Digital Risk: Enterprises Need More Than Cyber Insurance
Resources

Resilience Midyear 2023 Claims Report

Cybercriminals Uplevel Tactics to Deal with Lower Extortion Payment Rate

by Brian Bochner , VP, Marketing
Published

SAN FRANCISCO, CA, October 17, 2023 – Ransomware is entering a new era, as cybercriminals have begun shifting their tactics to bypass security controls by hitting critical vendors and seeking larger targets for extortions, Resilience found in its Midyear 2023 Claims Report.

Among the key findings:

  • Cybercriminals are returning to “big-game hunting.” Attackers are focusing on bigger targets, particularly those organizations with sensitive data that are able to pay larger ransom demands. Two recent examples are MGM Resorts and Caesars Entertainment
  • Third-party vendors become the lead point of failure. Vendor cyber risk has overtaken phishing attacks as the leading point of failure in cybersecurity. Resilience data shows third-party vendor incidents account for 28.9% of its clients’ all-time claims, ahead of phishing at 23.1%.
  • Traditional ransomware expanding to encryption-less extortion. Threat actors are expanding on previous tactics in which they encrypted data and offered decryption keys in exchange for ransoms. Now, Resilience is seeing an increase in encryption-less data exfiltration attacks that threaten to publish sensitive material unless the criminals’ extortion demands are met.

“Ransomware remains a top concern for our clients, with data from firms like Chainalysis showing 2023 is on track to be one of the most active years on record,” said Vishaal “V8” Hariprasad, CEO & Co-Founder of Resilience. “However, ransomware risk can be mitigated to the point that victims can choose not to pay a ransom,” Hariprasad added. “Resilience data shows only 15% of the overall Resilience client base who experienced an extortion incident in the first half of 2023 elected to pay to resolve an incident.” By comparison, for all ransomware attacks analyzed by Coveware, the average payment rate was 39.5% in the first two quarters of this year.

A key event behind the trend in encryption-less extortion was the massive hack in May 2023 of the MOVEit file transfer platform. The attack affected at least 1,000 organizations and more than 60 million individuals whose data was stolen by a notorious ransomware and extortion gang. The gang is continuing to extort payments from victims.

The findings of the Midyear 2023 Claims Report support the Resilience model of a holistic approach to managing risk. Earlier in 2023, the company introduced the Resilience Solution, designed to help companies balance their risk acceptance, risk mitigation, and risk transfer so they can assess, measure, and manage their cyber risk in an integrated and economically efficient manner. To read the Resilience Midyear Claims Report, please visit www.CyberResilience.com.

You might also like

Resilience taps Colonel Judson C. Dressler, Ret., to lead its Risk Operations Center

SAN FRANCISCO, CA – June 17, 2025 – Resilience, the leading provider of cyber risk solutions, today announced that recently retired Colonel Judson C. Dressler will join the company to lead its Risk Operations Center (ROC). Dressler will spearhead the expansion of the ROC—an industry-first proprietary risk intelligence and threat hunting capability—to continue proactively identifying […]

Resilience’s Risk Operations Center (ROC) Honored with CSO Award for Innovation in Security Intelligence

SAN FRANCISCO, CA – June 12, 2025 – Resilience, the leading cyber risk solutions company, has been named a 2025 CSO Award winner by Foundry’s CSO for its Risk Operations Center (ROC). The CSO Awards honor 50 organizations and their security leaders for initiatives that drive significant business value through innovative security strategies. Recognition by […]

Resilience Expands Operations to Bring Cyber Resilience to Germany and Austria

Munich, Germany – 14 May, 2024: Resilience, the leading cyber risk solutions company, has expanded its European insurance operations to Germany and Austria. To lead its efforts to support clients and brokers in the region, the company has hired cyber insurance expert Thorsten Mairhofer as Head of the region. Building on successful expansion in France […]

Digital Risk: Enterprises Need More Than Cyber Insurance

Resilience Unveils Interactive Cyber Risk Calculator

SAN FRANCISCO, CA – May 13, 2025 – Resilience, a leader in cyber risk solutions, today launched the industry’s first Cyber Risk Calculator to provide organizations with a financial snapshot of their cyber risk. The AI-powered tool provides security and risk practitioners and C-Suite executives alike with a common, data-driven language to better understand and […]

Resilience Welcomes Diego Rodriquez Vazquez as Underwriting Manager for Spain and Portugal

Madrid, Spain May 7, 2025 – Resilience, the leading cyber risk solutions company, announced today the appointment of Diego Rodriquez Vazquez as Underwriting Manager for Spain and Portugal. Diego joins Resilience from Axa XL where he worked for two years as Senior Cyber Underwriter for Spain and Portugal; before that, he worked four years as […]

cyber resilience framework

Maria Long Promoted to Resilience Chief Underwriting Officer

New York, NY – April 15, 2025– Resilience, the leading cyber risk company, announced today the appointment of Maria Long as Chief Underwriting Officer. In this role, Long will direct and oversee all aspects of the underwriting function for Resilience’s growing portfolio, reporting directly to George Kotsiopoulos, president of insurance.  “Maria’s track record and experience […]