News Releases

Chubb Data Shows Ransomware Attacks for 2019 Already Outpacing Total Number of Incidents in 2018
Oct 11, 2019

Chubb's most recent InFocus Report highlights continuing trend with manufacturing and professional services companies among the highest-risk industries

WHITEHOUSE STATION, N.J., Oct. 11, 2019 /PRNewswire/ -- In the 2019 third quarter edition of the Chubb Cyber InFocus Report, "Adapting to the New Realities of Cyber Risks," Chubb provides insight into the recent growth of ransomware attacks across industries and underscores best practices companies should take to combat the associated risks.

"Ransomware is not new, but has evolved over time," said Michael Tanenbaum, Head of Chubb Cyber North America. "In today's environment, the impact of a company's system becoming inoperable can result in severe and long-term disruption for a business. Some ransom demands have grown to the six-and seven-figure range, so it is critical for businesses to understand the increased sophistication of ransomware, what procedures and systems need to be in place to mitigate the risk, and what solutions they need to protect themselves should they experience an attack."

Manufacturing accounts for 23 percent, and professional services is 30 percent, of the total number of ransomware incidents reported to Chubb across all industries through the third quarter. Manufacturing companies are more likely to be targeted because of their need to quickly restore operations, and professional service firms, which rely heavily on email, are often affected because of vulnerabilities associated with phishing attacks. However, ransomware can affect any company, regardless of size or industry.

This quarter's Cyber InFocus examines:

  • What is ransomware, including how bad actors are becoming more sophisticated with targeted ransomware strains.
  • The most common strains of ransomware, including Bitpaymer and Ryuk, and how these strains use a banking Trojan, such as Trickbot or Emotet, to infiltrate their victim's system.
  • An emerging ransomware strain called Sodinokibi, which specifically targets its victims and demands larger than average ransoms.

According to the Chubb Cyber IndexSM:

  • Malware claims, which include ransomware, have risen to 18% of all cyber claims in 2019 from an average of 12% over the past five years.
  • Ransomware accounts for 40% of manufacturers cyber claims in 2019 thus far.
  • Ransomware accounts for 23% of cyber claims for smaller businesses (revenue less than $25M) in 2019.

"As bad actors are continuously changing their attack techniques and increasing the complexity of the ransomware, it's imperative to implement multiple layers of preventative measures to mitigate potential incidents and ensure a reaction plan is in place if an attack occurs," added Anthony Dolce, Vice President, Cyber Lead, Chubb North America Financial Lines Claims. "By regularly backing up data files and securing those backups offline, properly educating employees, investing in state-of the-art security and antivirus software, and purchasing a comprehensive cyber insurance policy, businesses can be better prepared and protected no matter the threat."

Chubb's Cyber InFocus report, which first launched in early 2018, provides insights into the effects of cyber risks and trends on specific industries or business segments each quarter. Such insight is based on Chubb's use of third-party research, as well as proprietary claims data from more than two decades of insuring organizations against evolving cyber threats.

Visit www.chubb.com/cyber to read this quarter's Chubb Cyber InFocus Report, and reports from previous quarters, and get access to additional insight into risk mitigation practices, as well as real-time proprietary cyber claims data through the Chubb Cyber Index. Visit Chubb Cyber InFocus to view a video on this quarter's topic.

For more information on Chubb's cyber products and services, contact your local Chubb agent or broker.

About Chubb Cyber:
Chubb is a leader in insuring cyber risk. Combining industry-leading underwriting and expert third-party incident response services, Chubb offers policies that are tailored to the specific needs and risks of its clients to ensure they are ready with the tools and expertise necessary should a cyber incident occur. Moving swiftly to connect clients with the proper parties to minimize data loss is only part of what Chubb delivers. Keeping an eye on the ever-evolving cyber security landscape, Chubb looks for ways to do more for its clients by offering cutting-edge products and holistic services to every client.

About Chubb
Chubb is the world's largest publicly traded property and casualty insurance company. With operations in 54 countries and territories, Chubb provides commercial and personal property and casualty insurance, personal accident and supplemental health insurance, reinsurance and life insurance to a diverse group of clients. As an underwriting company, we assess, assume and manage risk with insight and discipline. We service and pay our claims fairly and promptly. The company is also defined by its extensive product and service offerings, broad distribution capabilities, exceptional financial strength and local operations globally. Parent company Chubb Limited is listed on the New York Stock Exchange (NYSE: CB) and is a component of the S&P 500 index. Chubb maintains executive offices in Zurich, New York, London, Paris and other locations, and employs more than 30,000 people worldwide. Additional information can be found at: chubb.com.

SOURCE Chubb

For further information: Eric Samansky: 215-640-4666; eric.samansky@chubb.com; Laurie Taylor: 908-903-2611; ltaylor@chubb.com