Navigate to:
Watch the recording of our webinar
Download report
Cyber security resilience 2025 – Claims and risk management trends
Report | September 2025
Download the report in English
Read the accompanying press release in English
Download the report in German
Read the accompanying press release in German
The cyber risk and insurance landscape in 2025 reveals a complex and evolving threat environment. Large insured companies are becoming increasingly resilient against attacks with strengthening of cyber security and preparedness and response capabilities helping to mitigate the impact of some of the large cyber losses in 2025 to date. However, the reliance on digital supply chains, impact of expanding privacy regulation, and more sophisticated social engineering attacks targeting employees are broadening the scope of potential losses for all companies, according to Allianz Commercial’s latest cyber risk report.
Photo: Adobe Stock
Claims and loss trends
Analysis of Allianz Commercial cyber claims shows the overall frequency of notifications during the first half of 2025 was in line with a year earlier after a significant year-on-year increase during 2023 compared with 2022. Despite the increasing sophistication and volume of attacks companies face, claims severity has declined by more than 50% while the frequency of large loss claims (> €1mn) is down around 30%, driven by larger companies’ cumulative investments in cyber security, detection and response. However, the expanding risk landscape means there is no room for complacency. Ransomware attacks remain the top driver of cyber incidents, but in this year’s report, contingent business interruption, technology failures and privacy litigation emerge as main sources of losses – incidents such as wrongful collection or processing of data, and outages accounted for a record 28% of the value of large claims in 2024.
Data exfiltration a top loss driver
As large companies have improved their response capabilities, recent years have seen a shift from purely extortion-based ransomware attacks to double extortion including data exfiltration – 40% of large cyber claims (€1mn+) during the first half of 2025 included data theft, up from 25% in 2024. Attack-driven losses involving data exfiltration were more than double the value of those without. Data exfiltration is easier and faster for attackers than encryption and increases the likelihood of ransom payments. The average global data breach cost hit an all-time high (almost US$5mn) in 2024, driven by factors such as the impact of stricter data privacy regulation.
The rise of sophisticated social engineering and credential-based attacks
Recent cyber-attacks display common tactics, including using sophisticated social engineering and compromised credentials to access networks, such as impersonating an employee locked out of an IT system. Many attacks also leverage suppliers or IT supply chains to access sensitive information. Approximately 60% of breaches in 2024 involved a human element. Attackers increasingly use compromised access credentials obtained via phishing or sold on the dark net, with a surge in specialist “brokers” operating in this space.
Manufacturers, professional services, and retailers most impacted sectors
Retailers top the list of industries attacked during the first half of 2025 and are the third most impacted sector by cyber incidents, behind manufacturing and professional services, according to analysis of Allianz Commercial large cyber claims (>€1mn) since 2020. Companies in the manufacturing sector accounted for 33% of these claims by value, professional services/consulting firms (18%), and retail companies (9%).
Supply chain dependency risks
The emergence of claims related to growing dependencies of IT supply chains is a key emerging trend. Contingent business interruption (CBI) supply chain events accounted for 15% of large cyber claims (€1mn+) by value during the first half of 2025, compared with 6% in 2024. Such losses can result from both attacks and technical faults, causing disruption to a critical service such as software or cloud services. The risk of breaches at companies’ IT suppliers and partners is harder to control. Vendors need to be well managed from a contractual perspective, but also around access control, monitoring and audits of suppliers.
Privacy regulation and litigation continues to develop
Data breaches and privacy actions relating to wrongful collection and processing of data, for example, have increased in recent years, accounting for a record 18% of large claims (>€1mn) by value analyzed in 2024, triple the share of three years earlier.
Meanwhile, during the first half of 2025, technology/media professional indemnity claims accounted for a quarter of large cyber claims by value, up from 21% in 2024. Many are for legal actions against technology companies related to service performance, technical failings, and alleged breaches of privacy regulations and requirements, but they can result from attacks too.
Photo: Adobe Stock
Detection, response, and training – helping to reduce the cost of claims
Recent cyber-attacks have demonstrated the value of effective cyber hygiene, early detection, and incident response capabilities and their roles in reducing potential claim costs. Analysis shows in over 80% of large claims, insureds’ decisions significantly influenced loss size. Detection and response capabilities can reduce claim costs by a factor of 1,000.
Widening gap: insureds grow more resilient
The cyber-resilience gap between uninsured and insured organizations is widening. For example, in Germany, insurance industry figures show that the loss impact of cyber insureds increased by around 70% over four years, well below the 250% increase in the economic impact of cyber crime during the same period.
