AGENDA

Get a sneak peek into the 2026 NetDiligence Cyber Claims Study and updates on recently published spotlight reports, offering a data-driven look at claims trends and loss patterns. The conversation will broaden as our practitioners share real-world insights from the trenches, highlighting what the numbers reveal about today’s cyber risk landscape.

As AI incidents increase, insurers face new underwriting, policy wording, and claims challenges. This session explores AI-specific coverage issues—definitions of AI failure, performance triggers, exclusions, carve-backs, and vendor aggregation—along with underwriting signals like governance, validation, monitoring, and vendor transparency. Panelists will also discuss preparing claims teams for AI-related investigations.

This session features the NetDiligence Ransomware Advisory Board as they share the latest threat-intelligence insights and emerging trends in the threat landscape. Final discussion topics will be selected by the panel to highlight the most current and impactful developments. Stay tuned!

Privacy exposures increasingly arise not from cyber hacks but from improper handling and use of personal data, creating complex challenges for organizations and insurers alike. Panelists will explore compliance best practices, privacy frameworks, and the nuances of coverage and exclusions. Join this discussion to gain critical insights to navigate this complex and expanding risk landscape.

This session will provide an update on key developments in data breach class action litigation, focusing on emerging defense strategies, procedural trends, and how courts are evaluating these claims. Panelists will also discuss evolving approaches to damages and settlement, offering practical insight into how breach-related cases are being litigated and resolved and what these dynamics mean for organizations, insurers, and counsel.

VPN vulnerabilities continue to be a leading entry point in cyber incidents and insurance claims. This session will examine claims data highlighting the role of VPN compromise in cyber events, common vulnerabilities that attackers exploit, and how threat actors—including groups like Akira—leverage these weaknesses. Panelists will also walk through a typical VPN breach scenario and discuss the characteristics that make organizations attractive targets. Together, these insights will help insurers, practitioners, and organizations better understand how legacy access technologies continue to drive modern cyber losses.

Recent court decisions are offering greater clarity on how cyber insurance policies apply to today’s cyber events. This session will highlight key rulings addressing system failure and business interruption coverage, the treatment of biometric privacy claims, insured response actions that increase losses, and limits on downstream liability. Panelists will also discuss the growing role of exclusions and policy compliance in claim denials and what these trends mean for insurers and policyholders.

The declarations page may outline limits and retentions, but the real scope of cyber coverage often lies in the definitions. Terms like “security failure,” “system outage,” and “dependent systems” can determine whether a claim is covered, limited, or denied. This panel will examine how key definitions influence claim outcomes and what brokers, insurers, and policyholders should understand about these provisions before an incident occurs.

Originally enacted in 1967 as a wiretap statute, the California Invasion of Privacy Act (CIPA) is increasingly being used to challenge modern website technologies such as tracking pixels, session replay tools, and chat widgets. This session will examine the growing wave of litigation, evolving jurisdictional interpretations, stalled legislative reform efforts, and the implications for businesses and cyber insurers.

The hospitality sector faces a unique cyber risk profile driven by high-volume transactions, distributed and franchise-heavy operations, complex third-party ecosystems, and an extremely low tolerance for downtime. This session will explore the most significant cyber threats facing hotels, resorts, and casinos, and how organizations are managing operational disruption, payment risks, and reputational harm in an increasingly complex digital environment.

AI adoption is moving faster than most risk and governance programs. This program covers practical frameworks for assessing and controlling AI, including model and data integrity, validation, sanitization, and trust management. Panelists will also address evolving regulatory and cybersecurity expectations and where AI disruption is creating the greatest exposure.

Healthcare organizations are increasingly deploying AI and other emerging technologies within operational technology (OT) environments, where cyber risk intersects with patient safety and physical outcomes. Unlike enterprise IT, these systems operate in real time and can directly influence clinical decisions and device behavior. This session will examine how AI-driven technologies introduce new cyber-physical risks, regulatory challenges, and complex liability exposures across healthcare organizations.

While AI dominates headlines, a new set of emerging technologies may pose even greater challenges for cyber insurers. From quantum computing and cloud concentration to APIs, IAM systems, and software supply chains, these interconnected technologies create complex, systemic risks that are difficult to model, underwrite, and insure. This session will explore the next wave of cyber exposure and the structural traits that make these risks particularly challenging for the insurance market.

Data centers sit at the intersection of cyber risk, operational technology, and physical infrastructure, creating a complex risk profile for insurers and operators alike. As identity-based access becomes the dominant attack vector and facilities grow increasingly dependent on power and other critical infrastructure, disruptions can cascade across digital and physical systems. This session will examine how these interdependencies shape emerging threats, operational resilience, and insurance exposure.

As the cyber industry prepares for a potential cyber CAT event, questions remain about whether traditional incident response vendors can scale to meet surge demand. At the same time, a new wave of vendors is entering the market with AI-driven tools designed to automate triage, investigation, and response. This panel will examine whether these emerging solutions can meaningfully expand vendor capacity and how they may reshape the incident response ecosystem.

The U.S. water sector is highly fragmented, with roughly 164,000 drinking and wastewater systems—many small, independently operated, and lacking mature cybersecurity programs. This distributed environment creates a broad attack surface, particularly across operational technology such as SCADA and HMI systems. This session will examine key cyber and operational risks in water infrastructure, including OT vulnerabilities, potential physical and environmental impacts, and the growing concern around systemic exposure driven by shared technologies and vendors.

Backups are often viewed as the fastest path to recovery after a cyber incident—but restoring too quickly can introduce legal, forensic, and insurance complications. This session examines the critical decisions organizations face when determining if, when, and how to restore from backups during incident response. Attendees will gain practical insight into coordinating insurers, forensic teams, legal counsel, and IT responders to ensure backup-based recovery preserves evidence, supports coverage determinations, and prevents reinfection.

In this lively close to the day, our industry experts will field audience questions via the mobile app and from the conference floor.