¡Anotado! A partir de ahora mantengo los H2.
Te dejo el texto anterior remaquetado con H2, sin negritas y en inglés británico:
Cyber risk: when, not if
When we talk about cyber risk, the question is not if an incident will occur, but when—and what we must do to reduce both the likelihood and the impact.
The recent attacks affecting airports in Berlin, Brussels and London exposed how vulnerable critical infrastructure remains to cyber threats. Check-in, boarding and baggage-handling systems were compromised, triggering delays, cancellations and a knock-on effect that took days to unwind.
Why the cyber insurance market is concerned
A few figures that stand out from recent years:
- 41% of SMEs suffered a cyber attack in 2023, up from 22% in 2021.
- Only around 10% of SMEs carry cyber insurance, compared with adoption rates of up to 80% among large corporates.
- AI is amplifying risk exposure—from anomaly detection arms races to deepfakes enabling increasingly sophisticated fraud.
Preparing for the new paradigm
As technology advances, cyber insurance has become a critical component of enterprise risk financing and resilience. Beyond risk transfer, carriers and brokers now expect demonstrable controls as part of underwriting: MFA across all privileged access, robust endpoint detection and response (EDR), secure backups with offline copies, email security and DMARC, patch management, incident response plans with regular tabletop exercises, and alignment to frameworks such as ISO 27001 or the NIST CSF.
Well-structured policies can address first-party and third-party losses, including business interruption (with clear waiting periods), data restoration, incident response and forensics via approved panels, regulatory investigation and PCI liabilities, and cyber extortion—subject to exclusions, sub-limits and retentions. Attention to wording is essential, particularly around war and infrastructure exclusions, systemic events, failure-to-maintain-security conditions, and territorial or jurisdictional scope.
How are you preparing for this new landscape? I’d value your perspective—especially on control effectiveness, underwriting readiness and how you’re aligning policy structure to your actual risk profile.
I’m sharing the articles below for anyone who wants to dive deeper.
- Insights150 – Cyber Insurance: Rising Risks, Shifting Dynamics, and Market Opportunities
- BBC News – London airports have been affected by disruptions in the billing system
