Data from more than 50,000 organizations reveals average ransom demand increased to $1.2 million and smaller companies experienced a 57% increase in attacks
San Francisco, CA (Aug. 3, 2021) — Coalition, the leading cyber insurance and security provider, is pleased to announce the results of its H1 2021 Cyber Insurance Claims Report. Coalition analyzed claims data through June 2021 from 50,000 customers in the United States and Canada. Coalition’s analysis reveals that ransom demands have grown substantially over the past year, smaller companies are increasingly targeted, and cyber criminals continue to take advantage of dislocations in how we work.
From the first half of 2020 to 2021, the average ransom demand made to Coalition policyholders increased nearly threefold, from $450,000 to $1.2 million per claim. Coalition also observed the emergence of several aggressive new ransomware variants, including Mount Locker, HelloKitty, and Conti. While the average ransom demand steadily increased, the average payout Coalition made for ransomware claims decreased slightly from the first half of 2020 to the first half of 2021, reflective of its efforts to help policyholders negotiate ransoms and recover data backups.
While ransomware has become more widespread and severe in the past year, many organizations continue to be targeted by less sophisticated attack techniques that exploit the new patterns of remote work. Nearly 50% of attacks against Coalition’s policyholders were initiated by phishing and social engineering. From the first half of 2020 to 2021, Coalition found that funds transfer fraud (FTF) attacks increased 28% and business email compromise attacks increased 51%. In that time period, the average funds stolen in an FTF attack increased from $116,842 to $326,264 — a 179% increase.
These attacks are also increasingly targeting small and micro businesses. In 2021, Coalition saw a 57% increase in the frequency of attacks against organizations with under 250 employees. The increased automation of cyber attacks, as well as the more widespread use of insecure remote access tools during the pandemic, has left these organizations exposed and created new opportunities for cyber criminals.
“It’s clear that ransomware and other cyber crimes have escalated considerably in the past year. Bad actors are targeting everything from critical infrastructure to the corner store,” said Joshua Motta, CEO and co-founder of Coalition. “We believe that when organizations understand their risk profile and take proactive steps to reduce their risk, they can safely embrace new technology and remain resilient to cyber attacks. That’s why Coalition offers proactive security tools and incident response services alongside insurance, and it’s why our customers continue to experience one-third as many claims compared to the overall market.”
Coalition’s H1 2021 Cyber Insurance Claims Report reveals top cyber crime trends, the continued impact of the COVID-19 on cyber risk exposure, and predictions for the state of cyber crime in 2021 and beyond.
- To read the full report, click here.
Coalition is the leading provider of cyber insurance and security, combining comprehensive insurance and proactive cybersecurity tools to help businesses manage and mitigate cyber risk. Backed by leading global insurers Swiss Re Corporate Solutions, Arch Insurance, Lloyd’s of London, and Argo Group, Coalition provides companies with up to USD $15 million of cyber and technology insurance coverage in all 50 states and the District of Columbia, as well as CAD $20M of coverage across 9 provinces and 3 territories in Canada. Coalition’s cyber risk management platform provides automated security alerts, threat intelligence, expert guidance, and cybersecurity tools to help businesses remain resilient in the face of cyber attacks. Headquartered in San Francisco, Coalition’s team is global with employees based across the United States, Canada, the United Kingdom, Switzerland, and Portugal. For more information, visit www.coalitioninc.com.
SOURCE: Coalition Inc.Tags: claims, Coalition Inc., cyber attacks, Cyber Insurance, cyber security