Skip to content

Find resources to help with recovery if you’ve been impacted by Hurricanes Milton and Helene. Learn More

Cyber

Navigate Claims from Cyber Events in Your Supply Chain

The Baldwin Group
|
Updated: July 23, 2024
|
3 minute read

On July 19, 2024, CrowdStrike became a household name after businesses large and small around the world saw their operations come to a halt when they were met with a “blue screen of death” as a result of a faulty software update from CrowdStrike. Though this has been the largest event of its kind, it hasn’t been the first. The widespread impact of outages highlights the fragility of a digital supply chain dependent on a few providers for key services and tools, and why organizations should be prepared to respond to such events.

If your organization experiences a cyber event due to a vulnerability in its digital supply chain, you’ll want to know what to expect and how to respond. Additionally, if the source of the cyber incident proves to be a vendor and you haven’t had a preemptive discussion about how insurance fits into the picture, this could lead to significant confusion regarding financial liability.

Understanding your insurance coverage and being proactive and prepared for the claims process will likely expedite your access to remediation services, forensics efforts, and financial reprieve. The claims process can be complicated, especially when it’s unclear whose policy will respond to cyber events, but it doesn’t have to be if you and your partners do your due diligence. Here are some tips that can help you be prepared.

Before anything happens

  • Compile a list of all your vendors and understand the ways they might impact your organization’s cybersecurity by conducting third-party risk assessments and quantifying potential losses against your company’s balance sheet. Learn more about how to quantify your cyber risk with this guide.
  • Vet your third-party vendors’ approach to cybersecurity and ask the right questions. We’ve put together this useful guide with questions you should consider asking them.
  • Request certificates of cyber insurance because you want to make sure your supply chain partners have the resources to respond quickly, remediate the situation, and contain the damage.
  • Consult with your legal expert regarding any contractual language and the implications for your organization and the other party in the event of a cyber incident.
  • Know if there are any deadlines you will have to adhere to when submitting a claim, and know the contact information for claims submissions.
  • Consult with your third-party vendors and have a conversation with them to ensure they know what to expect from the claims process with their cyber insurer.

Submitting a claim

  • Know what the claims process will entail for your insurer so that you can be ready and have the process go as quickly as possible.
  • Time is of the essence, which is why you won’t want to wait to notify your insurer if you suspect something is wrong. Even if it’s yet to be seen which party is at fault, you’ll likely still have access to counsel and forensics services. Insurers utilize preferred vendors, which provide discounted rates and a wealth of knowledge.
  • Gather necessary information, documents, and evidence, which likely includes the date of the incident, number of compromised records, and a list of your regulatory reporting obligations.
  • Contact your cyber insurance advisor so that they can help guide you through the claims process and advocate on your behalf if issues arise.

Picking up the pieces

  • Remediate any identified issues that caused the breach if you were found to be at fault.
  • Reevaluate your partnerships and third-party cybersecurity exposures, being sure to probe for details that might prevent a similar event from happening in the future.
  • Stay up to date regarding cybersecurity trends and best practices.
  • Consult with your insurance advisor regarding your cyber insurance renewal to help avoid declination.

Connect with The Baldwin Group’s Cyber Center of Excellence today to discuss your supply chain cyber risk, and all aspects of your cyber risk strategy.


Related Insights

Stay in the know

Our experts monitor your industry and global events to provide meaningful insights and help break down what you need to know, potential impacts, and how you should respond.

Real Estate
8 Types of Multi-Family Property Insurance: What You Need to Know
Coverage for Different Type of Properties From high-rise apartment buildings to co-ops and condominiums, multifamily property owners are faced with...
International
International Aid and Development Organizations 2024 - Risk and Insurance Benchmarking Report
With expert content from our partners at BDO and Africa HR Solutions Purpose of the risk and insurance benchmarking report...
Management Liability
Are financial institutions about to experience an uptick in consumer class actions for overdraft fees?
Consumer Financial Protection Bureau’s new focus It’s been a couple years, since Consumer Financial Protection Bureau Director, Rohit Chopra, stated...
Understand your Options: Insurance for Project Owners
We are often asked by project owners “What are the options and considerations when determining how best to insure third...
Construction
Surety Bonds vs Construction Insurance: What Are The Differences?
Surety Bonds vs. Construction Insurance Starting a construction project can feel like setting sail on uncharted waters. Though there are...
Let's make it possible

Partner with us to build solutions that align with your business, individual, or employee needs and open new possibilities for your future.

Connect with us