2 min read

Insurer AXA says it will no longer cover ransomware payments in France

Graham CLULEY

May 07, 2021

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Insurer AXA says it will no longer cover ransomware payments in France

Insurance giant AXA has said that it is no longer writing cyberinsurance policies in France that cover ransom payments to extortionists.

AXA’s decision, which appears to be a first for the cyberinsurance industry, will still reimburse companies for the cost of responding and recovering from a ransomware attack – but will not cover the often significant sums of cryptocurrency demanded by criminal gangs after they have compromised a network, and encrypted or stolen data.

In addition, it will not affect existing policies that companies may have with the insurer.

Interestingly, AXA has only made the decision to stop writing policies that cover ransomware payments in France – and not the rest of the world.

France, which is estimated to have lost more than $5.5 billion to ransomware last year, is believed to be second only to the United States in terms of the financial damage caused by cybercriminal extortionists.

The issue of “to pay or not to pay” has become a controversial one.

Ciaran Martin, former head of the UK’s National Cyber Security Centre (NCSC) and now a professor at Oxford University, believes that insurers are “funding organised crime” by accepting ransomware claims.

Marcus Willett, who works at the International Institute for Strategic Studies (IISS) but used to have a senior role at GCHQ, argues in a recently published article that payments fund criminal organisations and only make ransomware attacks more likely.

However, paying a ransom can get your company out of a sticky situation. If your extortionists keep their word you will receive a method of decrypting your data, and they will – hopefully – not release your stolen data to the wider world.

Sometimes, as we saw with the ransomware attack against British fashion retailer FatFace, the criminals will even give your business advice on how to improve its security in future.

AXA’s lack of desire to cover ransomware payments in France appears to be at odds with insurers across the Channel. In fact, the British Association of Insurers says that paying the ransom demand may be the quickest and most effective way of getting businesses back to work as quickly as possible.

Internationally there have been some efforts to warn organisations against paying ransoms – whether it be for themselves or their clients.

In October 2020 the U.S. Department of the Treasury issued an advisory alerting organisations that help victims of ransomware attacks that they risk breaching sanctions by facilitating ransomware payments.

But ultimately, if you have the choice of paying a ransom or losing your company, you’re probably going to try to find a way to pay up. The only question then is – will your insurance company cover you for that ransom payment, or not?

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Common Credentials Criminals Use in IoT Dictionary Attacks Revealed Common Credentials Criminals Use in IoT Dictionary Attacks Revealed
Silviu STAHIE

November 30, 2021

3 min read
Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown
Filip TRUȚĂ

November 29, 2021

2 min read
Social media firms will be forced to unmask online trolls, says Australia Social media firms will be forced to unmask online trolls, says Australia
Graham CLULEY

November 29, 2021

2 min read