The reach of the SolarWinds hack is still being determined, but it’s time for the insurance industry to react and take notice. The US government systems were some of the most secure on the planet, but were targeted anyway, and the attack had gone on for months without detection.
Alastair Speare-Cole, President and General Manager of Insurance at QOMPLX, speaks to the need for concern in ‘SolarWinds exposes cyber risk assessment gap,’ for the Insurer.
“The pricing, selection and mitigation of risk that should be at the core of an insurers’ thinking depends upon an appreciation of the degree to which a company is likely to be exploited in this way,” writes Speare-Cole.
What most people fail to understand is that most of the tooling available in the market to assess risk is far from sufficient. The problem of insecure identity is embedded within all systems and if it isn’t a problem that is being addressed, organisations are already behind.