Breach, ransomware, wire fraud and regulatory defence — sized to your data and bound to the exact language your customers and regulators require.
Cyber liability covers the first-party costs of recovering from a cyber event — incident response, forensics, ransomware, lost income — and the third-party liability when your customers' or employees' data is exposed. It's the line that now lives at the intersection of customer contracts, board expectations and regulator demands.
Enterprise procurement, Fortune-500 MSAs and venture-backed term sheets all now treat cyber as a hard gate. We bind to the exact limit, retention and coverage trigger your counterparty requires — and turn certificates around fast enough to close the deal.
Once you hold regulated PII or material confidential data, breach response and notification costs scale with records, not headcount. We size cyber to your actual data footprint, not a sticker tier set by employee count.
Funds-transfer fraud is now the single largest first-dollar cyber loss. A standard crime policy sub-limits or excludes it. We bind cyber and crime with explicit funds-transfer language sized to the dollars moving through your firm.
AI-assisted output, OT/ICS systems and connected products all introduce cyber exposure that off-the-shelf forms don't trigger on. We place dedicated endorsements with carriers that actually price these risks.
Incident response, forensics, legal counsel, customer and regulator notification, credit monitoring and PR — the first-call costs that hit before any litigation does.
Extortion payments where insurable, system restoration and lost income while the business is offline — including operational technology (OT) shutdown on connected production systems.
Wire fraud, fake-vendor invoices and email compromise — sized to the dollars actually moving through your firm and bound with explicit social-engineering language (not a sub-limit).
Third-party claims from clients, customers and employees whose data was exposed — plus defence and fines (where insurable) for HHS, SEC, FINRA, state AGs and international regulators.
If a hack causes physical injury — including via connected products — that sits with GL or product liability, not cyber. We place the two so they line up.
Many cyber forms exclude state-sponsored attacks. The wording matters: a Russian ransomware crew can read either way. We push for affirmative non-state coverage on every renewal.
If you ignored a vendor patch for a year and got hit by that exact CVE, expect a fight. We brief you on what hygiene the carrier actually requires to keep cover in force.
Cyber and AI liability sized to clear enterprise procurement and grow with every round.
See the pageFirst-party + third-party cyber, contingent BI and crime — bound to client MSA requirements.
See the pageDedicated cyber for law firms, accounting firms and agencies holding sensitive matter data.
See the pageHIPAA breach response, ransomware on the EHR and OCR regulatory defence — sized to patient volume.
See the pageFunds-transfer fraud at closing, rent and vendor payments — the largest cyber loss in real estate.
See the pageOT/ICS ransomware and contingent BI — when a hack stops the line, not just the office network.
See the pageRegulated PII, funds-transfer fraud and FINRA/SEC regulatory defence — sized to AUM.
See the pageDonor PII, finance email compromise and ransomware on the donor database.
See the pageWire fraud on draws and vendor payments — the fastest-growing loss for construction firms.
See the pageCyber has 200+ carriers, MGAs and Lloyd's syndicates writing very different forms. We know which markets fit which kind of firm — and we don't bind into whatever quote comes back first.
Breach cost is a function of records exposed and dollars moving. We size limits to your actual data footprint and transaction volume, not a tier set by employee count.
Enterprise MSAs and regulators each demand specific cyber language. We read what you're being asked to sign and bind to the exact wording — without back-and-forth on every certificate.
Law firms over-index on ransomware in their cyber planning. The faster-growing claim is silent exfiltration of client matter data — and the policy response is different.
Accountants over-rely on professional liability as their whole insurance programme. Here are the four other lines that actually matter for a CPA practice in 2026.
A Canadian tribunal made Air Canada eat the cost of its own chatbot's bad advice. What that ruling means for any firm shipping AI features in 2026.
Before you commit to a quote, get the numbers. A custom Cyber Risk Report — loss estimates scaled to your revenue, the six hygiene controls underwriters score and live market pricing for your industry. Delivered in 24 hours, free.
Get the free reportTell us about your firm and what's prompting the conversation. We'll shop the cyber market and come back with options sized to your data footprint, your contracts and your regulator.