Cyber Insurance News & Information Podcast

99% of organizations have a cyber incident response plan. 73% admit it wouldn't hold up under real pressure. So what's the gap, and how do you close it?Martin Hinton speaks with Matt Mosley, Incident Response Manager at Sygnia, about what actually happens when ransomware hits on a Friday night, why legal delays cost companies millions, and why AI in incident response needs a human hand on the wheel.For cyber insurers and underwriters, this episode is essential. A weak cyber incident response plan is not just an operational problem; it is a claims problem. Backup gaps, undefined decision authority, and untested IR playbooks all drive longer recovery timelines and higher loss ratios. Mosley identifies exactly what underwriters should ask at renewal and which answers should raise flags.RESOURCESSygniaFind Matt on LinkedIn Most CISOs Admit They Are Not Ready For The Next Big CyberattackState CISOs Sound The Alarm: What The 2026 NASCIO-Deloitte Study Means For Government Cyber Risk InsuranceAlibaba's AI Agent Mined Crypto Without Permission. Now What? (Forbes)There's a New Phishing Scam: Fake Invitations (New York Times)CHAPTERS00:00 Understanding Incident Response Preparedness02:53 The Role of Sygnia in Incident Response04:13 The Dynamics of Incident Response08:26 The Human Element in Incident Response11:54 The Disconnect in Perceived Readiness14:50 Practicing Incident Response Plans16:58 Identifying Gaps in Incident Response18:04 The Cost of Delayed Decision-Making19:16 Dealing with Hubris in Leadership21:24 The Complexity of Incident Response Plans23:29 First Steps in Incident Response25:24 Involving Key Stakeholders28:00 Preparing for the Unimaginable31:38 The Mainstreaming of Cybersecurity Awareness34:46 The Evolving Landscape of Cyber Insurance35:22 Visibility Gaps in Hybrid Environments38:16 The Role of the CISO in Crisis Management41:45 Communicating Cybersecurity Needs to the Board45:28 The Impact of AI on Cybersecurity52:34 Best Practices for Incident Response56:38 Final Thoughts on Cybersecurity PreparednessABOUT CYBER INSURANCE NEWSCyber Insurance News and Information is the go-to source for underwriters, brokers, CISOs, and senior executives navigating the cyber insurance market. Published and hosted by Martin Hinton, a journalist with 30 years of experience covering just about everything. Website: https://cyberinsurancenews.org

Most companies think they understand their cyber risk. They filled out the questionnaire. They renewed the policy. They checked the box. According to cyber insurance experts Ralph Pasquariello and Craig Sekowski of CYBERRISKIQ, that confidence is one of the most dangerous blind spots in corporate America today.In this episode of the Cyber Insurance News and Information Podcast, Ralph and Craig return as guests to discuss the cyber insurance gaps that leave organizations exposed precisely when they think they are protected.WHAT WE COVER:- Why less than 15% of successful cyber attacks ever become public and what that means for how companies assess their own risk.- The 200-day average dwell time attackers spend inside corporate networks before detection.- How AI is being used on both sides of the cyber fight and why your current policy may not cover an AI-enabled attack.- Why renewing your cyber insurance policy annually without review is leaving companies dangerously exposed.- Third party damages, class action exposure, and why sublimits matter more than most CFOs realize.- CYBERRISKIQ's induction into the Society of Risk Management Consultants and what it signals about cyber's growing role in enterprise risk management.- Why the current flat pricing market is an ideal window to add coverage layers without doubling premiums.ABOUT THE GUESTS:Ralph Pasquariello and Craig Sekowski are the founders of CYBERRISKIQ, a cyber insurance and cybersecurity advisory firm. They work with corporations, brokers, and risk managers to identify coverage gaps, assess cyber posture, and align insurance limits with real world exposure. They are members of the Society of Risk Management Consultants.ABOUT THE HOST:Martin Hinton is the Executive Editor and Publisher of Cyber Insurance News. With over 30 years of journalism experience across six continents, he covers the cyber insurance market for underwriters, brokers, CISOs, and risk managers.READ THE FULL ARTICLE:cyberinsurancenews.org/cyber-insurance-blind-spots-cyber-risk-iqThe Society of Risk Management Consultants (SRMC)CYBERRISKIQCraig SekowskiRalph Pasquariello, CLCSChapters 00:00 Introduction to Cyber Insurance Awareness.01:10 The Impact of AI on Cybersecurity.02:44 The Growing Importance of Cyber Insurance.06:13 Understanding the Hidden Cyber Threats.07:56 The Role of Risk Management Consultants.10:06 Bridging the Gap Between IT and Insurance.11:58 The Importance of Reading Cyber Insurance Policies.14:05 The Real Costs of Cyber Breaches.18:12 The Long-Term Implications of Cyber Incidents.20:49 Understanding Cyber Insurance and Its Importance.21:55 The Value of Data in Cybersecurity.23:24 Identifying Vulnerabilities in Data Management.24:49 The Evolution of Data Breach Insurance.27:38 The Reality of Cyber Attacks.30:02 Raising Awareness in Cybersecurity.31:55 Current Trends in Cyber Insurance Pricing.35:06 Improving Insurability Through Cybersecurity Practices.38:32 The Human Element in Cybersecurity ChallengesSUBSCRIBE for weekly coverage of the cyber insurance market from the source professionals trust.

Is your cyber insurance policy built on what your company says it does, or what it can prove?In this episode, I speak with Tristan Morris, CEO and co-founder of SplitSecure, and Dylan Hamilton, business development lead, about why the shift from static questionnaires to verifiable controls is reshaping cyber underwriting in 2025 and beyond.We cover credential theft, privileged access, vendor risk, and why 91% of cyber insurance payouts in 2025 were ransomware-related, even though ransomware represents less than 10% of claims by volume.If you are an underwriter, broker, CISO, CFO, or general counsel, this episode has direct implications for how you buy, write, and manage cyber risk.In this episode:Why questionnaires capture a snapshot, not the truth.How attackers exploit MFA exceptions.The three ways MFA gets bypassed in practice.What verifiable proof of credential discipline looks like.Why privileged access is the single biggest underwriting differentiator.The vendor access question every underwriter should be asking.Resources mentioned: SplitSecure Verizon Data Breach Report 2025 IBM Data Breach Report 2025 Delinea Cybersecurity Report 2025 Connect with the guests: Tristan Morris on LinkedIn Dylan Hamilton on LinkedIn Chapters00:00 The Evolving Landscape of Cyber Insurance09:22 Understanding the Role of MFA and PAM14:59 The Financial Impact of Cyber Attacks21:41 Navigating Credential Management Challenges25:08 The Future of Cybersecurity Practices35:29 The Evolution of Cyber Insurance Regulations38:00 Challenges in Rewarding Best Practices40:28 The Gray Area of Negligence in Cyber Insurance44:53 Vendor Risks and Third-Party Access50:34 The Human Element in Cybersecurity54:31 Future Trends in Cyber Insurance59:33 Final Thoughts and Quickfire Questions

