As tensions rise in the Middle East, CyberCube has issued a call to action for cyber insurance carriers, urging them to use threat-intelligence-informed analytics to assess and manage exposure to potential cyber operations by Iranian threat actors.
A new blog, authored by William Altman, CyberCube’s Director of Cyber Threat Intelligence Services, observed that the United States and Israel’s military strikes against Iran have increased the odds of retaliatory activity in cyberspace.
“To date, there has been no confirmed specific counter-cyberattack by Iran or affiliated groups that directly ties back to the operation. However, security community commentary has warned that Iran-aligned actors could carry out cyber operations, including ransomware, against U.S. or allied targets in retaliation,” CyberCube’s blog explained.
With this in mind, the firm has analysed a portfolio of roughly 1,000 large U.S. companies, classifying them into risk tiers based on their exposure to APT33, MuddyWater, and Fox Kitten, three prominent Iranian state-aligned cyber groups known to target U.S. enterprises and critical infrastructure.
CyberCube said that its analysis was conducted through Portfolio Threat Actor Intelligence (PTI), which harnesses AI to map the behaviour of cyber threat actors and the technologies they most frequently target.
PTI identified 12% of large-sized U.S. firms with revenues over $1 billion across seven critical industries, Banking, Financials, Energy & Utilities, Oil & Gas, Healthcare, Telecommunications, and the Public sector, as facing the highest likelihood of being targeted by Iranian cyber threat actors.
Among them are 28 U.S. health organisations and 13 U.S. energy and utilities companies.
CyberCube has thus urged cyber insurance carriers to leverage threat-intelligence-informed analytics to better understand the risks posed by Iranian cyber threat actors.
The firm said insurers should use threat intelligence tools, such as its PTI solution, to identify portfolio companies that should be prioritised for action during ongoing campaigns and to focus outreach to insureds on targeted security improvements aligned with relevant threat actors’ tradecraft.
It also recommended incorporating the highest-risk entities into threat-aligned portfolio tiering and stress-testing exercises to help quantify potential losses during sustained cyber campaigns.
“With the right solutions and proactive threat intelligence, cyber insurers can take decisive steps to strengthen portfolio resilience, protect clients, and reduce the risk of loss,” CyberCube concluded.
William Altman commented, “Insurance carriers should anchor expectations in Iran’s observed cyber playbook. U.S. government guidance has repeatedly warned that Iranian government-affiliated cyber threat actors target poorly secured networks and internet-connected devices, and that heightened vigilance is warranted for U.S. critical infrastructure and entities of interest.”
The post CyberCube flags elevated cyber risk from Iran following US-Israel strikes appeared first on ReinsuranceNe.ws.
