2025年网络安全弹性报告（英）

ALLIANZ COMMERCIALCyber securityresilience 2025Claims and risk management trendsKhozinul / Adobe Stockcommercial.allianz.comMelinda Nagy / Adobe Stock2CYBER SECURITY RESILIENCE 2025 | ALLIANZ COMMERCIAL commercial.allianz.comContentsPage 4Executive summaryPage 18Expanding risk landscape drives non-attack lossesPage 19Tech failure and outages make first large claims appearancePage 20Privacy regulation and litigation continues to developPage 8Claims and loss trendsPage 9Cyber insureds take back control and gain momentum against attackers, but challenges remainPage 11Ransomware migrates to mid-sized and less well-protected firms as threat actors adapt to hardened cyber securityPage 12Data exfiltration ranks as top loss driverPage 13The rise of social engineering – threat actors target employees as the weakest linkPage 14Keys to the kingdom: Credentials overtake malwarePage 15AI driving more effective social engineering and malwarePage 16Retailers becoming the most targeted sectorPage 17CBI/supply chain emerges as a key threatPage 22Detection, response and trainingPage 23Reducing the cost of a claimPage 25Widening gap: Insureds grow more resilientPage 26Be prepared with tabletop exercisesPage 27Ransomware attacks highlight need for BI workaroundsPage 28The transformative power of AI-powered detectionPage 29Regulation set to raise the cyber resiliency barPage 30Insurance market trendscommercial.allianz.com CYBER SECURITY RESILIENCE 2025 | ALLIANZ COMMERCIAL3Executive summary Attackers are also shifting focus from well-protected large corporations, particularly in the US and Europe, where the bar for a successful attack is now much higher, to mid-sized and smaller firms, which are less resilient, as well as firms in other territories, such as in Asia or Latin America. Ransomware was involved in 88% of data breaches at small and medium firms compared to 39% at large firms, according to Verizon, while cyber incidents also ranks as the top risk for smaller companies in the Allianz Risk Barometer. Data exfiltration a top loss driverAs large companies have improved their response capabilities, recent years have seen a shift from purely extortion-based ransomware attacks to double extortion including data exfiltration – 40% of the value of large cyber claims (>€1mn) during 1H, 2025 included data theft, up from 25% in the whole of 2024. Losses involving data exfiltration were more than double the value of those without.Claims and loss trendsAnalysis of Allianz Commercial cyber claims shows the overall frequency of notifications during 1H, 2025 was in line with a year earlier (around 300 claims), after a significant year-on-year increase during 2023 compared with 2022. Overall claims severity has declined by more than 50% during 1H, 2025 while the frequency of large loss claims (> €1mn) is down around 30%. However, the risk landscape is expanding beyond direct cyber-attacks. In this year’s report, contingent business interruption, technology failures and priva