What should small business owners know about small business cyber insurance before a cyberattack hits? In this episode of the Cyber Insurance News and Information Podcast, Martin Hinton speaks with Kyle Jude of Veracity Insurance Solutions about phishing, social engineering, MFA, hidden breach costs, and the real-world value of cyber liability insurance.This conversation breaks down how cyberattacks often begin with ordinary emails, texts, and urgent requests. It explains why small business cybersecurity now matters to every company, not just major corporations. Kyle also discusses layered defenses, password hygiene, backups, payment verification, policy exclusions, sublimits, and the growing role of AI in cybercrime.If you run a business, this episode is a practical primer on small business cyber insurance, small business cybersecurity, phishing, social engineering, MFA, cyber liability insurance, and the hidden costs of cyberattacks.Topics include:Small business cyber insuranceSmall business cybersecurityPhishing and social engineeringMFA and password securityCyber liability insuranceHidden costs of cyberattacksBackups and data redundancyCyber risk for business ownersFind Kyle here Veracity Insurance Kyle's Oped - The Hidden Costs of Cyberattacks on Small BusinessesChapters00:00 Understanding Cybersecurity Threats for Small Businesses11:13 The Hidden Costs of Cyber Attacks13:59 Real-Life Examples of Cyber Breaches20:44 The Challenge of Prevention in a Fast-Paced World29:25 The Importance of Education and Awareness in Cybersecurity33:47 The Importance of Regular Communication with Clients34:41 Understanding Cyber Insurance Coverage36:33 The Need for Diligence in Insurance Policies38:22 Converting New Clients to Cyber Insurance39:45 Assessing Business Losses and Insurance Value40:49 Real-World Examples of Cyber Attacks43:09 The Necessity of Data Redundancy46:02 Demystifying Cyber Insurance47:53 The Evolving Landscape of Cyber Threats51:04 The Personal Side of Cyber Security53:13 Creating a Family Cyber Protection Plan56:45 Minimum Viable Defense Strategies59:00 Common Mistakes by Small Business Owners01:00:25 Immediate Actions for Small Business Owners01:01:36 Future Trends in Cyber Threats01:02:29 Final Thoughts on Cyber Protection

Cyber risk management is no longer just an IT issue. It is a leadership challenge that affects every part of an organization.In this episode of the Cyber Insurance News and Information Podcast, host Martin Hinton speaks with Max Martina, president of Cambridge Leadership Associates, about why cyber risk is an adaptive problem not just a technical one.They explore the evolving role of the CISO, the leadership failures behind cyber incidents, and how organizational silos, culture, and governance shape real-world outcomes. The conversation also covers cyber resilience, crisis response, coalition building, and the growing impact of AI on cybersecurity.If you work in cyber insurance, cybersecurity, enterprise risk, or executive leadership, this episode offers practical insights into how organizations can better manage cyber risk in a rapidly changing environment.Cyber risk as an adaptive problemLeadership and cybersecurity decision-makingThe evolving role of the CISOCyber resilience vs readinessOrganizational silos and governance challengesPsychological safety and cybersecurity cultureAI and the future of cyber riskVUCA Framework Chapters00:00 Understanding Cyber Risk as an Adaptive Challenge02:37 The Role of Leadership in Cybersecurity05:47 Organizational Structures and Cyber Risk08:58 The CISO's Position and Responsibilities11:41 Building Coalitions for Cyber Resilience14:38 The Importance of Psychological Safety17:49 Navigating Leadership Challenges20:37 Resilience vs. Readiness in Cybersecurity24:00 Learning from Cyber Incidents26:40 The Impact of Organizational Culture on Cybersecurity29:33 Case Studies in Cybersecurity Governance32:36 The CEO's Role in Cybersecurity35:42 The Human Element in Cybersecurity44:48 Collaboration Among CISOs48:47 The Psychological Barriers to Cybersecurity50:56 The Role of AI in Cybersecurity55:40 The Cost Center Mentality in Cybersecurity01:00:45 Understanding the Repeated Failures in Cybersecurity01:05:42 The Need for Adaptive Leadership in Cybersecurity01:09:49 The Future of Cybersecurity Leadership

Cyber insurance underwriting is evolving as insurers move beyond static questionnaires toward verifiable risk data.In this episode of the Cyber Insurance News and Information Podcast, Martin Hinton speaks with Jessica Newman, Global GM of Cyber Insurance at Sophos, about how MDR telemetry and continuous evidence collection are changing how insurers evaluate cyber risk.For years, cyber insurance underwriting relied on self-reported questionnaires and limited visibility into a company’s security posture. Today, insurers increasingly want proof that cybersecurity controls are deployed, configured properly, and actively monitored.Jessica explains how Managed Detection and Response (MDR) and telemetry-based insights give underwriters stronger signals about real-world cyber risk.The conversation explores how these developments may shape the future of cyber insurance underwriting, risk assessment, and policy pricing.Topics covered include:The shift from cyber insurance questionnaires to verifiable risk dataWhy MDR telemetry is becoming important for underwriting decisionsThe future of continuous underwriting and evidence-based risk assessmentHow cyber insurance has evolved over the past decadeThe role brokers, carriers, and buyers play in cyber insuranceAI’s emerging influence on cybersecurity and insurance marketsWhat small and medium businesses should understand about cyber risk todayJessica also shares her unusual journey from high school principal to cybersecurity executive, and why communication and education remain essential in cybersecurity leadership.This episode is ideal for cyber insurers, brokers, underwriters, cybersecurity leaders, MSPs, MSSPs, and business owners who want to understand where cyber insurance underwriting is headed.Our reporting on the Spektrum Labs Sophos deal. Chapters00:00 From Education to Cyber Insurance: A Unique Journey02:59 Understanding Sophos: A Leader in Cybersecurity04:23 Spectrum Labs Partnership: Revolutionizing CyberInsurance07:39 The Importance of Proving Cybersecurity Measures10:18 Evolution of Cyber Insurance: Changes Over the Years14:03 Bridging the Gap: Brokers, Buyers, and Carriers16:10 MDR Telemetry: The Key to Risk Assessment18:55 The Insurability Factor: Enhancing Cyber InsuranceOptions20:36 Shifting Standards: The Future of Cyber InsuranceUnderwriting22:15 Current State of Cyber Insurance: Mile 10 of theMarathon25:26 Continuous Underwriting: The Future of Cyber Insurance28:36 Data-Driven Risk Assessment: The Future of Pricing30:55 The Evolution of Cyber Insurance and Data Sharing37:18 The Role of AI in Cybersecurity44:54 Navigating Cybersecurity for Small and MediumBusinesses53:05 Future Trends in Cyber Insurance and Underwriting

Data governance is becoming one of the most important controls in cybersecurity and cyber insurance risk management.In this episode of the Cyber Insurance News and Information Podcast, host Martin Hinton speaks with Josh Mason, CTO of RecordPoint, about how poor data governance and uncontrolled data sprawl dramatically increase the cost and severity of cyber breaches.Many organizations focus on preventing intrusions, but the real risk often lies in what attackers find once they get inside. Years of duplicated files, legacy data systems, poorly managed permissions, and forgotten records can expand the breach “blast radius,” creating major legal, regulatory, and insurance exposure.Josh explains how data governance frameworks, defensible deletion, and AI-assisted data classification can help organizations reduce cyber risk while improving their standing with cyber insurers and regulators.The conversation also explores the growing role of AI in data management, the risks of shadow AI and third-party tools, and why insurers increasingly demand proof that governance policies are actually enforced, not just written down.In this episode, you will learn:Why data governance is critical to cyber resilience.How data sprawl increases breach severity and insurance costs.What defensible deletion means and why it matters.How AI can both improve and complicate data governance.What cyber insurers and underwriters look for when assessing data risk.Practical steps organizations can take today to reduce liability.This episode is essential listening for risk managers, CISOs, cyber insurers, compliance leaders, and executives looking to strengthen cybersecurity strategy and reduce cyber exposure.Chapters:00:00 Understanding Cybersecurity Breaches04:48 The Importance of Data Governance09:53 Defining Data Governance12:38 The Impact of Data Sprawl18:51 Immediate Steps to Mitigate Risks22:49 The Role of AI in Data Management30:38 Underwriting in the Age of AI37:44 Data Governance and Defensible Deletion40:26 Systemic Risks in Data Management44:28 Legacy Systems and Their Challenges49:06 Practical Steps for Data Management54:40 The Importance of Data Education01:00:11 Continuous Training and Cyber Resilience01:02:43 Key Metrics for Data Security01:08:39 Learning from Past Breaches

AI risk is now identity risk. In this episode of the Cyber Insurance News and Information Podcast, host Martin Hinton sits down with Chris Kelly, President of Delinea, to unpack why identity has become the security “control plane” and why that matters when AI agents, service accounts, and automation behave like real users.They dig into the explosion of non-human identities, what “cloud native” security changes about resilience and uptime, and the practical guardrails organizations need when AI systems can act at machine speed. The conversation stays grounded in real-world controls that security teams and underwriters care about, including vaulting privileged credentials, enforcing MFA for privileged access, and session recording.If you’re trying to connect AI risk to operational reality and to cyber insurance expectations, this episode gives you a clear map, with fewer buzzwords, acronyms, and more “do this next.”Chapters 00:00 Introduction and Guest Introduction01:07 The Big Headline: AI and Identity Risks02:25 AI Pervasiveness and Real-World Examples04:09 Delinea's Approach to Identity Security05:38 Customer Challenges in Identity Management08:28 Chris Kelly's Career Journey in Cybersecurity11:10 Evolving Awareness of Cybersecurity at the ExecutiveLevel13:38 The Shift to Identity as a Critical Security Focus15:11 The Need for a Dedicated Cybersecurity Division16:28 The Rise of Cloud Native Security Solutions22:34 Benefits of Cloud Native Architecture26:06 Resiliency and Continuous Operations in Cloud Security29:51 AI Strategies in Cybersecurity: Three-Pronged Approach32:15 AI for Session Recording and Threat Detection36:04 Security for AI: Protecting Autonomous Agents41:21 Real-World Example: AI and Flight Booking Scam44:02 The Growing Threat of Non-Human Identities46:59 The Coming Trust Collapse and Identity Verification49:32 AI's Impact on Small and Medium Businesses55:29 Cyber Insurance and Controls for SMBs01:00:46 Final Thoughts and Key Takeaways

Non-human identity risk is exploding; bots, service accounts, apps, automations, and AI agents that can outnumber humans by 45:1. In this Cyber Insurance News and Information podcast episode, Martin Hinton talks with Marshall Sorensen (Myriad360) about why permissions sprawl creates cyber insurance, third-party, and breach exposure, and what governance looks like in practice.In this episode, you’ll learn:What a non-human identity is and where it hidesWhy “Allow access” turns automation into riskHow attackers exploit tokens and over-permissioned toolsMonitoring, lifecycle control, and incident response basicsWhat insurers and insureds should ask for nextNon-human identities power modern business, but unmanaged permissions create invisible pathways into data, systems, and vendors. This conversation breaks down practical controls for inventory, least privilege, and monitoring to help teams reduce breach likelihood and improve insurability.Chapters00:00 Introduction to Non-Human Identities01:04 What Are Non-Human Identities?02:36 Encountering Non-Human Identities Daily04:14 Scale and Impact of Non-Human Identities07:44 Myriad360 and Identity Management12:00 Examples of Non-Human Identities in Use15:14 Permissions and Transition to Digital Identity23:53 Turnstiles and Permission Delegation27:33 Liability and Security Risks of Automation34:24 Managing Permissions and Access Control43:46 The Role of AI and Permissions57:28 Cyber Attacks Exploiting Non-Human Identities01:09:31 Monitoring and Incident Response01:16:23 Future Outlook and AI’s Role in Security01:20:01 Building a Security Culture01:20:52 Final Thoughts and Advice

Cyber insurance news podcast host Martin Hinton speaks with Glen Williams, CEO of Cyberfort, about how cyber incidents really start and why the human factor still drives many losses. They open with the “high vis jacket attack,” then unpack trust, access, and the common misconception that IT management equals cybersecurity capability. Glen explains Cyberfort’s end-to-end approach, why 24/7 monitoring matters, and how teams spot anomalies before they become claims.They also discuss AI as a tool for both defenders and attackers, the growing impact of cybercrime on SMEs, and the difference between Cyber Essentials compliance and real resilience. Glen closes with three practical controls for mid-market firms: staff training, multi-factor authentication, and an analog backup solution for communication during an incident.In this episode: Social engineering • Human factor • Continuous monitoring • AI risk • SMEs • Cyber Essentials • Cyber insurance • ResilienceTakeawaysThe high vis jacket attack illustrates the ease of gainingaccess to secure areas through social engineering.Cybersecurity is not just a technical issue; it involveshuman behavior and trust.Organizations often confuse IT management with cybersecurityexpertise, leading to vulnerabilities.Continuous monitoring is essential for effectivecybersecurity management.Cyber Essentials is a basic standard, but organizations needto go beyond compliance to ensure security.The human element in cybersecurity is crucial; trainingstaff can prevent breaches.AI is a double-edged sword in cybersecurity, used by bothdefenders and attackers.Cybercrime has a significant economic impact, costing theglobal economy trillions.SMEs are particularly vulnerable to cyber attacks but oftenlack the resources to defend against them.Having an analog backup solution is vital for communication during a cyber incident.Chapters00:00 Introduction to Glen Williams CEO of Cyberfort02:18 The High Vis Jacket Attack: A Lesson in Trust02:58 Glenn Williams' Background and Cyberfort's Mission04:51 Identifying Market Opportunities in Cybersecurity07:27 Cyberfort's Target Market: Mid-Market Organizations08:22 End-to-End Cybersecurity Services Explained10:11 The Doctor Analogy: Cybersecurity Health Checks11:58 Misconceptions About IT and Cybersecurity15:16 The Importance of 24/7 Cyber Monitoring18:59 The Role of Humans vs. AI in Cybersecurity21:16 The Impact of Cyber Attacks on SMEs24:24 Government Response to Cybersecurity Breaches28:29 The UK's Cybersecurity Landscape and Regulations32:41 Cyber Essentials: Compliance vs. Security36:57 The Importance of Testing Cybersecurity Measures38:20 The Illusion of More: Cybersecurity Spending andVulnerability39:29 The Human Element: Understanding Cybersecurity Mindsets40:25 The Psychology of Cybercrime: Human Manipulation and Vulnerability41:14 The Importance of Awareness: Protecting Digital Spaces44:49 Speed vs. Safety: The Need for Caution in DigitalTransactions46:14 Generational Trust: The Impact of Age on Cybersecurity Awareness48:14 Raising Awareness: The Need for Education inCybersecurity51:45 Cyber Insurance: A Safety Net for DigitalVulnerabilities54:10 The Role of Cyber Insurance in Business Resilience56:52 The Buyer’s Market: Cybersecurity as an Investment59:53 AI and Cybersecurity: The Need for Policies andGuardrails01:02:29 The Jigsaw Puzzle: How Small Details Can Lead to Breaches01:06:33 Three Essential Controls for Mid-Market Companies01:10:30 Cultural Differences in Cybersecurity Awareness

