Cyber-Risiko

Tiefgehende Analysen der Bedrohungslandschaft, Schwachstellenanalyse und Quantifizierung von Cyber-Risiken für Versicherung und Unternehmen.

Living-Off-the-Land 2.0: How Autonomous AI Agents Are Weaponizing LOTL Tradecraft — And What It Means for Cyber Underwriting
AI Agents · · 9 min read

Living-Off-the-Land 2.0: How Autonomous AI Agents Are Weaponizing LOTL Tradecraft — And What It Means for Cyber Underwriting

The convergence of agentic AI and living-off-the-land attack techniques is collapsing three attacker constraints at once: cost, skill, and detectability. A deep analysis of demonstrated capabilities, real incidents, and the underwriting implications that should reshape your risk selection in 2026.

Ransomware Attack Vectors in 2026: What Risk Managers Must Monitor
Ransomware · · 7 min read

Ransomware Attack Vectors in 2026: What Risk Managers Must Monitor

Ransomware groups have moved beyond phishing. Here are the five dominant attack vectors risk managers need to understand — and how each one changes the insurance equation.

Cloud Outages, AI Fraud, and Supply Chain Attacks: The New Cyber Claims Frontier
Claims · · 8 min read

Cloud Outages, AI Fraud, and Supply Chain Attacks: The New Cyber Claims Frontier

From the CrowdStrike outage to deepfake $25M heists, the cyber claims landscape in 2026 looks nothing like 2023. Brokers must understand five emerging claim categories reshaping coverage.

BSI Opens NIS2 Enforcement: What German Entities Must Do Before the Audit
NIS 2 · · 5 min read

BSI Opens NIS2 Enforcement: What German Entities Must Do Before the Audit

BSI has begun NIS2 enforcement audits. Essential entities in Germany face up to €10M fines. Here is what your audit readiness checklist looks like for 2026.

NIS2 Penalties Explained: Essential vs Important Entities and What They Mean for Coverage
NIS 2 · · 9 min read

NIS2 Penalties Explained: Essential vs Important Entities and What They Mean for Coverage

NIS2 fines range from €7M to €10M depending on entity classification. Understand essential vs important entity penalties and how compliance posture affects cyber insurance pricing.

Agentic Security: What Underwriters Need to Know in 2026
Agentic AI · · 8 min read

Agentic Security: What Underwriters Need to Know in 2026

Autonomous AI agents are entering production at scale — and they bring a completely new attack surface that traditional cyber insurance questionnaires weren't designed to capture.

The €50,000 Domain That Could Bankrupt Your SMB: Why External Attack Surface Discovery Cannot Wait
Attack Surface · · 5 min read

The €50,000 Domain That Could Bankrupt Your SMB: Why External Attack Surface Discovery Cannot Wait

Your domain portfolio is your biggest attack surface - and most security teams have no idea what is exposed. Learn how to quantify your financial exposure in euros, not letter grades.

The Uncomfortable Truth About Cyber Risk in 2026
Cyber Risk · · 3 min read

The Uncomfortable Truth About Cyber Risk in 2026

Five things I'm seeing in the threat landscape that most security leaders aren't talking about enough.

Deepfake-Enabled BEC: The Claim Trend Underwriters Cannot Ignore
Cyber Risk · · 3 min read

Deepfake-Enabled BEC: The Claim Trend Underwriters Cannot Ignore

Business email compromise has been the most financially devastating category of cybercrime for years. Now deepfakes are supercharging that dynamic, and the claims data is starting to reflect it.