BUSINESS PERSONAL INDUSTRIES CORPORATE
CLAIMS PAY POLICY WORDINGS
ABOUT CONTACT 0800 276 624 Menu

Hit enter to search or ESC to close

MENU

Business insurance
BUSINESS INSURANCE CORPORATE INSURANCE INDUSTRIES
BUSINESS INSURANCE Boat and watercraft insurance Business interruption insurance Business liability insurance Commercial motor vehicle insurance Commercial property insurance Cyber insurance Employee benefits programmes Health and safety solutions Insurance schemes for industry bodies and organisations Life and health for business Marine insurance Professional indemnity insurance Rural insurance Schools insurance SMARTpak SME insurance Travel insurance for business
CORPORATE INSURANCE Business interruption insurance Commercial motor vehicle insurance Commercial property insurance Commercial property insurance Cyber insurance Cyber insurance Directors and officers liability Employee benefits programmes Employee benefits programmes Insolvency and turnaround insurance Professional indemnity insurance Risk engineering Surety bonds Trade credit insurance Travel insurance for business
INDUSTRIES Aged care and healthcare Agriculture Aviation insurance Bloodstock Construction Education Energy Entertainment Financial services Forestry Manufacturing Marine Mining Not for profit Professional services Retail and food services Technology Trades Transport
Personal insurance
PERSONAL INSURANCE Boat and watercraft insurance Car insurance Contents insurance Home insurance Landlord insurance Life and health insurance Onesurance Travel insurance
Claims
Pay
Policy wordings
Contact
News
About
ABOUT Why choose Gallagher Insurance Our company Gallagher Insurance 简介 Careers Community and sponsorship
Terms of business and disclosure
Privacy

Steps of a cyber attack

A cyber attack can happen in 3 surprisingly quick steps. Typically a business needs to act fast to try and manage their risks and minimise disruption.

Cyber attacks are ever increasing, and the occurrence of ransomware in particular continues to rise. In the second quarter of 2021, New Zealand cyber security organisation CERT NZ reported a record increase of 150% in ransomware reports on the previous quarter.

Kiwi businesses and staff can easily be exposed. The following scenario (while fictitious) demonstrates in three steps how easily an attack can happen, and how quickly things can unfold.

  1. Employee innocently clicks link in a phishing email prompting ransomware to spread through the network locking files.
  2. The hacker demands a ransom of $250,000 in bitcoin to provide a decryption key for releasing the locked data.
  3. Hacker threatens to end communications , delete or release the highly sensitive employee and client information, if a deadline of six days is not met.

Understanding the extent of disruption

In this scenario all data is locked, with phones and internet access down too. Ransomware has even spread to other locations and data back-ups are blocked. Everyone involved needs to move quickly, working within the tight six-day deadline. Trust and public reputation are seriously at risk.

Meanwhile forensic experts try to determine who the hackers are. It’s not always possible to track down who is behind the attack, meaning if the business decides to pay the ransom, it could even be helping to fund terrorist activity. Sourcing bitcoin to arrange payment on time could also prove challenging. 

Other factors to be mindful of are whether the decryption key will even work, and how long it could take. It may be several weeks, resulting in a lot of downtime for the business.

What is ransomware - it's malicious software is deployed to prevent file or system access until a ransom is paid

Ransomware attacks happen all over New Zealand across a wide range of sectors.

Having a plan to help businesses act fast

Cyber insurance policies such as CyberSAFE include access to a breach coach via an 0800 hotline. The breach coach is the first point of contact; they help coordinate IT, forensic, legal and PR experts to help restore the network, minimise exposure to loss or liability, and manage reputation damage.

Alongside insurance, having a breach response plan will enable businesses to manage the actions and decisions more promptly in the aftermath of an attack. Some of the key items to cover in a breach response plan include:

  • Cyber insurance information, and the hotline 0800 number to access the breach coach
  • Details of who your ultimate decision makers are in the case of an attack, and how they can be contacted during and outside office hours. Weigh up if it should be senior management or a panel of relevant departments such as in-house legal, IT and operations
  • Does the business have a way to readily access bitcoin if the need arises?  
  • A communication strategy which gives some consideration to how much information the business would be comfortable sharing in different scenarios, taking into account privacy obligations and what the escalation process should be

More tips to manage cyber risk

CL647C CLMB Cyber social image 1200pxw x 630pxh V1

Anyone's a target

Cyber attacks happen to businesses of any size, in every industry. Our cyber insurance brokers help businesses identify and assess cyber risks, provide insurance advice, and arrange the most suitable cyber protection.

Get your cyber insurance sorted.

Contact a broker

Published September 2021

Cyber     

Related articles

Staying safe from online scams

As online scams rise, it's important to be vigilant and understand your coverage. Read more.

Read article

Bouncing back from a cyber-attack

Auckland business owner and Crombie Lockwood client Steve Osborn talks about his company's experience of a cyber-attack and the process of recovery.

Read article

Two-factor authentication for business securi…

As cyber-attacks increase in volume and sophistication, there's an easy way to add an extra layer of security for your business.

Read article