Insurance is supposed to catch you on the worst day. The worst day gets worse when the claim doesn’t pay. Cyber Insurance keeps tightening. Underwriting questionnaires keep growing. Coverage can hinge on procedures, controls, and fine print.In this episode of The Cyber Insurance News & Information Podcast, Executive Editor Martin Hinton speaks with Dustin Carlson, President of SRA 831(b) Admin. Carlson explains how 831(b) structures can help businesses plan for losses that fall outside the coverage of cyber Insurance. Think exclusions, sub-limits, deductibles, and business interruption that lasts longer than the policy expects.They also dig into the threat landscape, hitting small businesses. Cybercrime operates like an organized business. Social engineering exploits urgency and trust. Ransomware pressure campaigns drive disruption. Business email compromise and wire fraud continue to grow. Third-party outages can shut operations down even when you did everything “right.”If you want a clearer view of what Cyber Insurance covers, where it can fail, and how 831(b) may help fill gaps, this episode is for you.Chapters 00:00 Introduction And 831(b) Plans01:28 Understanding 831(b): A Rainy Day Fund For Businesses06:35 The Role Of 831(b) In Cyber Insurance11:23 Navigating Cyber Insurance: Common Misconceptions16:21 The Evolving Landscape Of Cyber Insurance21:29 The Importance Of Understanding Your Insurance Policy26:24 The Growing Threat Of Cyber Crime28:50 The Illusion Of Safety In Cybersecurity30:26 Understanding Ransomware Payments And Reporting33:17 The Organized Nature Of Cybercrime35:50 Social Engineering: The Human Element Of Cybersecurity38:20 Third-Party Dependencies And Business Interruptions45:53 Business Email Compromise: A Growing Threat54:38 Reframing Cybersecurity And Cyber Insurance Business ContinuityTakeaways831(b) plans serve as a tax-deferred rainy day fund for businesses.Traditional cyber insurance often has significant exclusions.Small businesses are prime targets for cyber attacks.Proactive risk management is essential for business continuity.Ransomware payments often go unreported, complicating risk assessment.Business email compromise is a growing threat to companies.Understanding your insurance policy is crucial to avoid gaps in coverage.Cyber threats are constantly evolving, requiring ongoing vigilance.Third-party dependencies can lead to unexpected business interruptions.Training employees on cybersecurity procedures is vital for protection.

Cyber risk in 2026 is accelerating as AI reshapes fraud and cybercrime. In this episode of the Cyber Insurance News and Information Podcast, host Martin Hinton speaks with Jason Makevich, founder and CEO of Greenlight Cyber and founder of PORT1. They outline what SMB leaders and MSPs should expect from deepfakes, scaled ransomware tactics, and third-party exposure.Jason shares a proof-first mindset for modern trust. He explains practical controls that reduce loss without huge spending. The conversation also connects incident reporting and better data intelligence to the pressure on cyber insurance underwriting.If you track cyber risk in 2026, this episode offers clear steps you can apply this week.Find Jason Greenlight CyberPORT1LiminalTakeawaysCybersecurity is essential for small and medium-sizedbusinesses.AI is transforming the cybersecurity landscape, but it alsoposes new risks.Organizations must take proactive steps to mitigate cyberrisks.Data governance is crucial when using AI tools.Supply chain risks are a significant concern incybersecurity.Legislation is evolving to address cybersecurity challenges.Cybercrime is increasingly organized and sophisticated.Trust but verify is no longer sufficient; don't trust atall.The majority of organizations are not adequately protectedagainst cyber threats.A major cybersecurity incident is likely to occur in thenear future.Chapters 00:00 Introduction to Cybersecurity and MSPs03:00 The Evolution of Cybersecurity Needs05:52 The Impact of AI on Cybersecurity08:47 Understanding Cyber Risk and Leadership11:36 The Role of History in Cybersecurity14:56 The Scale of Cybercrime and Its Consequences17:38 Mandatory Reporting and Cybercrime Awareness20:39 The Responsibility of Businesses in Cybersecurity23:51 The Misconception of Cybersecurity Risks26:26 Supply Chain and Third-Party Risks29:16 The Need for Secure Design in Technology32:25 The Human Element in Cybersecurity35:32 Conclusion and Future Outlook41:14 Understanding Cyber Crime Today45:31 The Geopolitical Landscape of Cyber Crime49:29 The Rise of Deepfakes and Trust Issues53:37 Trust but Verify: A New Approach to Security58:37 Basic Security Practices for Small Businesses01:01:46 Finding the Right Cybersecurity Partner01:06:42 AI Governance and Data Security01:15:45 Predictions

The Cyber Insurance Market is still maturing. Underwriters want verified controls, consistent security data, and clearer signals of resilience. In this episode of The Cyber Insurance News Podcast, host Martin Hinton speaks with Max Perkins, Head of Insurance Solutions at Spektrum Labs. Perkins explains why cyber insurance applications overwhelm many businesses, why attestations fall apart at claim time, and why data validation matters for underwriting. They also dig into today’s threat landscape, including social engineering and ransomware pressure, plus what Perkins expects next on pricing, talent movement, and control verification. If you buy, sell, or underwrite cyber coverage, this episode delivers practical guidance you can use before renewal.Find Max here Find Spektrum Labs hereThe Dell Technologies article we discussTakeawaysCyber resilience is essential for organizations of all sizes.Standardized data is crucial for effective underwriting in cyber insurance.Small businesses often misunderstand the complexities of cyber insurance policies.The threat landscape is evolving, with social engineering becoming more prevalent.Verification of security measures is key to building trust with underwriters.Chapters00:00 Introduction to Cyber Insurance and Spectrum Labs02:04 Max Perkins' Journey in Cyber Insurance09:27 The Current State of Cyber Insurance14:56 Challenges in the Cyber Insurance Application Process21:33 Understanding Cyber Insurance for Small Businesses26:25 The Role of Underwriters in Cyber Insurance31:14 The Importance of Data Validation37:05 The Evolving Threat Landscape56:05 Predictions and Myths in Cyber Insurance

In this episode, Martin Hinton speaks with Kelly Miller from FTI Consulting about the intricacies of cyber incident response and the critical role of communication during crises. They discuss the importance of establishing processes, understanding stakeholder dynamics, and the human element in crisis management. Kelly emphasizes the need for transparency, effective internal communication, and the value of preparedness through tabletop exercises. The conversation highlights common mistakes organizations make during incidents and the significance of crafting consistent messages while navigating legal and media relations.TakeawaysCommunication is a risk control, not just PR.Over-promising can lead to loss of trust.Establishing processes is crucial in the first hour.Trust is foundational in crisis management.Preparedness can save money in the long run.Words matter, especially in legal contexts.Transparency is key to maintaining trust.Internal communication must be disciplined.Recovery narratives should reassure customers.Tabletop exercises help build muscle memory."The worst thing is over-promising.""Over-promising sets the wrong tone.""Transparency is crucial for trust."Chapters00:00 Introduction to Cyber Incident Response02:52 The First Moments of a Cyber Breach05:39 The Importance of Communication in Crisis09:06 Establishing Effective Processes12:02 Understanding Stakeholder Dynamics14:59 The Human Element in Crisis Management17:57 Mapping Stakeholders and Key Messages20:53 Legal and Insurance Considerations23:58 Navigating Media Communications26:45 The Role of Internal Communications29:46 Maintaining Message Discipline32:47 Recovery and Future Preparedness34:18 Crafting a Recovery Narrative38:28 The Importance of Practice and Preparation46:30 Tabletop Exercises: The Scrimmage of Crisis Management56:42 Words Matter: The Impact of Language in Crisis Communication

