Cyber Claims Growing More Complex as AI and Digital Assets Reshape Coverage
Cyber insurance claims are no longer defined by ransomware. AI-enabled phishing campaigns, data theft and digital asset losses are making claims harder to interpret and assess at scale, creating gaps in both expertise and policy coverage across the market.
The shift reflects how attacks have diversified since the post-COVID period, when ransomware dominated loss reporting. Today, claims increasingly involve data breaches, technology outages, operational failures in legacy systems and supply chain disruption-often accelerated by artificial intelligence.
Attackers Now Target Scale and Precision
AI has made phishing more effective. Attackers can now mimic local dialects and send grammatically correct emails from anywhere in the world, targeting multiple organizations across jurisdictions simultaneously.
This has driven a sharp rise in business email compromise, particularly among SMEs, where the barrier to entry for attackers has dropped significantly.
Ransomware Tactics Shift From Encryption to Theft
Even within ransomware incidents, the method has changed. Attackers are moving away from encryption mechanisms and instead exfiltrating data directly, then running theft-only extortion models.
This creates new complications. Privacy exposure and regulatory implications become central to claims assessment. Payments to threat actors also vary by jurisdiction, introducing legal uncertainty that affects claim resolution.
Digital Assets Present Valuation Headaches
Digital asset losses introduce a fundamentally different type of claim. Rather than assessing system damage or business interruption, insurers must trace and analyze assets with intrinsic value within blockchain environments-work that resembles forensic investigation of a crime scene.
Valuation poses a particular challenge. Cryptocurrency prices fluctuate rapidly, creating uncertainty over whether claims should be assessed based on time of loss, discovery or settlement. That timing decision can materially affect outcomes.
The problem is acute: only around 11% of crypto holders carry insurance coverage, despite the asset class being worth trillions of dollars.
Policies Lag Behind Risks
Cyber insurance policies are improving, but not fast enough. Insurers have tightened wording around established issues like supply chain disruption and vendor outages, but emerging risks-particularly those tied to AI-remain less clearly addressed.
The result is uneven adaptation across the market, with some carriers offering better coverage than others for the same emerging threats.
Expertise Becomes Critical
As claims grow more technical, the need for specialist expertise and coordinated response is increasing. AI for Cybersecurity Analysts and AI for Insurance professionals must now understand blockchain forensics, digital asset valuation and AI-driven attack vectors.
Loss adjusters sit outside indemnity spend and remain conflict-free, positioning them as objective investigators in increasingly complex claims environments. The industry requires shared expertise and coordinated best practice to handle what comes next.
With trillions in digital assets and limited insurance coverage, the question is no longer whether cyber risk is evolving-it's whether the market has the expertise and policies to handle it.
Your membership also unlocks:
