Hybrid Attacks, Cyberattack Insurance & A Rapidly Evolving Commercial Threat Landscape

An increase in hybrid attacks

A hybrid cyberattack involves more than just a single threat vector. For example, it can include deceptive email to deliver malware, and then DDoS to complicate recovery from a malware attack. This type of attack enables online criminals to carry out their crimes and then hide their tracks. We’ve seen this type of attack used within the last year on multiple occasions, including the attacks on the Ukranian power grid and Bangladesh Bank. These types of hybrid attacks are now ‘trickling down’ and we expect to see them used much more often by cybercriminals for ‘commercial’ attacks, e.g., ransomware and Business Email Compromise.