Latest news with #CyberRiskReport
Cision Canada
5 days ago
- Business
- Cision Canada
Aon's 2025 Global Cyber Risk Report Reveals Reputation Risk Events Can Reduce Shareholder Value by 27 percent
DUBLIN, June 17, 2025 /CNW/ -- Aon plc (NYSE: AON), a leading global professional services firm, today released its 2025 Cyber Risk Report, revealing that cyber events that cause reputation risks can result in an average of 27 percent drop in shareholder value, highlighting the growing financial and reputational stakes of cyber risk. The findings build on Aon's 2023 research, which showed that major cyber incidents led to an average 9 percent decline in shareholder value over the following year. This year's report goes further, analyzing more than 1,400 global cyber events and identifying which types of attacks are most likely to evolve into reputation risk events and which can be the most damaging when they do. "Cyber risk is no longer just a technology issue — it's a boardroom issue," said Brent Rieth, global cyber leader at Aon. "Our latest research underscores the importance of proactive risk mitigation. Organizations that invest in preparedness and resilience are far better positioned to avoid the reputational and financial fallout that can follow a cyber event." Among the report's key findings: Of the 1,414 cyber events analysed, 56 developed into reputation risk events, which are defined as cyber incidents that attract significant media attention and lead to a measurable decline in share price. Companies affected by these reputation risk events experienced an average shareholder value decline of 27 percent. Malware and Ransomware attacks were the most likely to trigger reputational damage, accounting for 60 percent of all reputation risk events, despite making up only 45 percent of total cyber incidents. Five drivers of value recovery — preparedness, leadership, swift action, communication and change — were identified as critical levers for mitigating reputational fallout. The report also highlights the growing challenge of managing uninsurable risks. While cyber insurance can help transfer some financial exposure, reputation risk remains largely nontransferable, making proactive risk management and crisis response essential. "As cyber threats grow more complex and interconnected, companies need a clearer view of their exposure, stronger alignment between cybersecurity and insurance strategies, and the tools to make better, data-driven decisions. Aon is uniquely positioned to support clients through these challenges," added Rieth. Aon's 2025 Cyber Risk Report draws on proprietary data from the firm's Cyber Quotient Evaluation, a patented global e-submission platform that streamlines the cyber insurance intake process and empowers organizations with actionable insights into their cyber exposures and insurability — helping to strengthen both underwriting outcomes and cyber risk management strategies. About Aon Aon plc (NYSE: AON) exists to shape decisions for the better — to protect and enrich the lives of people around the world. Through actionable analytic insight, globally integrated Risk Capital and Human Capital expertise, and locally relevant solutions, our colleagues provide clients in over 120 countries with the clarity and confidence to make better risk and people decisions that protect and grow their businesses.
Techday NZ
30-04-2025
- Business
- Techday NZ
Diligent teams with Cloudflare, Qualys to deliver cyber risk tool
Diligent has announced a partnership with Cloudflare and Qualys to provide a new cyber risk reporting solution designed for boards and both executive and security leaders. The Cyber Risk Report, now available on the Diligent One Platform, integrates Cloudflare's real-time threat intelligence and Qualys' cyber risk surface insights with Diligent's cyber risk dashboard. The solution is intended to provide a holistic, real-time view of the most pressing cyber threats facing organisations and to support strategic decision-making among board members and executives. Brian Stafford, President and Chief Executive Officer of Diligent, said: "In today's complex cyber landscape, boards and executives are demanding faster access to insights. The new Cyber Risk Report provides a holistic view of an organisation's risk posture, mitigating the chance of vulnerabilities to high impact threats. Combined with Diligent's AI-powered risk and governance solutions, this report arms CISOs with the tools for proactive risk management and strong cybersecurity governance." Diligent's recent 2025 What Directors Think report revealed that while 61% of directors acknowledge the strategic risks from cyber threats, nearly 30% of boards still do not receive regular security updates. The report underscores the challenges that security teams face, including an overload of data, constant emergence of software vulnerabilities, and new risks associated