https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/51288#M679 <P>Hi All</P><P>&nbsp;</P><P>An interesting perspective on cyber-insurance as a last resort from a risk management perspective:</P><P>&nbsp;</P><P><A href="https://www.cisolens.com/reports#h.ayxt7q5ilazk" target="_blank">https://www.cisolens.com/reports#h.ayxt7q5ilazk</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Tue, 31 May 2022 02:12:22 GMT Caute_cautim 2022-05-31T02:12:22Z https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/50917#M667 <P>Hi All</P><P>&nbsp;</P><P>I came across this piece about cyber-insurance being useless.&nbsp; What are your thoughts, and what are your thoughts about the Australian Government stating that one should never pay ransomware demands, and thus you should not be insuring organisations who immediately pay up?</P><P>&nbsp;</P><P>Plus weight up that both New Zealand and Australia Privacy Acts, state you must (mandatory) report security incidents involving private data.</P><P>&nbsp;</P><P>But do not, because they decide pay up, before the Media go digging into the Dark Web to find the goodies, when they find out.</P><P>&nbsp;</P><P><A href="https://www.afr.com/technology/cyber-insurance-s-dirty-little-secret-it-s-useless-20220504-p5aig0" target="_blank">https://www.afr.com/technology/cyber-insurance-s-dirty-little-secret-it-s-useless-20220504-p5aig0</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Mon, 09 Oct 2023 10:10:44 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/50917#M667 Caute_cautim 2023-10-09T10:10:44Z https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/50984#M673 <BLOCKQUOTE>@<A href="https://www.myestub.net/" target="_self">My Estub Login</A>&nbsp;wrote:<BR /><P>Hi All</P><P>&nbsp;</P><P>I came across this piece about cyber-insurance being useless.&nbsp; What are your thoughts, and what are your thoughts about the Australian Government stating that one should never pay ransomware demands, and thus you should not be insuring organisations who immediately pay up?</P><P>&nbsp;</P><P>Plus weight up that both New Zealand and Australia Privacy Acts, state you must (mandatory) report security incidents involving private data.</P><P>&nbsp;</P><P>But do not, because they decide pay up, before the Media go digging into the Dark Web to find the goodies, when they find out.</P><P>&nbsp;</P><P><A href="https://www.afr.com/technology/cyber-insurance-s-dirty-little-secret-it-s-useless-20220504-p5aig0" target="_blank" rel="noopener">https://www.afr.com/technology/cyber-insurance-s-dirty-little-secret-it-s-useless-20220504-p5aig0</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><HR /></BLOCKQUOTE><P>&nbsp;</P><P>&nbsp;</P><P>See this may be help</P><P><A href="https://community.isc2.org/t5/Industry-News/Cyberinsurance-may-not-be-that-good-for-organisations/td-p/31594" target="_blank" rel="noopener">https://community.isc2.org/t5/Industry-News/Cyberinsurance-may-not-be-that-good-for-organisations/td-p/31594</A>&nbsp;</P> Sat, 14 May 2022 03:56:43 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/50984#M673 Clay498 2022-05-14T03:56:43Z https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/51288#M679 <P>Hi All</P><P>&nbsp;</P><P>An interesting perspective on cyber-insurance as a last resort from a risk management perspective:</P><P>&nbsp;</P><P><A href="https://www.cisolens.com/reports#h.ayxt7q5ilazk" target="_blank">https://www.cisolens.com/reports#h.ayxt7q5ilazk</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Tue, 31 May 2022 02:12:22 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Cyberinsurance-is-useless/m-p/51288#M679 Caute_cautim 2022-05-31T02:12:22Z