate, it’s a lot like neglecting to maintain that car. And when something bad happens, like a cyber attack, the cyber insurance policy won’t be able to help you, just as a warranty policy won’t cover a neglected car.

Check out this real life policy exclusion we recently uncovered, which doesn’t cover damages “arising out of or resulting from the failure to, within a reasonable period of time, install customary software product updates and releases, or apply customary security-related software patches, to computers and other components of computer systems.” If your cyber insurance policy has a clause like that — and we guarantee that it does — then you’re only going to be able to collect if you take reasonable steps to prevent the crime in the first place.

Avoid IT Security Negligence

That doesn’t just mean you will have to pay a ransom out of pocket, by the way. If your security breach leaves client and partner data vulnerable, you could be sued for failing to protect that data. When your cyber insurance policy is voided because of IT security negligence, you won’t be covered against legal damages, either. This is not the kind of position you want to be in.

Is Not A Matter Of Signing A Cyber Insurance Policy Only

All of this is not to say that you shouldn’t have cyber insurance, or that it’s not going to pay out in the case of an unfortunate cyber event. It’s just a reminder that your job doesn’t end when you sign that insurance policy. You still have to make a reasonable effort to keep your systems secure — an effort you should be making anyway.

Contact us at (424) 393-1883, email scott.spiro[at]csgsupport.net, or visit http://www.csgsupport.net/free-assessment/ to schedule our Disaster Recovery Audit FREE of charge. Contact us TODAY to get scheduled!

Topics: Cybercrime, Insurance

FREE REPORT

What Should You Expect to Pay for IT Support in Los Angeles

Need IT support but don't how much it should cost? Download our FREE report to discover what most IT service companies in Los Angeles charge, what you should expect to pay for quality IT support, and how to get exactly what you need without unnecessary extras, hidden fees and fake, lowball estimates.

Fill out the form for your FREE executive report.

Recent Posts