Cyber Liability in the Energy Space


Cyber Liability in the Energy Space: Critical Coverage for Critical Assets

In 2018, companies within the energy sector, from suppliers to producers, rely heavily on operational technology to perform daily operations.  Internet-connected networks and systems for activities such as pipeline management, workflow automation, real-time monitoring of equipment, reservoir modeling, use of electronic data interchange (EDI), and many other activities utilize connected networks and software in order to optimize efficiencies, save money, and ultimately, increase profits.  With this increased connectivity comes increased cyber risk.  Despite this fact, nearly 65 percent of respondents in the Ponemon Institute’s 2017 study rated their operational technology response readiness as less than “high.”

The energy sector has experienced numerous cyber-attacks.  Significant security breaches include:

  • 2013 – The United States Department of Energy disclosed two separate breaches of their network.
  • 2015 – The United States Industrial Control Systems Cyber Emergency Response Team issued an advisory for a vulnerability found in a widely used, small-scale turbine for homes or farms.
  • 2016 – A Vermont utility company serving less than 20,000 households found Russian malware on one of its computers.The motive was unclear.
  • 2017 – The “Wannacry” ransomware hit numerous energy companies, crippling their networks.
  • 2018 – The United States Department of Homeland Security issued a warning concerning Russian hackers targeting U.S.-based energy companies.

While it’s clear that the threat is persistent and that preparedness is minimal, the number of energy-related companies purchasing Cyber Liability coverage is lower than it should be compared to other industries.  If the coverage isn’t purchased, it cannot respond, and companies will be left to fend for themselves in the event of a network security or privacy breach incident.

How Can a Stand-Alone Cyber Liability Policy Add Value to Your Coverage Offering for Energy Risks?

  • Comprehensive Coverage – Cyber insurers are highly adept at comprehensively underwriting industry-specific risks, as well as providing highly valuable resources to assist insureds before, after and throughout a cyber event.
  • Limit Capacity – Even if some limited Cyber coverage is purchased in a multiline package policy, small sublimits are not enough.  Having dedicated coverage built to respond to cyber losses preserves policy limits for each type of risk.  In some cyber forms, breach response expenses are outside the policy limit, which also helps preserve limits.
  • Regulatory – The energy sector produces critical resources.  As such, it is not only a heightened target for threat actors, but also for regulators.  State-specific privacy laws are enforced by state attorney generals, who can investigate and levy fines and penalties.  Federal bodies, such as the Department of Homeland Security, monitor the cyber threat activity surrounding the energy sector.  A Cyber Liability policy can provide coverage for fines and penalties – where insurable – as well as for costs associated with regulatory investigations.
  • Response and Pre-Emptive Resources – Stand-alone Cyber policies generally include cyber security risk management packages that may feature web-based learning platforms, legal white papers on security matters, discounted rates with IT security vendors, network penetration testing, table-top breach exercises, assistance with incident response plans and, in some cases, real-time network security monitoring. 


Current and Future Claim Trends

Emerging trends in the network security world are increasing the need for energy and energy-related companies to consider purchasing Cyber Liability coverage.

  1. Unintentional or Negligent Insider Threats – Recent reports are showing threats from insiders are growing.  Bad actors are exploiting internal users in an effort to gain access to networks by exploiting misconfigured servers, as well as Man-in-the-Middle (MitM) and phishing attacks. 

    The IBM X-Force Threat Intelligence Index 2018 report indicates that clients in the education, energy, and financial services sectors experienced a “notably higher percentage” of insider threat activity.  They noted a higher than average volume of targeted phishing emails as one potential cause.

    Furthermore, 65 percent of respondents in a recent Ponemon Study said that the top cyber security threat is the negligent or careless insider.

  2. Nation State and Political Threats – Black hats or bad actors’ most common motivations are financial gain.  With the global political climate in a heightened state of unrest, however, more and more “hacktivist” activities are targeting critical assets – such as energy and/or manufacturing – to bring awareness to a cause or hinder the production and operations of a perceived enemy state (and domestic companies).  As a result of such attacks, energy firms have recently experienced, and will likely continue to see, business interruption losses. These interruptions cause not only loss of revenues, but also a host of other liability issues for those that depend on their products.

  3. Contingent Bodily Injury and Property Damages – Inherently, the implications of a network security incident for an energy firm go beyond traditional financial loss.  A hijacked pipeline management or industrial control system could easily lead to widespread issues involving threat to human life and property alike.  Generally, most Cyber policies exclude coverage for claims arising or relating to bodily injury or property damage; however, there appears to be a shift in the market as carriers consider a provision of this coverage.  Some carriers can also provide contingent Pollution coverage as a result of a network security incident.  Energy buyers should always ask about – and coordinate coverage between – Cyber, General Liability and Pollution.

