Hacked Company Loses Insurance Battle Over Customer Payment Scam
Hacked Company Loses Insurance Battle Over Customer Payment Scam
2
The information on this website is general in nature and does not take into account your objectives, financial situation, or needs. Consider seeking personal advice from a licensed adviser before acting on any information.
A company recently faced a significant setback after losing an insurance claim dispute related to funds stolen in a fraudulent email scheme.
Cybercriminals infiltrated the business's email system, sending out fake invoices that directed clients to pay into a bogus bank account.
Consequently, two customers inadvertently transferred a total of $66,148 to the fraudulent account.
Attempts to retrieve this money were unsuccessful, and the customers refused further payments to the company.
The company, holding a management liability insurance policy, sought to claim under its third-party crime coverage to recover the outstanding bills from the customers. However, AIG Australia denied the claim, stating that the policy only addressed "direct financial loss" from theft or fraud by a third party, and argued that since the stolen money belonged to customers, the business itself did not suffer a direct loss.
The Australian Financial Complaints Authority (AFCA) reviewed the case and acknowledged the company's loss. However, it determined that the loss did not align with the policy's specific terms. The ruling emphasized that only the company's customers faced direct financial loss, whereas the company experienced an indirect one due to subsequent non-payments.
The AFCA explained that the hack did not meet the company's policy definition of theft, as the stolen funds belonged to the customers, not the business. This discrepancy meant that the policy's electronic and computer crime coverage was not applicable. Additionally, the policy's criteria for "fraudulent act," which required acts of forgery or counterfeiting the insured had acted upon, were not met since the company was unaware of the false invoices.
This case highlights the critical distinction between direct and indirect financial losses in insurance claims, emphasizing the importance of understanding policy terms. For businesses, particularly those prone to cyber threats, it underscores the significance of having insurance coverage that appropriately addresses loss scenarios stemming from such events. It also serves as a cautionary tale of the complexities involved in recovering from cybercrime attacks without adequate protection.
Moving forward, businesses should ensure robust cybersecurity measures to prevent similar email hacks, coupled with clarifying insurance policies for adequate coverage against indirect financial losses as a result of customer fraud. This scenario may lead insurance providers to reevaluate their product offerings, potentially driving the development of more comprehensive cybercrime coverages. Additionally, the financial sector might witness increased discussions on how to formulate clearer policy definitions that align with the evolving nature of cyber threats.
Published:Tuesday, 11th Mar 2025 Source: Paige Estritori
Please Note: If this information affects you, seek advice from a licensed professional.
In a significant move within the Australian insurance sector, Allianz Australia has successfully completed the acquisition of RAA Insurance for $642 million. This strategic acquisition, approved by the competition regulator on June 12, 2025, marks a substantial expansion of Allianz's footprint in the South Australian market. - read more
The Australian Parliament has initiated a comprehensive inquiry into the provision, regulation, and pricing of modern insurance products for small businesses and not-for-profit organisations. Announced on October 29, 2025, this inquiry aims to address critical issues affecting the insurance landscape for small enterprises across the nation. - read more
The Australian Securities and Investments Commission (ASIC) has imposed a $16.8 million fine on Allianz Australia and its subsidiary, AWP Australia, for making false and misleading statements regarding travel insurance products. This penalty, announced on February 28, 2025, underscores the regulator's commitment to maintaining transparency and integrity within the insurance sector. - read more
In the past year, BizCover, a leading small business insurance provider, has reported an almost 50% rise in sales of cyber liability insurance. This significant uptick underscores the escalating awareness and concern among Australian businesses regarding cyber threats. - read more
In a significant development within Australia's insurance sector, Swedish private equity firm EQT has proposed a takeover of AUB Group, valuing the insurance broking company at A$5.25 billion. This offer represents a 25.1% premium over AUB's last closing share price, underscoring EQT's strong interest in expanding its footprint in the Australian market. - read more
Business interruption insurance is a type of coverage designed to compensate businesses for lost income and operational costs when they are unable to operate due to a covered event such as a natural disaster, fire, or other incidents that disrupt business operations. - read more
Insurance costs can be a significant expense for businesses in Australia, and it is crucial to understand how they can affect your bottom line. With premiums on the rise, many business owners are looking for ways to cut costs while maintaining the coverage they need to protect their operations. - read more
When embarking on the entrepreneurial journey of a start-up, it's imperative to safeguard the nascent enterprise with a reliable insurance safety net. Insurance acts as a vital shield, protecting the hard work and innovation of new businesses against unforeseen events and liabilities which can arise in the unpredictable world of start-ups. - read more
Running a retail business can be a risky endeavor. While you can minimize some of those risks with careful planning and management, you cannot eliminate them entirely. This is where insurance comes in. Having the right kind and amount of insurance coverage can make all the difference in protecting your business from financial loss, should the unthinkable happen. - read more
In today's digital age, cybersecurity has become a critical concern for businesses of all sizes. The increasing reliance on technology means that cyber threats are more prevalent than ever, making it essential for business owners to understand and manage these risks. - read more
Knowledgebase
Insurance: In law and economics, insurance is a form of risk management primarily used to hedge against the risk of potential financial loss.
