Beinsure sees U.S. cyber insurance growth despite margin pressure from AI and ransomware

By AI, Created 3:12 PM UTC, May 28, 2026, /AGP/ – Beinsure says U.S. cyber insurance premiums rebounded as policy counts jumped 34%, but softer rates, higher claims, and a rising loss ratio are squeezing underwriting margins. The report points to stronger demand and bigger SME coverage gaps even as AI-enabled attacks and ransomware make risk selection harder.

Why it matters: - U.S. cyber insurance is still growing, but the business is getting harder to underwrite. - Rising demand is expanding the market, while softer pricing and more frequent claims are pressuring margins. - The line now sits at the center of insurer, reinsurer, broker, investor, and corporate risk discussions because AI, ransomware, and third-party exposure are changing loss behavior.

What happened: - Beinsure released a market analysis showing U.S. cyber insurance premiums rose nearly 11%. - The growth was driven mainly by an estimated 34% increase in policies in force, not by pricing power. - The report says cyber insurance entered a higher-volume, lower-rate phase in 2025. - Premium growth came from broader adoption and better buyer awareness, while market pricing softened. - Beinsure said the market remained profitable, but claims trends and a higher loss ratio are tightening underwriting margins.

The details: - Cyber insurance still represents about 1% of total direct written premiums, keeping it small relative to the broader property and casualty market. - The National Association of Insurance Commissioners changed the cyber supplement for 2025 annual statement filings. - The filing structure shifted from standalone and packaged categories to primary, excess, and endorsement categories. - AM Best data cited in the analysis notes that U.S. cyber business written by alien insurers falls outside the reporting base. - Beinsure said the new classification improves segmentation, but it makes year-over-year comparisons more technical. - Fitch Ratings said U.S. cyber insurance direct written premiums reached $7.07 billion across the total P&C cyber market. - The top five writers generated $2.15 billion, down 5.8%, with a 30.4% market share and a 71.6 combined ratio. - The top 10 wrote $3.51 billion, up 2.3%, with a 49.6% market share and a 75.2 combined ratio. - The top 20 wrote $5.39 billion, up 2.7%, with a 76.2% market share and a 78.1 combined ratio. - The full market posted a 72.7 combined ratio, according to Beinsure. - A 5-percentage-point rise in incurred direct losses points to growing margin pressure. - Rate cuts offset some organic exposure growth. - New entrants added capacity, sometimes with limited claims history or weaker technical depth. - Fitch Ratings has described this as naive capacity risk when underwriters chase market share without enough cyber loss experience. - Competition intensified after the 2022-2024 period, when strong rates and better portfolio results pulled in new market participants. - The shift started in excess layers and then moved into primary business. - Policy language remains a key differentiator, including war exclusions, business interruption triggers, contingent business interruption, vendor outages, infrastructure failures, and silent cyber exposure. - Beinsure said contract wording has become one of the most important tools for managing loss volatility. - Loose language can lead to disputes, while tighter wording supports pricing, capital allocation, and reinsurance placement. - Munich Re estimated global cyber insurance premiums at $15.3 billion in 2025, up 7%. - Munich Re expects average annual growth above 10% through 2030, which would roughly double the market. - Beinsure said the U.S. growth path depends heavily on small and medium-sized business penetration. - Around 50% of SMEs remain underinsured, often because of budget pressure, limited cyber controls, or low awareness of policy value. - Larger companies typically buy broader protection and use more advanced risk management. - Smaller firms often carry thin limits or no coverage despite rising dependence on cloud infrastructure, payment systems, managed service providers, and third-party software. - Beinsure said AI is a two-sided force in cyber insurance. - AI improves threat detection, speeds incident response, supports real-time intelligence, and helps insureds identify vulnerabilities faster. - AI also lowers the barrier for attackers through vulnerability scanning, phishing automation, malware development, and social engineering. - The partial release of Anthropic’s Mythos model added fresh concern about automated attack capability. - Beinsure expects vulnerabilities to outnumber patches over the short to medium term. - Ransomware has become a systemic exposure tied to cloud services, AI adoption, supply chains, and third-party technology providers. - Beinsure data show ransomware victims publicly named on leak sites are expected to rise from 6,000 in 2025 to more than 7,000 by the end of 2026. - That would mark a fivefold increase from 1,412 victims in 2020. - Cyber claims now extend beyond ransom payments to business interruption, data restoration, legal costs, breach notification, forensic services, reputational damage, and liability claims. - Defense and cost containment expenses now make up a larger share of losses. - Underwriters must evaluate security posture, operational dependency, vendor concentration, backup quality, and incident response readiness. - Cyber insurance-linked securities account for about 1.4% of the $63 billion 144A ILS market. - Beinsure said that small share highlights the difficulty of modeling cyber risk at capital markets scale. - Fitch has said cyber ILS can offer counterparty diversification and help reduce tail risk for a fast-growing P&C product line. - Beinsure said wider adoption still needs mature products, more consistent coverage terms, stronger policy language, better price discovery, and improved modeling tools. - Claims-made structures can reduce loss development tails for first-party and third-party losses. - Collateral release mechanisms can free capital under negotiated conditions. - Parametric, industry-loss, and indemnity-based cyber ILS structures each have trade-offs. - Buyers want discounts when they accept basis risk in parametric and index structures. - Sellers need enough return to compensate for uncertain exposure.

Between the lines: - The report suggests cyber insurance is maturing from a growth story into a discipline story. - More buyers are entering the market, but the easy premium gains are fading as rate reductions, capacity growth, and claims volatility collide. - AI and ransomware are not just threats to insured companies. They are also changing the economics of underwriting, claims control, and reinsurance structuring. - The widening SME protection gap looks like the biggest untapped growth pool, but it also creates the hardest pricing problem. - The move toward primary-layer coverage and tighter wording shows the market is trying to separate real risk from broad, loosely defined exposure.

What’s next: - Beinsure expects the next phase of U.S. cyber growth to depend less on premium expansion and more on risk selection, claims control, aggregation management, and capital support. - Insurers with dedicated cyber teams, stronger aggregation controls, and better cybersecurity assessments appear better positioned. - Market attention will likely stay on underwriting quality, policy wording, and the pace of ransomware and AI-enabled attack development. - Cyber ILS may expand, but only if the market improves triggers, modeling, and investor confidence.

The bottom line: - U.S. cyber insurance is growing, but the market is becoming more selective, more technical, and more exposed to claims pressure than headline premium growth suggests.