  4. Supply Chain Vulnerabilities – Companies within the energy sector rely heavily on certain supply chains.  Upstream, midstream, and downstream companies in the oil and gas sector, for example, all experience some reliance on suppliers and other vendors.  Often, these vendors pose a cyber security threat even in the absence of unscrupulous motives.  With access to a company’s network, negligent or insufficient security protocols used by a vendor can allow threat actors to access the network via the vendor’s system and wreak havoc.  Per the 2017 Ponemon Oil & Gas Cyber Security Preparedness study, 69 percent of respondents believe their organization is at risk because of uncertainty about the cybersecurity practices of third parties in the supply chain.  Furthermore, 61 percent say their organization has difficulty in mitigating cyber risks across the oil and gas value chain. Vendor access will continue to be an issue given that even the best prevention measures cannot stop all threats. 

Insurance Solutions for Cyber Threats to Energy Companies

Energy companies should utilize table-top exercises with their leadership teams, risk managers, IT leaders and others to create a game plan for every possible cyber threat. Nevertheless, we know that some attacks will still be successful. Here are some examples of threats and possible insurance solutions.



Lost revenue from a network interruption arising from ransomware.

Cyber insurance covers the ransom payment if necessary, as well as the forensic investigation to determine the scope of the threat and to shut it down. Insurance pays for business interruption losses and extra expenses to return to full operation.

Network shutdown at a critical third-party vendor reduces or completely stops operations for the named insured.

Cyber insurance with the proper system failure insurance wording covers business interruption losses and extra expenses until the vendor recovers or coverage period runs out.

Hackers enter the network and turn off safety measures, leading to a massive pollution event.

A Pollution policy without a network security exclusion would have primary responsibility for assisting with clean-up expenses. A Cyber policy with proper pollution exclusion amendments assists with IT forensics, regulatory investigations, and possibly, business interruptions.

Cyber thieves spoof the corporate controller into wiring $500,000 to a fictitious vendor account.

Crime insurance assists with repayment of unrecoverable funds. Cyber insurance assists with the forensic investigation to ensure that the client’s computer network hasn’t been compromised. A Cyber policy may have a sublimit for cybercrime, as well.

Hackers enter the client network and exfiltrate thousands of personal health and financial records of current and former employees.

Cyber insurance helps with legal and IT forensics, notification and public relations expenses, regulatory investigations, establishment of call centers, credit and identity monitoring, fraud resolution and more.

As threats continually evolve, it is virtually impossible to adequately prepare for every type of cyber-attack; however, appropriate coverage can play a key role in mitigating risk.  As a result, brokers are advised to ask their clients numerous and detailed questions regarding their threats, in order to assist brokers and underwriters in effectively matching risks with insurance solutions.

About the Author

This article was authored by Megan North, a Professional Lines broker with AmWINS Brokerage of Texas in Dallas.

Contact Us

To learn more about how AmWINS can help you place coverage for your clients, reach out to your local AmWINS broker.  If you do not have a contact at AmWINS, please click here.

Legal Disclaimer. Views expressed here do not constitute legal advice. The information contained herein is for general guidance of matter only and not for the purpose of providing legal advice. Discussion of insurance policy language is descriptive only. Every policy has different policy language. Coverage afforded under any insurance policy issued is subject to individual policy terms and conditions. Please refer to your policy for the actual language.

(c) 2017 AmWINS Group, Inc.

Most Popular Insights

Unpacking Warehouse Legal Liability


Warehouse legal liability is a complicated line with many gray areas and multiple interpretations of its coverages. This article discusses coverage triggers, legal vs. contractual liability and the importance of warehouse receipts.

5 Strategies for Successful Small Business Renewals During COVID


In the current economic climate, many small businesses are struggling and some may even fail. Despite these challenges and the continued hardening market, there is opportunity for retailers to write and retain business. This article provides guidance on navigating the complex small business marketplace and helps retailers fine tune their understanding of what insurable risks will look like over the next 12 to 24 months.

What Product Recall Insurance and Risk Mitigation Plan Is Right for Your Clients?


​Product recalls are one of the most damaging events a business may encounter. In order to effectively respond to an incident, companies must be prepared with proper risk management strategies. As policy wording varies, it's also critical to ensure your clients have the right policy type in place to appropriately address their first- and third-party exposures.

Is Your Insured’s Website Compliant with the Americans with Disabilities Act?


Court rulings, have extended the Americans with Disabilities Act (ADA) to apply to websites that are "heavily integrated" with and serve as a "gateway" to a physical stores/services. As a result, companies are now finding themselves targets for ADA claims based on the inaccessibility of their websites and media by those who are disabled.

State of the Market - Q2 2020


Our Q2 2020 State of the Market report provides a holistic view of highly impacted industry segments as well as overall market trends. This report is designed to help our retailers gain the knowledge they need to retain accounts, write new business, overcome challenges and capitalize on opportunities that do exist.

10 Catastrophe Claim Tips for Severe Weather Season


Severe weather can be unpredictable and strike at any time. Help your clients be prepared in the event their property is damaged by a hurricane, tornado, hailstorm or similar disaster with these 10 catastrophe claim tips.

