ARPC study reveals cyber terrorism protection gap

2020-09-22T09:10:00+01:00

No comments

Research by the Australian Reinsurance Pool Corporation will inform the Treasury’s 2021 review of the Terrorism Insurance Act

Australian Reinsurance Pool Corporation has launched the findings of its cyber terrorism research project. The scope of the research included identifying and exploring current and prospective threats, plausible scenarios and the practicalities of extending insurance coverage to include cyber terrorism in Australia.

ARPC commissioned the Organisation for Economic Co-operation and Development (OECD) and Cambridge Centre for Risk Studies at the University of Cambridge’s Judge Business School (Cambridge), to undertake the research.

“Commercial property insurance in Australia does not cover physical property damage caused by cyber terrorism or cyber war,” said Dr Christopher Wallace, ARPC CEO. “The ARPC Scheme, Australia’s national terrorism insurance scheme also excludes coverage for physical damage caused by cyber terrorism.”

“ARPC anticipates that our research will contribute to informing the Australian Government about the risks faced by the economy due to this protection gap. It will be an input into the Treasury’s 2021 Triennial Review of the Terrorism Insurance Act,” Dr Wallace said.

Key findings:

Cyber terrorism is not covered by commercial property insurance in Australia, and the terrorism reinsurance scheme administered by ARPC excludes cover for cyber terrorism.
The scenario analysis conducted by Cambridge CCRS demonstrates that the average expected losses from two modelled scenarios are consistent with the expected losses from a traditional explosive blast attack in the CBD and are within the capacity of the ARPC scheme.
The maximum losses from the two modelled cyber terrorism attacks are substantial and exceed the capacity of the ARPC scheme.
According to OECD, the German, Spanish and South African pools provide direct insurance coverage without cyber exclusions.
For the reinsurance or co-insurance schemes in Austria, Belgium, France, Netherlands, United Kingdom and the United States, cover for cyber-terrorism is included to the extent it is covered in the underlying policy.
In the reinsurance schemes in France and the UK, cyber-terrorism cover is explicitly included.
In India and Russia cyber-terrorism is explicitly excluded, as is the case in Australia.

Topics

No comments

News
9/11: Never forget

2021-09-10T01:00:00Z By Helen Yates

9/11 transformed how we think about “unimaginable” events
Online Only
Human error and cybersecurity – tackling one of today’s biggest business risks

2023-09-26T08:42:00Z

Simon McNally, identity and access management expert at Thales, explains why cybersecurity is a pressing people-related risk that must be tackled urgently
Analysis
The average bot attack costs a company $85.6m - here’s how to defend yourself

2023-09-25T16:13:00Z

New research reveals bot attacks cost companies the equivalent of over 50 ransomware payouts every year while remaining undetected for four months. Here’s how to protect your business

No comments yet

You're not signed in.

Only registered users can comment on this article.

More from Home

Analysis
Case study: how to overcome board resistance to integrate a risk management programme

2023-09-29T15:42:00Z

The key to successful integration of your risk programme lies in the bonds you make at the executive level, says Darlene Halwas, a board member of Carbon Management Canada. Forming close ties, developing trust through transparency and being a source of help, means you have a voice on the board ...
Editor's Letter
SR Q3 2023: Adapt or die

2023-09-28T19:08:00Z

As the world of risk gets increasingly complex, there is a golden opportunity to elevate the profession beyond insurance buying, to strategic, value-adding, board-level ERM. Those risk managers who fail to step up and grab it with both hands may quickly become irrelevant.
Analysis
Everything risk managers need to know about North Korea

2023-09-22T16:15:00Z

North Korea’s combination of cloak-and-dagger unpredictability and positioning makes it a presence that is at best disquieting, at worst deeply alarming for risk managers in APAC and beyond.

ARPC study reveals cyber terrorism protection gap

Topics

Related articles

9/11: Never forget

Human error and cybersecurity – tackling one of today’s biggest business risks

The average bot attack costs a company $85.6m - here’s how to defend yourself

No comments yet

Only registered users can comment on this article.

More from Home

Case study: how to overcome board resistance to integrate a risk management programme

SR Q3 2023: Adapt or die

Everything risk managers need to know about North Korea