Cyber liability insurance now sits at the heart of SME risk management. In this episode of the Cyber Insurance News & Information Podcast, executive editor Martin Hinton talks with Cowbell co-founder and COO Trent Cooksley about how small and mid-sized businesses can prepare for today’s cyber threats.They dig into business email compromise, ransomware, incident response, and the true cost of a serious cyber incident. Cooksley explains why many SMEs still underestimate their exposure and how cyber liability insurance supports faster recovery, expert incident handling, and stronger security controls.You’ll hear real-world insights on:Why business email compromise remains a leading cyber threat for SMEsHow ransomware incidents can shut down operations and damage cash flowThe role of cyber liability insurance in funding response, forensics, and restorationHow AI is changing both cyber attacks and cyber defenseWhat brokers and business owners should know before placing SME cyber coverage🎙 Guest: Trent Cooksley, COO and Co-Founder, Cowbell🎙 Host: Martin Hinton, Executive Editor, Cyber Insurance News & Information PodcastIf you work with SMEs as a broker, underwriter, or business owner, this episode will help you rethink cyber risk and cyber liability insurance as a core business protection, not just an add-on.

AI in cybersecurity gets hyped every day, but not all “AI” is built for threat detection. In this Cyber Insurance News & Information Podcast clip, Graylog CMO Kimber Spradlin joins host Martin Hinton to break down the real difference between LLMs and classic machine learning in security operations.Spradlin explains why LLMs make great user interfaces, but security teams still need mathematical, testable models to spot risky behavior at scale. She uses a simple example: repeated password failures from one user can either be sleepy typing… or the first signal of an attack. How you treat that signal depends on the math behind your detection.If you care about AI in cybersecurity, alert fatigue, and how security analysts really work with data, this conversation gives you a clear, non-hyped view from the front lines.Get the whole episode: https://open.spotify.com/episode/2OFmNWbYovHexPT5ynBjPO?si=629DjdtoTzWTs_TM5M4vFw

Cybersecurity communication works best when real people understand the message.In this episode of the Cyber Insurance News & Information Podcast, host Martin Hinton talks with Kimber Spradlin, Chief Marketing Officer at Graylog, about how clear language and better logging cut cyber risk.Spradlin explains how Graylog normalizes log data, so teams reduce alert noise and see real incidents. She links this work to compliance, investigations and the growing demands of cyber insurance underwriters.The conversation covers:Why cybersecurity communication must reach every employee, not only the SOCHow log management supports audits, retention rules, and insurer expectationsThe fundamental role of AI in detection versus marketing hypeMFA, identity, patching, and everyday cyber hygieneDigital literacy, deepfakes, and teaching people to spot scamsHow to frame cyber risk in business terms that boards understandIf you work in cybersecurity, cyber insurance, IT leadership, or communications, this episode gives practical ideas to sharpen your cybersecurity communication and build a stronger security culture.Follow the show for more conversations on cyber insurance, cybersecurity, resilience, and real-world incidents.Find Kimber Spradlin here - https://www.linkedin.com/in/kimberspradlin/

The cyber insurance market looks competitive and even soft, but that picture may not last.In this episode of the Cyber Insurance News & Information podcast, Executive Editor and host Martin Hinton talks with Peter Foster, Chairman of Willis’ Global FINEX Cyber Solutions. They examine how vendor concentration, ransomware, AI and data privacy are reshaping the cyber insurance market for boards, CISOs and business owners.In this conversation, Peter Foster explains:– Why systemic third-party and vendor failures remain the nightmare scenario for the cyber insurance market– How ransomware, privacy claims and tracking pixels are driving cyber liability insurance losses– Why many boards feel confident, but claims data shows big gaps in readiness– How AI introduces new exposure across cyber, tech E&O and professional liability– What small and mid-sized firms really face when they get hit and lack deep resources– What underwriters now expect to see at renewal: drills, staffing, controls and clear governanceIf you work in risk, security, broking or on a board, this episode offers a direct view into how the cyber insurance market is evolving and what questions you should ask before your next renewal.Find Peter here Find Willis here Read our article featuring Peter hereChapters00:00 Introduction to Cyber Insurance and Systemic Risks02:39 The Disconnect Between Perceived and Actual Readiness05:22 Impact of Systemic Events on Cyber Insurance Pricing07:56 Understanding Third-Party Risks and Single Points ofFailure10:54 The Confidence Gap in Cyber Insurance13:29 The Role of Small and Medium-Sized Businesses in CyberInsurance16:18 CISO Burnout and Governance Changes19:17 Investment in Cybersecurity and Board Involvement22:00 Renewal Questions and Changes in Cyber Insurance26:06 The Importance of Data Collection and Privacy31:15 Navigating AI Risks in Insurance38:29 Ransomware Payments: Ethical Dilemmas and LegalImplications43:09 The Future of the Cyber Insurance Market

AI Risk is accelerating — and the insurance industry is at risk of repeating its biggest mistake.In this episode of the Cyber Insurance News & Information Podcast, Executive Editor and Host Martin Hinton sits down with Erin Kenneally, founder of Elchemy and a leading expert on AI governance, cybersecurity risk modeling, and technology policy.They explore the emerging fault lines in AI Risk; from silent exposures and coverage ambiguity to unpriced liabilities and third-party dependencies. Kenneally draws a direct parallel between today’s AI-driven risks and the ransomware crises that once upended the cyber insurance market.⁠Martin Hinton⁠ is Executive Editor of ⁠Cyber Insurance News & Information⁠, covering the intersection of digital risk, underwriting innovation, and emerging technology.Follow the show for expert interviews, actionable takeaways, and the latest thinking in AI Risk, cyber insurance, and regulatory evolution.What You’ll Learn in This EpisodeWhy AI Risk mirrors ransomware’s early trajectoryThe blind spots in cyber and Tech E&O coverageHow to identify AI operational failure triggersThe role of prompt injection, data poisoning, and agentic AI in loss scenariosWhy insurers must move toward scenario-based coverage modelsHow small businesses can use AI performance warranties for affordable risk protectionWhat regulators — and especially the EU AI Act — mean for policy language.There;s lots in there - AI Risk, AI insurance, cyber insurance, AI liability, Tech E&O, AI governance, model drift, prompt injection, training data poisoning, ransomware lessons, scenario-based coverage, underwriting innovation, EU AI Act, AI regulation, cyber risk management, privacy, ethics in AI

