THE cyber insurance market is undergoing notable changes, including decreasing rates but expanding exclusions that could surprise policyholders. Key trends identified by Paul Furtado from Gartner include stabilized pricing and discounts for organizations demonstrating strong security practices. However, a growing list of exclusions threatens coverage effectiveness, particularly concerning employee actions, outdated software, and social engineering attacks like ClickFix.
Exclusions for acts of war and mass cyber incidents are also influencing policy payouts. Organizations are advised to closely review their policies and ensure understanding of coverage details, including sub-limits, tail coverage, and their implications on claims. Despite changes, the impact of AI on cyber insurance policies remains minimal as of now.