Third-party risk is biggest cybersecurity blind spot

No Comments

Third-party risk has emerged as a dominant driver of cyber insurance claims and material losses in 2024, according to new data from leading cyber risk solutions company Resilience.

Cyber insurance claims data shows that third-party risk, including ransomware and outages affecting vendors, accounted for 31 percent of all claims in 2024. Even more startling, third-party risk led to claims with incurred losses for the first time ever, making up nearly a quarter (23 percent) of incurred claims in 2024 (compared to none in 2023).

"Third-party risk isn't only making headlines -- it's driving unprecedented losses. While this risk is often invisible until it's too late, it's now clear that the industry has reached a tipping point," says Vishaal Hariprasad, co-founder and CEO of Resilience. "Businesses can no longer afford to consider their partners' vulnerabilities as siloed from their own. By understanding this new reality of shared risk, enterprises can make smarter business decisions and meaningfully mitigate material loss."

Among other findings 43 percent of incurred claims involved first-party ransomware incidents and 18 percent of incurred claims involved ransomware attacks targeting vendors. Taken together 61 percent of all claims with losses were related to ransomware.

Transfer fraud rose in popularity too, increasing from 14 percent of incurred claims by frequency in 2023 to 18 percent in 2024.

Interestingly phishing proved less effective in causing financial loss. In 2024, phishing led to just nine percent of incurred claims, a significant drop from 2023 in which it accounted for 20 percent.

"As a company that provides both cyber risk quantification software and cyber insurance, we have unique insight into how companies are mitigating financial fallout from today's cybersecurity challenges," says Jeremy Gittler, global head of claims at Resilience. "Even in the face of an evolving threat landscape over the past year, enterprises are continuing to make major improvements in how they manage cyber risk and prevent material loss."

You can see the full report on the Resilience site.

Image credit: Weerapat Wattanapichayakul/dreamstime.com

No Comments
Got News? Contact Us

Recent Headlines

Study finds that Instagram is beneficial to the wellbeing of queer youth

TP-Link Archer GE650 Wi-Fi 7 gaming router brings 11Gbps speeds and low latency for pro gamers

Changes to compliance requirements leave professionals struggling to keep up

Third-party risk is biggest cybersecurity blind spot

BlueAnt X5i Party Speaker packs 120W sound and dynamic LED lights

Security, privacy and AI code reliability are the biggest development challenges

New Firefox terms of use could push users to Google Chrome

Most Commented Stories

Who needs Windows 11? FreeXP is a modern version of Microsoft's greatest OS, powered by Debian Linux

65 Comments

Windows 12 won't pull me away from Linux unless Microsoft fixes these 5 things

48 Comments

AR OS 2 is everything we want Windows 12 to be -- and more

38 Comments

Windows Vista 2025 Edition fixes Windows 11's biggest problems -- download it now

24 Comments

Google is the latest tech firm to drop diversity hiring targets following Trump’s executive orders

24 Comments

Transform Windows 10 or 11 into Windows 7 in just five clicks

15 Comments

Oreon 10, our favorite Windows replacement, has just been updated -- and it's about to get much, much better!

14 Comments

Forget Windows 12, Windows 11 2025 Edition is the Microsoft operating system we need!

11 Comments

© 1998-2025 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.