Ransomware attacks keep rising. Executive Editor and Host Martin Hinton interviews Kurtis Minder—veteran negotiator, author of Cyber Recon, and founder of GroupSense—about how negotiations actually work, what cyber insurance changes, and the prep that protects leverage and cuts downtime.Find Kurtis here.⁠www.kurtisminder.comBuy his book - Cyber Recon: My Life in Cyber Espionage and Ransomware Negotiation. https://a.co/d/eosApRTWhat you’ll learnHow negotiation chats with threat actors unfoldPricing anchors, proofs, and why cadence mattersCyber insurance requirements and panel workflowsPractical prevention: MFA, EDR, segmentation, tested backupsIncident response runbooks and executive tabletop drillsPolicy debate on ransom bans and realistic alternativesChapters00:00 Intro to cybersecurity and ransomware negotiation02:53 The human element in security05:52 Communicating with threat actors08:39 Understanding ransomware dynamics11:32 Negotiation strategies14:22 The role of cyber insurance17:26 Preventative measures and cyber hygiene20:10 Incident response planning23:11 The future of cybersecurity and ransomware35:45 Ransomware response protocols38:20 Executive-level tabletop exercises39:13 Communication mistakes during incidents42:41 Negotiating with ransomware attackers45:57 The scale of ransom payments47:49 Debating a ban on payments50:38 Societal responsibility in cybersecurity57:00 The ongoing cyber warfare landscape

Your child’s identity could already be stolen — and you wouldn’t know until they turn 18.In this powerful episode of the Cyber Insurance News and Information Podcast, host Martin Hinton talks with Michael Scheumack, Chief Innovation Officer at IdentityIQ, about the growing identity theft crisis and a shocking new scam — ghost students.Ghost student fraud costs the U.S. government $1 billion a year, with some community colleges estimating one in four applications are fake. Scheumack explains how criminals steal children’s Social Security numbers to create synthetic identities, apply for federal student loans, and leave victims in debt before they reach adulthood.You’ll also learn:Identity theft is a growing concern, especially for children.Ghost student scams involve stealing children's identities for financial gain.Awareness and education are crucial in preventing fraud.Cyber insurance has gaps that consumers need to be aware of.Monitoring credit reports can help detect identity theft early.Seniors are particularly vulnerable to scams due to technology gaps.Urgency in communications is often a red flag for scams.Banks are becoming more proactive in fraud detection.Problems related to identity theft do not resolve themselves.There are resources available for individuals who have been scammed.🎙️ Guest: Michael Scheumack, Chief Innovation Officer, IdentityIQ, need help? Go here.🎧 Host: Martin Hinton, Executive Editor, Cyber Insurance News📍 Listen now and learn how to fight back against identity theft.#IdentityTheft #GhostStudents #CyberInsuranceNews #CyberSecurityPodcast #CyberCrime #IdentityIQ #MartinHinton #MichaelScheumack #StudentLoanFraud #SyntheticIdentity #ChildIdentityTheft #OnlineSafety #DataBreach #CyberInsurance #Podcast

Criminals go where the valuables are. In today’s digital workplace, that location is the browser. Employees spend 90% of their workday inside browsers, using SaaS platforms, AI tools, and cloud storage. This shift makes browser security the frontline of modern cyber defense.In this episode of the Cyber Insurance News & Information Podcast, host Martin Hinton talks with Vivek Ramachandran, founder of SquareX and veteran cybersecurity researcher. Together, they explore how browser detection and response (BDR) protects against attacks that traditional endpoint solutions miss.What you’ll learn in this episode:Why do criminals now target browsers instead of desktops?How malicious extensions and identity attacks steal passwords and cloud data.Why Managing Browser Updates and Extensions Is Critical.How AI-driven apps expand the attack surface.The future of browser security and why BDR matters for every organization.Vivek shares insights from 25+ years in cybersecurity, with experience speaking at DEFCON, Black Hat, and RSA. He explains why enterprises and individuals must rethink protection strategies to defend the browser—the new digital vault.⁠Episode Glossary for the Acronym Challenged⁠Chapters00:00 Introduction to Cybersecurity and Square X01:19 The Evolution of Browser Usage in Cybersecurity04:55 The Shift in Security Focus to Browsers08:44 Human Behavior and Browser Security12:23 The Importance of Digital Privacy16:05 Understanding Browser Detection Response (BDR)17:28 Square X: Protecting the Browser Environment21:42 Year of Browser Bugs and Architectural Vulnerabilities23:23 Real-World Implications of Browser Vulnerabilities25:38 The Evolving Landscape of Cybersecurity Threats29:40 Adapting to Cyber Threats: The Bend-Don't-Break Mindset31:21 The Role of Cyber Insurance in Risk Management35:25 Essential Browser Security Measures39:25 The Future of Browsers and AI in Cybersecurity50:39 Navigating the AI Landscape in Cybersecurity

In this episode of the Cyber Insurance News & Information Podcast, host Martin Hinton talks with Joseph Wright, Vice President of Services at Blue Team Alpha, about the crucial role of incident response in today’s digital landscape.After two decades rescuing lives in the U.S. Coast Guard, Joseph now applies his skills to helping organizations survive and recover from cyberattacks. He explains why incident response planning must be proactive, not reactive, and why waiting until after an attack can cost businesses millions.🎙️ What you’ll learn in this episode:What incident response looks like when disaster strikesWhy the cost of recovery can be 10–15x higher than preventionThe hidden financial, legal, and reputational impacts of cyber incidentsHow small and medium-sized businesses can prepare for cyber resilienceWhy proactive security is always cheaper—and safer—than reactive measuresWhether you’re a business leader, IT manager, or small business owner, this conversation offers practical insights into preparing for the unexpected. Wright’s message is clear: the time to think about incident response is before a cyberattack happens.www.cyberinsurancenews.orgwww.blueteamalpha.com

In This Podcast - Cybersecurity isn't just a boardroom issue—it's personal. In this episode of the Cyber Insurance News Podcast, host Martin Hinton talks with veteran cybersecurity journalist Danny Palmer about the evolution of cybercrime, the rise of ransomware attacks, and the growing threat of AI deepfakes targeting individuals and organizations alike. From those enjoying retirement to those running the world's most complex companies, no one is immune or safe. From his first ransomware story demanding just $500 to covering high-profile hacks that crippled retailers like Marks and Spencer’s, Palmer shares what he's learned over a decade on the cybersecurity frontlines. The conversation highlights the human element, organizational vulnerabilities, and how sophisticated cybercriminals now operate like corporate enterprises.🔐 Topics Covered:Ransomware as a business modelAI deepfakes and impersonation scamsThe Marks and Spencer cyberattackThe UK’s new cyber incident reporting lawsHuman error and insider risksPublic awareness and how to stay protectedWith some saying global cybercrime costs projected to exceed $10.5 trillion annually by 2025, this episode offers essential insights for businesses, IT professionals, and everyday users.Don’t miss this eye-opening conversation. Find ⁠Danny Palmer⁠ and on ⁠LinkedIn⁠ More on ⁠Marks & SpencerLike, subscribe, and stay ahead of evolving cyber threats.00:00 - Introduction to Cybersecurity Reporting01:36 - Danny Palmer's Journey in Cybersecurity Journalism04:46 - The Evolution of Ransomware10:35 - Understanding Organized Cybercrime15:09 - UK's Cybersecurity Reporting Requirements20:56 - Public Awareness and Cybersecurity Events27:56 - The Marks and Spencer's Ransomware Attack34:31 - The New Age of Cybercrime: Youth Involvement36:17 - Corporate Cybersecurity Challenges and Crisis Communication41:47 - The Human Cost of Cyber Attacks44:21 - Understanding the Human Element in Cybersecurity51:40 - AI's Role in Cybersecurity: Opportunities and Threats01:01:21 - The Evolving Landscape of Cybercrime01:05:29 - Practical Cybersecurity Tips for Individuals and BusinessesWelcome to Cyber Insurance News & Information – Your Trusted Source for Everything Cybersecurity and Cyber Insurance! Stay informed, stay protected. Our channel is dedicated to bringing you the latest news, expert insights, and essential updates in the fast-evolving world of cybersecurity and cyber insurance. Whether you're a business owner, IT professional, insurer, or simply interested in digital risk, we break down complex topics into clear, actionable content.What You'll Find Here: Regular updates on cybersecurity threats and breaches. Deep dives into cyber insurance policies and trends. Tips on risk management and cyber compliance. Interviews with industry experts. Regulatory updates and legal analysis. Real-world case studies and best practices. Subscribe now and join a growing community that’s serious about understanding and managing cyber risks in today’s digital world.

