Hacked Company Loses Insurance Battle Over Customer Payment Scam
Hacked Company Loses Insurance Battle Over Customer Payment Scam
The information on this website is general in nature and does not take into account your objectives, financial situation, or needs. Consider seeking personal advice from a licensed adviser before acting on any information.
A company recently faced a significant setback after losing an insurance claim dispute related to funds stolen in a fraudulent email scheme.
Cybercriminals infiltrated the business's email system, sending out fake invoices that directed clients to pay into a bogus bank account.
Consequently, two customers inadvertently transferred a total of $66,148 to the fraudulent account.
Attempts to retrieve this money were unsuccessful, and the customers refused further payments to the company.
The company, holding a management liability insurance policy, sought to claim under its third-party crime coverage to recover the outstanding bills from the customers. However, AIG Australia denied the claim, stating that the policy only addressed "direct financial loss" from theft or fraud by a third party, and argued that since the stolen money belonged to customers, the business itself did not suffer a direct loss.
The Australian Financial Complaints Authority (AFCA) reviewed the case and acknowledged the company's loss. However, it determined that the loss did not align with the policy's specific terms. The ruling emphasized that only the company's customers faced direct financial loss, whereas the company experienced an indirect one due to subsequent non-payments.
The AFCA explained that the hack did not meet the company's policy definition of theft, as the stolen funds belonged to the customers, not the business. This discrepancy meant that the policy's electronic and computer crime coverage was not applicable. Additionally, the policy's criteria for "fraudulent act," which required acts of forgery or counterfeiting the insured had acted upon, were not met since the company was unaware of the false invoices.
This case highlights the critical distinction between direct and indirect financial losses in insurance claims, emphasizing the importance of understanding policy terms. For businesses, particularly those prone to cyber threats, it underscores the significance of having insurance coverage that appropriately addresses loss scenarios stemming from such events. It also serves as a cautionary tale of the complexities involved in recovering from cybercrime attacks without adequate protection.
Moving forward, businesses should ensure robust cybersecurity measures to prevent similar email hacks, coupled with clarifying insurance policies for adequate coverage against indirect financial losses as a result of customer fraud. This scenario may lead insurance providers to reevaluate their product offerings, potentially driving the development of more comprehensive cybercrime coverages. Additionally, the financial sector might witness increased discussions on how to formulate clearer policy definitions that align with the evolving nature of cyber threats.
Please Note: We do not endorse any specific products or companies. Some content is sourced from third parties, including press releases, and may not be independently verified for accuracy or completeness.
In a strategic move to bolster its presence in the Australian insurance sector, New Zealand-based insurtech company Javln has acquired Organiseit, a prominent Australian document management system provider. This acquisition follows Javln's successful $6 million capital raise in October, earmarked for accelerating its growth strategy and expanding its footprint in Australia. - read more
The Insurance Council of Australia (ICA) has declared an insurance catastrophe in response to the escalating bushfires across Victoria, underscoring the profound impact of climate change on the nation's insurance landscape. Since January 7, bushfires have ravaged over 400,000 hectares of land, leading to a surge in insurance claims and raising alarms about the increasing frequency and severity of such events. - read more
The Australian Securities and Investments Commission (ASIC) has commenced legal proceedings against Auto & General, the parent company of Budget Direct, alleging that the insurer engaged in misleading conduct regarding promised discounts to customers. The case centers on claims that tens of thousands of Budget Direct policyholders were overcharged premiums over several years due to the withdrawal of discounts that had been previously offered. - read more
Insurance Australia Group (IAG) has announced the acquisition of a 90% stake in RACQ Insurance for $855 million. This strategic move is expected to bolster IAG's gross written premiums by approximately $1.3 billion, reinforcing its position in the Australian insurance market. - read more
Suncorp Group has reported a remarkable 89% increase in net profit for the first half of 2025, with earnings per share reaching A$86.56. This substantial growth reflects the company's strong performance in the Australian insurance sector. - read more
Business insurance is a vital aspect of safeguarding your company's interests and mitigating potential risks. Whether you are a small startup or a well-established organization, having appropriate insurance coverage is essential for protecting your assets, finances, and reputation. - read more
Starting a new business venture is an exciting endeavor, but amid the myriad decisions start-up founders face, one must not overlook the importance of insurance. In today's digital-first world, the potential for cyber threats is a reality that can no longer be ignored by businesses of any size or sector, especially start-ups aiming to secure their future. - read more
Cyber security refers to the practices and technologies designed to protect computers, networks, programs, and data from unauthorized access, attacks, or damage. It's a crucial aspect of modern business operations, and understanding its importance is vital for all businesses, especially small ones. - read more
Welcome to the comprehensive guide on small business insurance in Australia. As a small business owner, you know that the unexpected can happen at any time. Whether it's a natural disaster, an accident on the premises, or legal action from a client, the right insurance can be the lifeline that keeps your business afloat during challenging times. - read more
Business interruption insurance is a type of coverage designed to compensate businesses for lost income and operational costs when they are unable to operate due to a covered event such as a natural disaster, fire, or other incidents that disrupt business operations. - read more
Knowledgebase
Policyholder: The individual or entity who owns the insurance policy.