logo image

LONDON, U.K. - April 05, 2017  RMS, a leading global risk modeling and analytics firm, today announced the expansion of its range of cyber models to include a new class of ‘cyber-physical’ models. These explore a range of cyber attack scenarios that can cause physical damage to property, allowing property (re)insurers to manage this growing risk for the first time. This new capability builds upon the existing suite of RMS cyber models which focus on attacks against I.T. (information technology) systems.

Cyber attacks that are intended to inflict physical damage to property have emerged faster than insurers’ ability to update policies, and with multiple lines of business potentially affected this activity by hackers poses a systemic threat across insurance portfolios. Cyber risk is no longer confined to specialist writers of affirmative cyber insurance. It is now a peril that can cause losses in traditional property insurance policies which are either ambiguous or silent about whether they will pay out for cyber-triggered losses.

“In the past two years, we have seen attacks that have damaged industrial plants, shut down building control systems, and caused power grid failures – all achieved by hackers targeting control systems that are linked to the internet,” said Dr. Andrew Coburn, RMS senior vice president, emerging risks. “Insurers have begun to understand the risk of cyber-attacks on information technology (I.T.) systems, for example financial theft, data extraction and cyber-extortion. But with the rise of the Internet of Things, more devices are connected to computer networks which opens up new vulnerabilities for hackers to exploit. They can target operational technology, and thus the essential fabric of any business – even its bricks and mortar.”

To allow insurers to identify silent exposures RMS has analysed the lines of business thought to be most vulnerable to cyber-physical attacks, such as commercial property, marine, energy, industrial and facultative facilities. The five new risk scenarios in the RMS® Cyber Accumulation Management System allow insurers to identify silent exposures in these and other lines. The scenarios are based on detailed technical analysis of vulnerabilities, possible attack vectors, and potential insurance payouts:

  • Cyber-induced fires in commercial office buildings   hackers can gain access to internet-connected office equipment, such as laptops, manipulating them to overheat and start fires. If the offices are unmanned this could lead to destruction of entire premises, as well as the facilities and systems they house. 
  • Triggered fire in industrial processing plants   heat-sensitive devices, such as thermostats, can be sabotaged to ignite flammable products in storage
  • Triggered explosions on oil rigs   a network operations centre controlling an entire field of oil rigs could be targeted to cause structural misalignment of well heads, leading to the explosion of multiple oil rigs.
  • Cyber-enabled marine cargo theft from a port   port management systems are highly computerized and so valuable cargo can be stolen as a result of cyber attacks, for example through the use of malware to disrupt operating systems or to access sensitive cargo data.
  • Regional power grid outages   the control systems of power-generating companies could be attacked, allowing criminals to damage generators. This could cause a cascading regional power outage with huge losses to insured customers, as well as the power supplier.

The entirely new class of cyber-physical model is an industry-first, and demonstrates how the models in the RMS Cyber Accumulation Management System are constantly evolving to ensure clients can properly consider aggregations.

Additional information on RMS Cyber Accumulation Management System is available here.

Related Resources
July 07, 2020
Covid-19 Can Be Springboard to Understanding Clash Risk: RMS CEO

June 19, 2020
The COVID Catastrophe

June 19, 2020
A Model Approach

About RMS

Risk Management Solutions, Inc. (RMS) helps insurers, financial markets, corporations, and public agencies evaluate and manage global risk from natural and man-made catastrophes, including hurricanes, earthquakes, floods, climate change, cyber, and pandemics.

RMS leads the catastrophe risk industry that we helped to pioneer by marrying data and advanced model science with leading-edge technology. Leaders across multiple industries can address the risks of tomorrow through RMS Risk Intelligence™, our open, real-time exposure and risk management platform, enabling them to tap into RMS HD models, rich data layers, intuitive applications and APIs that simply integrate into existing enterprise systems.

RMS is a trusted solutions partner enabling effective risk management for better business decision making across underwriting, risk selection, mitigation, and portfolio management.

Visit RMS.com to learn more and follow us on LinkedIn and Twitter.

Media Contacts

Matthew Longbottom

PR Lead, EU and APAC
+44 20 7444 7706 prteam@rms.com

Devonne Cusi

PR Lead, Americas
+1 551 226 1604 prteam@rms.com
cta image

Subscribe to Our Newsletter

close button
Video Title

Thank You

You’ll be contacted by an RMS specialist shortly.

RMS.com uses cookies to improve your experience and analyze site usage. Read Cookie Policy or click I understand.

close