SummaryIn this episode of the Cyber Insurance News Podcast, host Martin Hinton speaks with Bojan Simic, CEO of HYPR, about the evolution of cybersecurity, the challenges posed by traditional passwords, and the innovative solutions like passkeys that aim to enhance security. They discuss the implications of phishing-resistant authentication, the rise of deepfakes, and the significant role of human error in cybersecurity incidents. The conversation also explores the future of identity and security in an increasingly digital world, highlighting the need for robust security measures as technology continues to evolve.TakeawaysBojan Simic is a co-founder of a cybersecurity startup, HYPR.The traditional password system is fundamentally insecure.Passkeys are a new standard for secure authentication.Phishing attacks exploit human error and trust.Deepfakes pose a significant threat to cybersecurity.Human error is the leading cause of cybersecurity incidents.Security teams and help desks should have distinct roles.The future of security will involve advanced identity verification.AI can enhance both security and the sophistication of attacks.The evolution of technology requires a reevaluation of security measures.Chapters00:00 Introduction to Cybersecurity and HYPR02:02 The Password Problem06:06 Introducing Passkeys as a Solution13:43 Phishing-Resistant Authentication20:54 The Rise of Deepfakes24:30 Not MFA but MFV28:27 Human Error in Cybersecurity33:16 The Future of Cybersecurity and AI

In this clip from Ep# 7 of the Cyber Insurance News Podcast episode of Cyber Insurance News, host Martin Hinton sits down with Craig Ramsay from Omada to explore how AI is transforming Identity Governance (IGA). From streamlining access reviews to driving smarter decisions in user access management, AI promises efficiency—but not without risk.Craig discusses:How AI reduces friction in IGA processesWhy "AI needs AI"—Artificial Intelligence still needs an Accountable IndividualThe ethical balance between automation and responsibilityReal-world insights on privacy, compliance, and riskThis is a must-listen for professionals in cyber insurance, IT governance, and enterprise security looking to stay ahead of emerging trends in AI and identity management.🔗 Links:Find Craig on LinkedIn: https://www.linkedin.com/in/craigramsay86/Visit Cyber Insurance News: www.cyberinsurancenews.org🔊 Follow, rate, and share this episode if you’re navigating the future of Identity Governance.

In this episode of Cyber Insurance News, Martin Hinton dives deep with Craig Ramsay from Omada into the pivotal role of Identity Governance and Administration (IGA) in today’s cybersecurity climate.🚀 Key Topics:Why 40% of orgs still haven’t modernized IGAHow AI and automation are revolutionizing access managementCloud vs. legacy IGA systemsThe looming threat of quantum computingWhy identity is the new perimeter🔒 Discover how IGA acts as both a security enhancer and business enabler in the era of cybercrime and digital transformation.👉 Subscribe & follow us for weekly updates on the latest in cyber insurance, identity risk, and security innovations.Find Craig Ramsay on LinkedIn - https://www.linkedin.com/in/craigramsay86/Chapters00:00 Introduction to Identity Governance02:21 Understanding Identity Governance and Administration (IGA)04:56 The Importance of IGA in Cybersecurity07:17 Challenges in Identity Management10:13 The Threat Landscape and Cybercrime12:38 AI and Automation in Identity Governance18:14 Cloud-Based IGA vs. Legacy Systems20:06 Quantum Computing and Future Threats26:37 Myths About Identity Governance27:09 Final Thoughts and Future Directions

In this clip from the Cyber Insurance News Podcast Episide #6, host Martin Hinton sits down with Dan Candee, CEO of Cork Protection, to simplify one of the most acronym-heavy areas in tech: MSPs (Managed Service Providers) and MSSPs (Managed Security Service Providers).💡 Dan helps cut through the jargon, explaining how these providers function like outsourced IT departments — essential partners in managing cybersecurity, cloud infrastructure, and tech support for businesses of all sizes.🎙️ What you’ll learn:The difference between MSPs and MSSPsWhy these providers are vital to small and mid-size businessesHow outsourcing cybersecurity is similar to hiring accountants or mechanicsReal-world examples that make complex concepts clearWhether you're a business owner, tech-curious listener, or exploring the world of cyber insurance, this episode is packed with insights to help you better understand your digital ecosystem.🔐 Stay secure. Stay informed.#CyberSecurity #MSP #MSSP #DanCandee #CorkProtection #CyberInsurance #SmallBusiness #CyberRisk #ITServices #ManagedServices

In this clip from our latest podcast episode, Dan Candee, CEO of Cork Protection, dives into a critical topic that hits close to home: Cybersecurity for Main Street businesses.🛡️ With a background in enterprise-level cybersecurity on Wall Street and a personal connection to small business through his family, Dan shares why Cork focuses on protecting small and mid-sized businesses from rising cyber threats.🚨 "The threat actors are getting better, and they're coming after Main Street more and more."👉 Discover why Main Street is being underserved in today's digital threat landscape and how Cork is filling that gap with a unique value proposition.🔗 Learn more about Cork: corkinc.com🎧 Full Podcast Episode: www.youtube.com/@CyberInsuranceNews/podcasts📣 Don't forget to LIKE, SUBSCRIBE, and hit the 🔔 notification bell so you never miss a powerful conversation.#Cybersecurity #SmallBusiness #MainStreet #DanCandee #CorkProtection #TechForGood #SMBs #PodcastClip #CyberThreats #BusinessSecurity

In this episode of The Cyber Insurance News & Information Podcast, host Martin Hinton speaks with Dan Candee, CEO of Cork Protection, about the critical and evolving cybersecurity threats facing small and mid-sized businesses (SMBs). Dan shares his unique journey, from house painting to leading a cutting-edge cybersecurity firm, and explains why Main Street has become a prime target for cybercriminals.Tune in to learn:• Why SMBs are now in the crosshairs of threat actors• How managed service providers (MSPs) are essential to business protection• What “agentic AI” is and how it’s reshaping cyber insurance analysis• Real-life stories of social engineering and wire transfer fraud• How Cork Protection bridges the gap between cyber tech and financial responseWhether you're a small business owner or a cybersecurity pro, this episode delivers eye-opening insights and practical strategies to help you protect what matters most.🎧 Listen now on Spotify, and don't forget to follow the show for more expert insights on cybersecurity, insurance, and resilience.#CyberSecurity #CyberInsurance #SmallBusiness #SMB #DanCandee #CorkProtection #MSP #AIinSecurity #CyberPodcast #BusinessResilience

