skip to main content
Cyber

Loss scenarios from internal cyber threats

06/2022
people walking shadow

Companies must remain vigilant about how their business would be affected if they were impacted by a cyber incident.

This list of loss scenarios from internal Cyber threats explains the potential impact on a client’s business and describes how Chubb’s Incident Response Platform helped contain the Cyber threat:

*All currencies indicated are in USD

 

Scenario: Employee error

A Recruiter for a healthcare organisation accidentally attached the wrong file when sending an email to four job applicants. The file included HR demographic data consisting of 43,000 former employee names, addresses, and national ID numbers.

The insured telephoned the Chubb Incident Response Hotline for assistance and an Incident Response Manager was assigned. Chubb brought in Legal counsel to manage regulatory implications.

 

Potential impact

 

mismanagement of personal and/or corporate confidential information, violation of company privacy policy:
 

  • Defence expenses arising from regulatory investigation - $73,800
  • Defence and settlement costs for claims employees that had identity stolen. - $184,400

 

  • Incident Response Manager Fees - $5,100
  • Notification of affected individuals - $3,700
  • Identity theft monitoring services for affected individuals - $20,700
  • Legal consultation fees. - $18,400

 

Total cost: $306,100

 

Takeaways

It is important to understand that cyber is not only related to technological incidents. As innocent as it may seem, human error can be very costly, and it occurs more frequently than expected.

Many of the claims Chubb see stem from very simple employee errors.

 

Scenario: Disparagement via email

An employee for a consultancy company sent an internal email containing negative comments regarding a service provider. The email was forwarded to others within the organisation and eventually was sent externally. The email was seen by the service provider and a defamation lawsuit was brought against the consultancy company for harming the service provider’s reputation.

 

Potential impact

 

third party claims arising from the Insured’s internet media activities. Wrongful Acts include product defamation, disparagement, trade libel, false light, plagiarism, and more:
 

  • Defence and settlement costs for claims from service provider. - $18,400

 

  • Crisis communication services - $7,400
  • Public relations expert fees to minimise reputational impact - $5,900
  • Incident Response Manager fees. - $2,200

 

Total cost: $33,900

 

Takeaways

Due to the sensitivity of such a claim and the potential damage to a client’s reputation, it’s important for companies act quickly to mitigate any potential loss or damage.

By ringing the Chubb Incident Response Hotline we can ensure the correct specialists such as PR consultants are appointed to work with the client and communicate effectively with the service provider to resolve issues and bring the matter to a conclusion.

 

The benefit(s) payable under eligible certificate/policy/product is(are) protected by PIDM up to limits. Please refer to PIDM’s TIPS brochure or contact Chubb Insurance Malaysia Berhad or PIDM (visit www.pidm.gov.my)

 

 This content is brought to you by Chubb Insurance Malaysia Berhad, Registration No. 197001000564 (9827-A) (“Chubb”) as a convenience to readers and is not intended to constitute advice or recommendations upon which a reader may rely. Any references to insurance cover are general in nature only and may not suit your particular circumstances. Chubb does not take into account your personal objectives, financial situation or needs and any insurance cover referred to is subject to the terms, conditions and exclusions set out in the relevant policy wording. Please obtain and read carefully the relevant insurance policy before deciding to acquire any insurance product. A policy wording can be obtained at www.chubb.com/my, through your broker or by contacting any of the Chubb offices or Chubb agents. Chubb makes no warranty or guarantee about the accuracy, completeness, or adequacy of this content. It is the responsibility of the reader to evaluate the quality and accuracy of material herein.

Contact us
Contact us

Have a question or need more information?

Contact us to find out how we can help you get covered against potential risks