On-Demand Webinar: COVID-19 Economic Impact and Future Outlook


As a result of the COVID-19 crisis, our industry is facing a broad array of challenges that impact insureds of every size and in every industry. In the first of a series of webinars, we hear from an economist on the financial impacts of COVID-19 and what we can expect in the future. This webinar is intended to complement your conversations with clients about how to plan for the next 12 to 24 months.

Lloyd's CEO and Property Underwriters Share COVID-19 Response and Market Update


This podcast features an update from John Neal, CEO of Lloyd’s, on the state of the Lloyd's market and their response to COVID-19 as well as a panel discussion with London Property underwriters on how they view the pandemic's impact both the Property sector and their syndicate's business.

Lloyd's CEO and Casualty Underwriters Share COVID-19 Response and Market Update


This podcast features an update from John Neal, CEO of Lloyd’s, on the state of the Lloyd's market and their response to COVID-19 as well as a panel discussion with London Casualty underwriters on how they view the pandemic's impact both the Casualty sector and their syndicate's business.

Lloyd's CEO and Professional Underwriters Share COVID-19 Response and Market Update


This podcast features an update from John Neal, CEO of Lloyd’s, on the state of the Lloyd's market and their response to COVID-19 as well as a panel discussion with London Professional Lines underwriters on how they view the pandemic's impact both the Professional Lines sector and their syndicate's business.

Flood 101: What to Know About Standard Flood Insurance


Ninety-eight percent of all United States counties were impacted by a flood event in 2018, yet many property owners remain unaware of their true risk of flood or what their existing policies cover. This article highlights key statistics about flood risk and outlines the differences between the National Flood Insurance Program and private market flood insurance.

Professional Lines Challenges and Market Response During the COVID-19 Crisis


The COVID-19 crisis has created a rapidly changing environment for the Professional Lines market. With the uncertainty of how claims will develop and the potential for increased exposure, retailers must be proactive. In this article, AmWINS specialists share their insights on why this is more important now than ever, including reactionary underwriting trends, D&O policy exclusions and impacts to EPLI, as well as the threat for increased cyber attacks and crime losses.

Small Business and Personal Lines During the COVID Crisis


Loss of revenue caused by stay-at-home orders due to the coronavirus pandemic has affected small businesses and the insurance industry serving them significantly. As retailers and carriers prioritize their focus to adapt to the “new normal” of daily transactions, underlying market dynamics remain unchanged. In this article, our experts share their insight on the current changes that we are seeing the small business and personal lines market, and how to navigate the market a this time of uncertainty.

Mind the Gap: COVID-19's Impact on the Logistics Industry


The disruptive impact of the COVID-19 outbreak on supply chains is already having a pronounced effect on the world of logistics and logistics insurance. Port closures, demand surges and production shifts are requiring nimble response to keep up with change. This article arms insurance brokers with the information needed to understand the changes taking place and plan for what is likely to occur in the months ahead.

Navigating the Casualty Market’s Response to COVID-19


The Casualty market’s response to COVID-19 is continuously evolving. With a wide array of factors already impacting this sector pre-crisis, segments of the Casualty marketplace are responding to the pandemic differently. In this article, our industry specialists share overall themes in the Casualty market and take a closer look at how various segments are being impacted.

Top COVID-19 Issues Impacting Builder’s Risk Insurance


The COVID-19 pandemic is causing historical disruption to the construction industry. These changes mean that risk mitigation strategies need to be implemented or revisited, policy language should be reviewed, and carriers should be apprised of all changes at the work-site. In this article, AmWINS specialists examine the major areas of concern for Builder’s Risk insureds, including government-mandated shutdowns, supply chain-driven slowdowns and policy wording that could limit coverage, and provide guidance for retailers to achieve the best results for their clients.

State of the U.S. Logistics Insurance Market


For decades, the logistics insurance market has been considered a sub-market of the cargo or ocean marine market. However, the continual rise of e-commerce and its effect on the global supply chain has carved out a complex and expansive industry niche. This article provides insight into the various lines of coverage, the specialized underwriting approach, and rate surges within the U.S. logistics insurance market.

Lloyd’s & the London Market’s Response to COVID-19


During the COVID-19 pandemic, Lloyd’s remains open for business and syndicates have successfully transitioned to working from home. However, there are notable changes in how the London market is approaching business. In this article, specialists from THB, AmWINS’ London broker, share their insight on consistent themes across the London Market as well as updates on various lines of business.

COVID-19 Claims Advice


There have been a lot of questions regarding COVID-19, in particular about coverage and claims handling. This claims advice is intended to offer guidance to help our retail clients through these difficult times.

Insurance Impacts of COVID-19 on the Healthcare and Senior Living Industry


As the healthcare industry remains on the front lines of battling the COVID-19 pandemic, staying abreast of the changing landscape and how the insurance market is adapting is critical to ensure new exposures are covered and renewals are successfully placed. In this article, our specialists share what they are seeing in the Healthcare and Senior Care markets, tips for risk control and mitigation, and how to get the best results for insureds.

Sign Up For Our Monthly Newsletter

Sign Up