In this episode of the Cyber Insurance News Podcast, Executive Editor Martin Hinton sits down with William Altman, Head of Cyber Threat Intelligence at CyberCube, to unpack the evolving threat landscape in cybersecurity. Together, they explore how small businesses have become prime targets for cybercriminals, the widening protection gap in cyber insurance, and how AI is changing the game on both sides of the cyber battle.A major focus of the discussion is the crisis in education sector cybersecurity, including a massive breach that exposed 60 million K-12 student records. These records included sensitive data like mental health histories and medication protocols, information that can’t be changed or reissued. The long-term impact for affected students goes far beyond what credit monitoring can protect, raising serious concerns about privacy, fraud risk, and psychological safety for years to come.You’ll learn about:The top cybersecurity threats facing small businesses in 2025How cyber insurance is failing to cover today’s biggest risksWhy MFA and identity access management are non-negotiableHow AI is being weaponized in phishing and social engineeringThe education sector’s alarming vulnerability to cyberattacksGlobal trends in financial sector cybersecurityThis conversation delivers actionable insights for small business owners, IT leaders, educators, and anyone concerned with the future of digital risk and cyber resilience.🎙️ Guest: William Altman, CyberCube🎧 Host: Martin Hinton, Cyber Insurance News🔗 For more resources, visit CyberCube🔗 NIST Framework🔗 CIS Critical Security Controls📬 Questions? Reach out via comments or social media.#Cybersecurity #CyberInsurance #AIThreats #StudentDataBreach #SmallBusinessRisk #DigitalPrivacy #CyberCube #EducationCybersecurity #ThreatIntelligence

In this episode, Cyber Insurance News Executive Editor Martin Hinton discusses the personal side of cybersecurity with Trinity Davis and Chuck Randolph from 360 Privacy. They explore the threats individuals face in the digital age, the importance of reducing one's digital footprint, and practical advice for enhancing personal cybersecurity. The conversation also explores the role of AI in addressing cyber threats, the value of personal data, and the implications of deepfakes. The episode highlights the importance of cybersecurity, insurance, and general cyber hygiene as a means of resilience against potential data breaches.During the podcast, Trinity Davis offered some practical tips for hardening your digital security. You can find that here. TakeawaysCybersecurity impacts individuals as much as corporations.Reducing digital presence can prevent harassment and threats.Understanding the attack cycle is crucial for personal safety.Convenience often comes at the cost of safety and privacy.AI enhances the capabilities of cybercriminals.Personal data is valuable and can be exploited.Juice jacking is a real threat for travelers.Deepfakes pose significant risks to personal and corporate reputations.Compartmentalizing communications can enhance security.Cyber insurance is essential for resilience against breaches.Chapters00:00 Introduction to Cybersecurity and Personal Risks06:33 Understanding the Threat Landscape13:42 Practical Advice for Personal Cybersecurity21:23 The Value of Personal Data in Cybercrime29:51 Protecting Your Identity: Credit Security Measures31:38 Cybersecurity Breaches: Real-World Examples36:49 The Threat of Deepfakes: Implications for Security43:44 Convergence of Cyber and Physical Security50:08 The Role of Cyber Insurance in Personal Security54:07 Best Practices for Digital Hygiene

Personal Cyber Insurance is the topic in this clip from the latest Cyber Insurance News Podcast, Ryan Mimmo of Converge Insurance shares his thoughts on the product, risks, and where it might be going.

In this clip from the latest Cyber Insurance News & Information Podcast, Ryan Mimmo of Converge Insurance discusses the trend of education and awareness in cyber insurance and cybersecurity and says that more is needed to reduce threats.

In this clip from Episode #3, Ryan Mimmo shares some thoughts for SMEs and the increasing involvement of CISOs in the cyber insurance policy process. #cyberinsurance #cybersecurity #SME #CISO

In this clip from the latest Cyber Insurance News & Information Podcast, Ryan Mimmo of Converge Insurance breaks down the CDK cyber breach, and how it shows the ripple effect a single attack can have across an entire industry. #CyberInsurance #CyberSecurity #CDKBreach

In this episode, Martin Hinton speaks with Ryan Mimmo, head of underwriting at Converge Insurance, about the evolving landscape of cyber insurance. They discuss the challenges of underwriting in a rapidly changing environment, the importance of cybersecurity education for businesses, and the need for comprehensive coverage. The conversation also touches on the role of government in regulating cyber insurance and the significance of continuous training to mitigate risks. A case study on the CDK breach highlights the far-reaching impacts of cyber attacks on industries.00:00 - Introduction to Cyber Insurance and Converge03:04 - The Evolving Cybersecurity Landscape04:34 - Challenges in Cyber Insurance Underwriting06:45 - Guidance for Small and Medium-Sized Businesses09:15 - The Importance of Cybersecurity Education13:22 - Emerging Trends in Personal Cyber Insurance17:11 - Key Considerations for Cyber Insurance Policies23:01 - The Role of Underwriters in Cyber Insurance27:49 - The Need for Greater Cybersecurity Awareness29:59 - Case Study: The CDK Breach and Its Impact33:55 - Closing thoughts

In this episode of the Cyber Insurance News and Information Podcast, host Martin Hinton discusses the complexities of cybersecurity insurance with experts Craig Sekowski with thetechcollective.net and Ralph Pasquariello with care-report.com. They explore the challenges small businesses face in understanding cyber insurance, the importance of building cyber resilience, and the various cyber threats, such as business email compromise and ransomware. The conversation emphasizes the need for businesses to invest in cybersecurity insurance and security measures to protect against potential attacks, highlighting the evolving nature of cyber threats and the necessity for adaptable cyber insurance policies.www.cyberinsurancenews.org00:00 Introduction to Cyber Insurance and Its Complexity01:59 Understanding Cyber Insurance for Small Businesses05:49 The Importance of Cybersecurity Measures09:06 Common Cyber Threats: BEC and Ransomware12:03 The Scale of Cybercrime and Its Impact15:03 Denial of Service Attacks Explained17:59 Cost-Benefit Analysis of Cyber Insurance20:59 The Disconnect Between Compliance and Risk23:59 Navigating Cyber Insurance Policies26:59 The Role of Experts in Cyber Insurance29:59 Closing Thoughts on Cyber Resilience34:03 Closing Thoughts on Cyber Resilience

In this episode of the Cyber Insurance News podcast, our Executive-Editor Martin Hinton speaks with Jason Makevich, founder and CEO of Greenlight Cyber, about the critical intersection of small business, cybersecurity, and insurance. They discuss the significant vulnerability of small businesses to cyber threats, the misconceptions surrounding IT and cybersecurity, and the importance of understanding various cyber risks, particularly ransomware and phishing. The conversation emphasizes the need for a cultural shift within organizations to prioritize cybersecurity, the role of cyber insurance in enhancing business resilience, and the importance of choosing the right cybersecurity partners. They also touch on the need for national cybersecurity standards and the potential for tax incentives to encourage small businesses to invest in their cyber defenses.