July 2026 ITL FOCUS: Cyber

ITL FOCUS is a monthly initiative featuring topics related to innovation in risk management and insurance.

ITL July 2026 FOCUS: Cyber

 

FROM THE EDITOR

The first known cyber insurance policy was issued in 1997 through AIG — a $15 million coverage limit for internet-related risks at a time when many executives still weren't sure the internet would last. Nearly three decades later, cyber is one of the fastest-moving, most competitive lines in all of insurance.

The threat landscape has never been more complex. AI hasn't just raised the volume of attacks — it's sharpened them. Phishing emails that once announced themselves with broken English and implausible promises have given way to hyper-personalized, eerily convincing communications. Deepfakes are blurring the line between real and fabricated in ways that insurance policies haven't fully caught up with. And invoice fraud — one of the oldest scams in the book — is quietly surging, powered by social engineering that exploits LinkedIn connections, email thread histories, and the reluctance of junior employees to question a message that appears to come from the CEO.

For the latest on where cyber stands and insight on where it’s going, we turned this month to Liz Kim, president of US operations at BOXX Insurance, whose nearly 30 years in the industry span law, claims leadership, underwriting, product development, reinsurance brokering, and now carrier strategy.

Her core message: The battle between attackers and defenders never really ends, it just shifts terrain. Ransomware gives way to extortion, which gives way to business email compromise, which gives way to whatever comes next. The only durable advantage is staying ahead of the bad guys — through education, technology, and underwriting discipline.

Read the full interview to find out why invoice manipulation deserves more attention than it's getting, what AI is actually changing in cyber insurance, and how third-party vendor relationships have quietly become the industry's biggest claims problem.

 
 

The Emerging Threat to Cybersecurity

Paul Carroll

To start us off, what is your overall outlook for the cyber insurance industry?

Liz Kim

If only we could predict where it's going to go, right? I've been in the cyber insurance industry for many years and I've worked across a lot of different roles. I've been in it as a lawyer, as head of claims for a major insurer, in underwriting, in product development, and as a broker. We’re in a soft market now, but, as with all insurance, the cyber market is cyclical.

I think cyber is more cyclical than other lines, for a couple of reasons. First, although there are plenty of disaster scenarios that people talk about in the industry — things like a worldwide AWS outage — we haven't yet really had a true disaster, which would tighten capacity and increase prices. Second, we have new entrants coming into cyber all the time. Because of that constant influx, a lot of their value proposition comes down to nothing more than having the lowest prices. That dynamic drives pricing down more than you'd typically see in other lines of business.

That said, companies that maintain underwriting discipline and pair their insurance with meaningful services or technology solutions to reduce digital risks are better positioned to hold pricing than those that are purely insurance plays.

My overall outlook? It's always positive — because if it wasn't, I wouldn't still be in cyber after all these years. With the kinds of innovations we're seeing across the industry, it's always going to be an area that drives the market forward.

read the full interview >
 

MORE ON CYBER

The 4-Minute Mile of Cybersecurity

by Timothy O'Neil

Historical threat data and AI are finally enabling cybersecurity teams to forecast attacks once thought impossible to predict.

Read More

 

The Case for a Personal Digital Bodyguard

by Chris Hamilton

As cybercrime hits $21 billion, personal cyber insurance must pivot from reactive coverage to proactive protection.

Read More

 

AI Security Risks Challenge Cyber Insurers

by Eder Ribeiro

As AI adoption outpaces security practices, insurers face a new cyber risk category with concentrated exposures and long-tail claim potential.

Read More

 

It's Back to First Principles for Insurance

by Manjunath Krishna

Insurance is scaling into cyber, climate and AI risks faster than the first principles of insurability can adapt.

Read More

 

AI Penetration Testing Transforms Cyber Security

by Sumedh Barde

AI penetration testing transforms annual compliance snapshots into continuous security assurance without sacrificing the depth of manual expert testing.

Read More

 

AI Systems Reshape Cyber Insurance Risk

by Afroz Mohammed

AI-driven discovery of software vulnerabilities at machine speed challenges cyber underwriting models designed for environments where threats evolved gradually.

Read More

 

 

MORE FROM OUR SPONSOR

Reimagining Workers' Compensation in the Age of Generative AI

Sponsored by BOXX Insurance

Autonomous AI systems are outpacing legacy tech E&O policies, exposing businesses to uninsured algorithmic accountability risks.
Read More

Insurance Thought Leadership

Profile picture for user Insurance Thought Leadership

Insurance Thought Leadership

Insurance Thought Leadership (ITL) delivers engaging, informative articles from our global network of thought leaders and decision makers. Their insights are transforming the insurance and risk management marketplace through knowledge sharing, big ideas on a wide variety of topics, and lessons learned through real-life applications of innovative technology.

We also connect our network of authors and readers in ways that help them uncover opportunities and that lead to innovation and strategic advantage.

MORE FROM THIS AUTHOR

Read More