FANews
FANews
RELATED CATEGORIES
Category Legal Affairs
SUB CATEGORIES General | 

Silent cyber and ransomeware cover (US)

29 October 2021 Patrick Bracher, Norton Rose Fulbright
Patrick Bracher, Norton Rose Fulbright

Patrick Bracher, Norton Rose Fulbright

The insured was locked out of its computer systems with the hard drives encrypted as a result of a ransomeware attack. It ultimately paid the requested ransom with four bitcoins valued at nearly $35 000 before it regained access to its computer systems. The court held that, if fraud was established, the insurers would have to pay the ransom loss under computer fraud coverage despite the fact that the insured had not purchased the available computer virus and hacking coverage.

The policy covered loss “resulting directly from the use of any computer to fraudulently cause a transfer of money”.  The court held that the phrase “fraudulently cause a transfer” is unambiguous and could reasonably be understood to mean “to obtain by a trick”.  If no safeguards were put in place and it was possible for a hacker to enter the company’s server unhindered and hold them hostage there would have been no trick.  Therefore summary judgment was refused to see whether the insured could prove that the hack resulted from some sort of deception such as a targeted spear-phishing email.  The court also held that the loss resulted “directly from the use of a computer”.  Even although the payment of the bitcoin was voluntarily made, in the sense of consciously made, it was made under duress and resulted directly from the use of a computer.  The payment of ransomeware would therefore be covered by the policy if deception was proved.

The court made the following observation: “First, the interplay between computer fraud coverage and computer hacking is an emerging area of law.  Courts have had limited opportunities to construe these types of provisions.  Second, computer hacking can take multiple forms.  It can hardly be disputed that today’s digital environment invites evolving degrees of cyber-malfeasance”.

[G&G Oil Co of Indiana, Inc v Continental Western Insurance Co: Supreme Court of Indiana: case no. 20S-PL-617]

First published by: Financial Institutions Legal Snapshot

Quick Polls

QUESTION

The latest salvo in the active versus passive debate suggests that passive has an edge in highly efficient markets, or where the share universe is relatively small. In this context, how do you approach SA Equity investing?

ANSWER

Active always, the experts know best
Active, but favour the smaller funds
Passive for the win
Strike a balance between the two
fanews magazine
FAnews October 2024 Get the latest issue of FAnews

This month's headlines

The township economy: an overlooked insurance market
FSCA regulates crypto assets: a new era for investors
Building trust: one epic client experience at a time
Two-Pot System rollout underlines the value of financial advice
The future looks bright for construction
Subscribe now