You are here

Navigating Risks of Software-Based Efficiency in the Insurance Industry

No risk, no … digital efficiency? While Big Data Analytics, LLMs and other AI-driven tools may help to drive forecasting accuracy and overall efficiency of actuarial work, (cyber) risks are on the rise as well, making them a top priority for industry leaders, all the more so in insurance markets. We took the liberty of addressing the most common threads and investigating some opinions on the issue.
Written on 05/19/25

1. Cybersecurity Vulnerabilities

The integration of advanced software systems increases exposure to cyber threats. One notable example is the cyber attack on UK retailer Marks & Spencer (M&S) over the Easter weekend of 2025. The breach led to the suspension of online services, compromised customer data, and an estimated £60 million in lost revenues. M&S's share price dropped by 16%, erasing over £1.3 billion in market capitalization. The company is poised to claim up to £100 million from its cyber insurance policy to mitigate these losses.

Furthermore, the insurance industry faces significant risks from third-party vendors. A report by SecurityScorecard revealed that 59% of breaches among the top 150 insurance companies involved third-party attack vectors, highlighting vulnerabilities in the sector's supply chain. 

2. AI and Automation Pitfalls

While Artificial Intelligence (AI) and automation offer efficiency gains, they also introduce new risks. Instances of AI chatbots providing erroneous or inappropriate responses have led to customer dissatisfaction and potential legal challenges. In response, Lloyd's of London introduced an insurance product developed by Armilla to cover companies for losses caused by malfunctioning AI tools. This policy covers legal costs and damages if a business faces claims due to underperforming AI systems.

Moreover, the use of AI in underwriting and pricing can inadvertently lead to discriminatory practices if not properly managed. The risk of "deepfakes" in fraudulent claims further complicates the landscape, necessitating vigilant oversight and the development of ethical AI frameworks. 

3. Regulatory and Compliance Challenges

The rapid adoption of digital tools in insurance operations brings forth regulatory and compliance challenges. Ensuring that software solutions align with evolving legal standards requires continuous monitoring and adaptation. Non-compliance can result in substantial fines and damage to an insurer's reputation.

For example, the European Insurance and Occupational Pensions Authority (EIOPA) emphasizes the importance of evaluating the risks and benefits of digitalisation, assessing and designing regulatory measures to protect customers and safeguarding financial stability. 

Moreover, the integration of third-party software solutions necessitates thorough due diligence to ensure that these tools meet compliance requirements and do not introduce unforeseen liabilities.

4. Operational Risks and System Reliability

While software solutions aim to enhance efficiency, they can also introduce operational risks if not properly implemented and maintained. System outages, software bugs, and integration issues can disrupt services and erode customer trust. For instance, the insurance industry has faced challenges with legacy systems that are poorly integrated and difficult to update, leading to inefficiencies and increased vulnerability to disruptions.

Ensuring system reliability requires ongoing investment in infrastructure, regular testing, and the adoption of best practices in software development and maintenance.

5. Strategic Risk Management

To mitigate the risks associated with software-based efficiency, insurers must adopt a strategic approach to risk management. This includes investing in cybersecurity measures, implementing robust compliance frameworks, and fostering a culture of continuous improvement and vigilance. Engaging with stakeholders, including regulators, customers, and technology partners, is essential to navigate the complexities of digital transformation effectively.

Furthermore, insurers should consider developing contingency plans and procuring appropriate insurance cover to protect against potential losses arising from digital risks.

Sources:

  1. SecurityScorecard Report
    59% of Breaches Impacting Insurance Sector Caused by Third-Party Attack Vectors
     
  2. Insurance Business
    Allianz, Beazley could be on the hook as M&S insurance claim expected to be £100m+
     
  3. Risk & Insurance
    Insurance Industry Faces Rising Third-Party Cybersecurity Risks
     
  4. The Outpost
    Lloyd's of London Launches Insurance Coverage for AI-Related Losses 
     
  5. Reuters
    AI boosts insurance tech financing but deepfakes pose risks
     
  6. EIOPA
    EIOPA report takes the pulse of digitalisation in the European insurance market
Categories
Related news