Finding Coverage for the Latest E-mail Scams


As CYBER scams and hacker attacks grow, the insurance industry has been frantically trying to keep up in providing appropriate coverage for these events. Hacks, viruses, ransomware and exposure of sensitive personal information of your customers or employees, and any resulting regulatory implications, are often covered by cyber liability insurance. But what about the recent trend of criminals spoofing a company executive’s e-mail address, posing as them and ordering accounts payable to cut a check and send it to the fraudsters?

Well, two firms suffered similar incidents, but different federal appeals courts issued opposite opinions – one saying that a crime insurance policy covered the event, while the other court said it didn’t. The fact that two courts came out with two different rulings illustrates how many traditional and even cyber policies are slow to keep up with evolving hi-tech threats to businesses. The devil is always in the details, so read your policies and discuss your concerns with us.

The number of business e-mail compromise scams quadrupled in 2017, and losses averaged $352,000 per business and topped out at $3 million, according to an analysis of insurer Beazley’s clients. The FBI says these schemes are one of the fastest-growing cybercrimes.

Court case one: Covered

Employees of Medidata, a clinical-trial software firm, wired $4.7 million for what they thought was for an acquisition by their employer. They were sent a series of fraudulent e-mails that they thought were from their company president and the firm’s outside lawyer.

The company didn’t have a cyber insurance policy, but it had an executive protection policy, which had a crime section that included coverage for computer fraud, funds transfer fraud and
forgery. The insurer rejected the claim and the firm sued in federal court. The lower court ruled in favor of the insurer, but upon appeal, the federal appeals court ruled that the policy did in fact cover the loss.

The insurer argued the policy applies to only hacking-type intrusions. The appeals court found that while no hacking occurred, fraudsters inserted spoofing code into the firm’s e-mail system, which the court said is part of the computer system. The court held that the insurer must pay under the computer fraud portion of its policy.


Court case two: Not covered

A federal district court found no crime policy coverage after a Michigan tool and die firm wired $800,000 in funds to a fraudster’s account in the belief the account belonged to one of its vendors. The insurer faulted the company for not verifying the bank account with the vendor. The district court agreed with the insurer that the loss was not a “direct loss” caused by the “use of a computer,” and thus the crime policy did not apply.


The takeaway

Computer fraud is evolving rapidly, so it’s important that you talk to us about the types of fraud that appear in the news. We will work with you to ensure that your coverage is forward-looking and covering more than just threats from last year. We can also discuss with you how computer fraud coverage interacts with other types of cybercrime policies.

Attention !

Coronavirus – Mindful Insurance Remote Work Arrangements

At Mindful Insurance Solutions, our top priority has always been to deliver best-in-class service to our clients.  We chose the name “Mindful” precisely to be “present and willing to do something” with our clients, and that’s what we always strive to be—present with you in your business.

To ensure that we remain true to our name during the current coronavirus pandemic, we are taking every precaution possible to protect the health and safety of our team and their families.

Therefore, in line with much of the rest of the country, as of today, our team will work remotely, and our physical office locations will be closed.

For now, our plan is to maintain remote work arrangements for as long as local authorities require or medical experts advise.  We will closely monitor the situation to determine when we can return to our normal office procedures. The good news is that our technological capability enables everyone on our team to work seamlessly from remote locations. During this period, we will continue to be readily accessible to you. Your emails and phone calls/voicemails will be answered as per usual, and our Mindful Insurance professionals will work to meet your needs in all the ways you have come to expect from us.

We understand that insurance is a people-oriented industry, and Mindful prides itself on being a people-oriented company.  But while there is no substitute for face-to-face interaction, it is prudent to curtail such interaction as much as possible until things return to normal.  Therefore, Mindful also stands ready to interact with you via remote video/teleconferencing as desired.

These extraordinary steps are necessary to preserve the health of our team and to help curtail the spread of the virus, while upholding our commitment to you, our clients.  On behalf of the entire Mindful team, I want to thank you for your understanding and support during these challenging times.  We wish you, your families and your teams much good health.

In your service, stay healthy and safe,

William Donaldson President / CEO


This will close in 25 seconds