Cyber breaches are a rapidly emerging global risk, with the Australian Signals Directorate (ASD) receiving reports of cybercrime every six minutes on average, and the projected impact of ransomware alone causing up to $3 billion in damages to Australians each year*. Cyber breaches have become one of the biggest risks facing businesses today. QBE’s Cyber policy protects against the range of risks associated with digital technology and provides critical support in case of a cyber event.
What we cover
A cyber event can quickly cripple a company’s operations. QBE’s comprehensive Cyber policy provides bespoke coverage that guards against loss arising from current and emerging cyber risks. QBE’s Cyber insurance offering can include:
- Network Security and Privacy Liability coverage
- Privacy Regulatory Proceeding coverage
- Media Liability coverage
- Event Expense coverage
- Network Extortion coverage
- Business Interruption coverage
- Dependent Business Interruption coverage
- Bricking coverage
- Consequential Reputational Loss coverage
- Reward Fund coverage
- Cryptojacking coverage
- Social Engineering coverage.
Coverage highlights
- Worldwide protection
- 20% acquisition threshold, 90 days to notify
- Definition of claim includes non-monetary relief
- Blanket waiver of subrogation when required by contract
- 60-day automatic extended reporting period
- Coverage for liquidated damages if not in excess of the insured’s liability
- Event expenses include costs to temporarily store the insured’s electronic data at a third-party host location.
Target market
Broad capacity for cyber risk: from companies with fully outsourced IT networks to those with complex, large-scale IT systems.
QBE clients range from medium-sized enterprises to corporate / global corporations.
- Minimum revenue size $50m
- Primary and excess capacity up to $10m.
Risk appetite
Complex (detailed submission required)
- Gambling (except casinos)
- Semiconductor manufacturing
- Aviation (commercial airlines)
- Data aggregators
- Hospitals and Health Systems (incl university hospitals) > $500m revenue
- Healthcare Payers and Benefits Management
- Including commercial health insurers, private employee benefit organisations, and private health insurance funds
- Monetary authorities
- Central banks, clearing houses, rating agencies
- Technology limited to the following categories:
- Tech Service Providers (e.g. interconnected client exposure, SaaS or hosting)
- Financial Technology (Fintech)
- Managed Service Security Providers (MSSPs)
- Managed Service Providers (MSPs)
- Payment Processors
Outside of appetite
- Adult content
- Cannabis
- Crypto
- Cryptocurrency-focused financial service providers, including trading platforms, exchanges, custody services, mining operations, token generators, and their associated blockchain infrastructure
- Non-Fungible Tokens (NFTs)
- Public Sector & Government
- Municipal – city/town, county/district, state /provincial/regional, and national/federal levels of administration
- Public healthcare (e.g. hospital authorities)
- Government-funded / run pre-university educational institutions
- ESG restricted classes
- Firearms and ammunition
- Controversial weapons
- Thermal coal sale or power generation
- Oil sands and Arctic drilling
For more information
Contact your QBE relationship manager for more information or speak to our Cyber underwriter, Ben Richardson, [email protected]
Publications
Private equity firms enhancing cyber resilience of portfolio companies
QBE North America white paper
Cyber threats to the legal and professional services sector
QBE North America white paper
Cyber threats to the financial services industry
QBE North America white paper
Connected business: digital dependency fuelling risk
QBE Europe report
2024 Cyber Insurance Report
QBE North America report
You can download standard documents for our insurance products from the document library. If you’re looking for co-branded or tailored documents, please contact your QBE Broker Manager.
* ASD (2023). ASD Cyber Threat Report 2022–2023. 2023–2030 Australian Cyber Security Strategy