Security News > 2021 > July > Study Finds Insurance Companies Lack Cyber Hygiene
A study of exposed web-app attack surface reveals that insurance companies are not good at keeping their own security house in order.
Kids with sports cars pay high motor insurance premiums and houses built on flood plains have high home insurance premiums.
The same pattern will be inevitable for cyber insurance - but it turns out these insurance companies have poor cyber hygiene themselves.
A study by Outpost24 reveals that insurance companies are not good at keeping their own security house in order.
For the record, the top ten insurers analyzed were Allianz Group, AXA SA, Legal and General, Assicurazioni Generali, Aviva plc, CNP Assurances, Aegon, Prudential, Zurich Insurance Group, and Munich Re. It should be stressed that these scores apply only to internet-facing web applications, and do not examine the internal network security of the insurance companies.
"As attacks targeting insurance companies increase, visibility is key. It is essential for insurance security professionals to have continuous insights of their digital footprint and attack surface, as very often they are in the dark about how many publicly exposed web apps are out there and their security posture," said Stephane Konarkowski, managed services program director at Outpost24.