This resilience gap reflects cyber insurance policyholders’ heightened awareness of risk and their actions to mitigate it, many of which are a condition of obtaining insurance. It also reflects the effectiveness of risk prevention services and advice and incident response assistance provided by insurers. Business interruption losses, which account for over 50% of cyber claim values, are closely correlated to early detection and containment and incident response, and business continuity planning will significantly reduce costs.
Insurance market outlook
While cyber insureds have made significant strides in mitigating large cyber losses through improved security and preparedness, the evolving threat landscape and regulatory pressure requires ongoing vigilance and investment. Cyber insurance remains a crucial component in managing these risks, providing both financial protection and access to expertise that enhances overall cyber resilience. The global cyber insurance market is expected to more than double to nearly US$30bn by the end of the decade, driven by increasing digitalization and growing awareness. Despite relatively low penetration, demand is rising, especially among mid-sized firms and regions with a historically low uptake.
Download the report in English
Read the accompanying press release in English
Download the report in German
Read the accompanying press release in German
Cyber security resilience webinar 2025
In order to share how companies can best prepare and respond to cyber-attacks, and discuss the latest cyber trends, on September 30 we hosted our annual cyber security resilience webinar.
During the 1h session our leading experts discussed the latest cyber claims trends, loss drivers and provided insights on how companies can best prepare and respond to these developments.
You can now watch the 1-hour webinar recording.
Download the presentation here
Further information
Cyber Insurance at Allianz Commercial
Risk Consulting at Allianz Commercial
Previous cyber reports
2024
2023
2022
2021
2020
2015
All the latest news, reports and hot topics
Global | Press release
Business Black Swan scenarios
Around 50% of companies see supply chain paralysis and a global internet outage as the two most plausible Black Swan scenarios in the next five years.
Read more
Report
Business Black Swans
Survey: The threats companies consider to be most plausible in the next five years.
Read more
Allianz Risk Barometer 2026 | Expert risk article
Risk in focus: Cyber incidents
Cyber incidents is the top global risk for 2026 and by a higher margin than ever before – 10% ahead of the closely-linked peril of artificial intelligence (AI).
Read more
Allianz Risk Barometer 2026 | Expert risk article
Risk in focus: Artificial Intelligence
AI climbs to its highest-ever position of #2, up from #10. Both cyber and AI now rank as top five concerns for companies in almost every industry sector.
Read more
Global | Press release
Allianz Risk Barometer 2026
Cyber incidents created many headlines in 2025 and are still the biggest worry for companies globally in 2026, according to the Allianz Risk Barometer.
Read more
Report
Allianz Risk Barometer 2026
The most important corporate concerns for the year ahead, as ranked by 3,338 risk management experts from 97 countries and territories.
Read more
Magazine
Global Risk Dialogue
We’re discussing the burning issues and emerging exposures in global risk management, designed to help you navigate through eventful times.
Read more
Global | Press release
D&O Insurance Insights 2026
Around the world, political, economic, and social uncertainties are on the rise. They can impact every aspect of a company’s operations, as well as lead to significant changes in financial, regulatory, and legal environments.
Read more
Global | Press release
Data centers construction risk trends
The unseen forces of AI and cloud computing are never out of the news, yet behind the headlines lies a story of growth and innovation as tangible as bricks and mortar.
Read more
Report
Data center construction risk trends
A building boom is underway to feed demand for AI and cloud computing technologies, but the rapid expansion presents challenges for operators, investors, and insurers.
Read more
Global | Press release
Cyber risk trends 2025
Cyber insureds gain momentum against attackers, but supply chain challenges remain.
Read more
Global | Press release
Hydrogen: opportunities, uses and risks
Hydrogen will play a crucial role in driving the green transition with demand expected to surge in the coming decades.
Read more
Global | Press release
Climate Adaptation & Resilience Services (CAReS)
Allianz Commercial launched its Climate Adaptation & Resilience Services (CAReS). The data-driven platform has been developed together with Allianz clients and allows them to directly identify potential high-risk areas.
Read more
Global | Press release
Safety and Shipping Review 2025
The fast-changing geopolitical landscape is creating new risks and challenges for a shipping industry already juggling the energy transition and the legacy of the Covid-19 pandemic.
Read more
Adapt Now series
#1 Greening measures
Adapt Now #1 explores the benefits, trade-offs, and real-world lessons from greening measures, with a spotlight on Singapore’s experience.
Read more
1 / 14
Sign up to the newsletter
Keep up to date on all news and insights from Allianz Commercial
Email newsletter
LinkedIn newsletter
Share via