image

Cyber REDY® Index September 2021

The REDY Index leverages CRC Group’s collection of actionable data – the wholesale industry’s largest. It provides critical pricing analysis monthly, giving you a snapshot of the marketplace. The REDY Index generates instant intelligence on pricing trends by industry or coverage, enabling our retail partners to set accurate data driven expectations with their clients. Removing the guesswork empowers CRC team members to negotiate competitively, consistently producing better outcomes, better deliverables, and better results.

 

CYBER REDY INDEX - September 2021
MONTHLY RENEWAL PRICING ANALYSIS

13.0% 19% 9% 18% Sep 20 13.6% 20% 8% 19% Oct 20 11.2% 14.2% 13.2% 28% 19% Jan 21          54% 52% 23% 29% 16% 19% 14% 21% 22% 18% 18% 17% 9% 10% 12% 23% 24% 15% 24%  47% 34% 35% 34% 6% 7% 4% 23% 6% 15% 18% 4% 13% 44%    Nov 20 Dec 20 Feb 21 Mar 21 Apr 21 May 21 Jun 21 Jul 21 Aug 21 Sep 21 − Average YoY Renewal Change No Increase 1% to 9% 10% to 19%

CYBER RATES ARE ON THE RISE IN A BIG WAY

Percentage of Cyber Accounts with GREATER THAN 100% Pricing Increase

8% JUNE 2021 vs. 0% June 2020 14% JULY 2021 vs. 2% July 2020 9% AUGUST 2021 vs. 4% August 2020 12% SEPTEMBER 2021 vs. 4% September 2020

Of the 68% of accounts in September 2021 with a pricing increase greater than 20%, 48% were 50% or higher.

CYBER EMERGING ISSUES

  • Underwriters are requiring a completed Ransomware application and fully implemented cybersecurity measures before binding new and renewal accounts.

    Acceptable cybersecurity measures include a backup solution (disconnected or segregated from your network), next-generation anti-virus protection with endpoint detection & response, email filtering solutions, multi-factor authentication for remote network access.
  • Difficult cyber classes include healthcare, real estate, collection agents, title/escrow, municipalities, schools, and any risk with a high number of PII or PHI records.
  • Watch out for ransomware (extortion) sublimits including co-insurance, social engineering callback requirements, cybercrime that excludes third-party funds (escrowed), short periods of restoration, or indemnity from business income and/or reputational harm related losses.