A March 2026 security incident involving a tool widely used by developers to purportedly connect applications to large language models marks one of the first large-scale cyber incidents targeting the emerging artificial intelligence (AI) development stack.
For the insurance industry, this incident may be a warning that AI infrastructure risk is rapidly becoming an insurable reality.
AI is increasingly spawning a complicated ecosystem. New AI frameworks, open-source libraries and orchestration tools are drawing organizations into complex third-party supply chains that even they — and their insurers — don't yet fully understand.
Even without this full understanding, many organizations are racing to deploy AI capabilities, often faster than their security practices can manage. As AI adoption accelerates, so may a new category of cyber risk that insurers will be increasingly asked to absorb.
A New Layer in the Digital Supply Chain
The software supply chain is already complex. Now, AI is adding another layer to the complexity.
Modern AI deployments rarely rely on a single platform or vendor. Instead, organizations build applications by combining multiple frameworks, libraries, skills, tools and cloud services. This layered architecture is referred to as the "AI development stack." Tools like the one targeted in the recent incident are designed to serve as a connective tissue. They need access to sensitive data to be useful.
This can introduce risk that's concentrated and exponential. If malicious code is introduced at the top of the stack, it not only exposes the sensitive data within the application but also cascades downstream into potentially upwards of thousands of environments.
Many organizations don't have proper visibility into every component embedded in their AI environments.
For underwriting, this represents a blind spot and rapidly escalating risk. Traditional cyber risk questionnaires don't yet capture the nuances of developing AI stacks, and yet these components now house highly sensitive data and credentials. Beyond attestation, many carriers are not yet ready to require and review evidence of agentic AI oversight and security.
The cyber insurance industry has seen the effects of these supply chain risk dynamics before. What makes the AI stack risk different is the speed of adoption.
Shorting Cybersecurity Basics and Long-Tail Claims
In the rush to integrate AI functionality, some organizations may leave behind basic foundations of security. Automatic software updates are a prime example.
That's what foiled the organizations affected by the March incident. Though the malicious version of the software was only available for a few hours, many systems automatically adopted the new release without a security review. The attackers used an aggressive tactic to trigger the malicious code the moment a system automatically downloaded the update.
Even if an organization took steps to avoid automatic downloads, they could still be compromised if they used another tool that pulled in the malicious software automatically.
The affected software reportedly has millions of daily downloads. Even if a fraction of organizations were affected, attackers still may have gained unauthorized access to thousands or even hundreds of thousands of systems.
Each compromise may represent a potential long-tail claim scenario, in part due to credential management issues — another "cybersecurity basic" that's rapidly becoming more complex. AI applications frequently require access to multiple services, making them valuable targets for threat actors.
When attackers obtain access keys or API tokens, they can move more quietly through cloud environments, often escalating privileges and quietly exfiltrating data.
Because these activities may unfold gradually, the full impact of the resulting claims can emerge over months or even years. Organizations may first discover suspicious activity in one system, only to later uncover deeper compromises across multiple environments.
For insurers, this dynamic introduces uncertainty around the size and scope of potential claims.
Rising Demand for Incident Response and Forensics
Insurers should anticipate increased demand for forensic investigation and breach response services. As soon as an insured becomes aware of even a potential AI stack compromise, they need answers to critical questions:
- Were automated updates enabled?
- Were affected versions deployed?
- Has there been unusual activity from your AI agents?
- Were credentials exposed or exfiltrated?
- Are there signs of data exfiltration?
Answering these questions requires specialized technical expertise, and even organizations with strong internal security teams often need external help. Insurers maintaining robust cyber partner networks can offer incident response services, forensic investigations, breach response coordination, and monitoring and mitigation strategies, and therefore, will be better positioned to support policyholders.
These capabilities are becoming central to the value proposition of cyber insurance. Beyond financial reimbursement, organizations facing emerging AI threats need expertise and coordinated response to properly assess and contain damage.
Immediate Steps for Insurers and Brokers
The recent AI supply chain attack offers a preview of what may come. It raises a central question for insurers of how policyholders are adopting AI technologies.
One immediate step insurers can take is vendor triangulation. Work with policyholders to identify whether they rely on AI development tools that may introduce new supply chain dependencies. Understanding these relationships can help assess potential systemic exposures and concentrated risks.
Now is also the time to begin incorporating AI-specific inquiries into underwriting processes. New considerations should include:
- What AI and orchestration tools are being used?
- How are software updates vetted and implemented?
- How are credentials and API security managed?
- How is the organization monitoring for cloud security threats?
- Does the organization have incident response capabilities specific to AI infrastructure?
- How is the organization analyzing in real-time what their AI agents are doing and if they are properly credentialed?
AI is likely to remain a transformative force across industries. As its adoption accelerates, these questions will become increasingly relevant to making sure underwriting assumptions reflect the evolving threat landscape.