with AI tools. The new Cyber Risk Report aims to bridge this gap by merging internal controls data, third-party threat intelligence, and business context into a single, executive-focused resource. Its real-time integrations with Cloudflare and Qualys are designed to remove the need for manual reporting cycles and reliance on spreadsheets, streamlining processes such as control testing, evidence collection, and issue remediation through automation. Grant Bourzikas, Chief Security Officer at Cloudflare, commented: "Severe repercussions of recent attacks, and new threats posed by emerging technologies have moved cyber to the forefront of business leaders' concerns. And while the reckoning that cyber is at the crux of enabling business has finally come, communicating risk clearly, in business terms, is still a major challenge for CISOs. The Cyber Risk Report - underpinned by Cloudflare's telemetry, based on our global network that's one of the largest in the world - will enable security leaders to pinpoint exact relevant issues, overlay them with comprehensive context and ultimately provide clarity to the board on the overall state of your organisation's resilience." The development of the Cyber Risk Report included feedback from more than 50 chief information security officers and board members. The report offers features such as built-in trend analysis, peer comparisons, and intuitive dashboards, designed to help CISOs prioritise vulnerabilities according to their business impact and convey actionable recommendations to boards. The collaboration allows integration of technologies from both Cloudflare and Qualys into the Diligent One Platform and is intended to provide a basis for future cyber security solutions. Rich Seiersen, Chief Risk Tech Officer of Qualys, said: "CISOs don't need more dashboards; they need a smarter, business-focused strategy. At Qualys, we help our customers be more effective at measuring, communicating and eliminating their cyber risk with the Risk Operations Center (ROC). Together with Diligent and Cloudflare, we're redefining how cyber risk is communicated to the board, translating technical data into the financial language of business - dollars and cents. At the same time, we're empowering CISOs with clear, actionable insights to manage their risk surface, drive down risk, boost efficiency and elevate security as a true business enabler." The partnership is expected to address the ongoing challenges faced by security teams in translating technical cyber risk data into information that is meaningful for business and board-level decision-making.
Business Wire
29-04-2025
- Business
- Business Wire
Diligent Partners with Cloudflare and Qualys to Transform Cyber Risk Insights for Boards with Next-Generation Reporting Solution
NEW YORK--(BUSINESS WIRE)-- Diligent, the leading governance, risk and compliance (GRC) SaaS company, today announced a strategic partnership with Cloudflare, the leading connectivity cloud company, and Qualys, a leading provider of disruptive cloud-based IT, security and compliance solutions, to revolutionize the way Chief Information Security Officers (CISO) and security leaders communicate cyber risk to the board of directors. The Cyber Risk Report – available on the Diligent One Platform – will integrate Cloudflare's real-time threat intelligence, Qualys' best-in-class risk surface insights, and Diligent's cyber risk dashboard to deliver a real-time view of the most pressing cyber threats for organizations. 'In today's complex cyber landscape, boards and executives are demanding faster access to insights,' said Brian Stafford, President and Chief Executive Officer of Diligent. 'The new Cyber Risk Report provides a holistic view of an organization's risk posture, mitigating the chance of vulnerabilities to high impact threats. Combined with Diligent's AI-powered risk and governance solutions, this report arms CISOs with the tools for proactive risk management and strong cybersecurity governance.' According to Diligent's 2025 What Directors Think report, while 61% of directors recognize the strategic risks posed by cyber threats, almost 30% of boards do not receive regular security updates, underscoring a critical gap in cybersecurity awareness and action. Security teams are overwhelmed by excessive data, new software vulnerabilities and AI tools, making it crucial to automate 'always-on' threat monitoring and enable teams to translate insights for effective risk management. The Cyber Risk Report bridges the gap between threats detected and action needed by combining internal controls data, external threat intelligence and relevant business context into a single, executive-ready report. Real-time integrations with Cloudflare and Qualys will help eliminate manual reporting cycles and reliance on spreadsheets, providing comprehensive and actionable insights while automating complex tasks like control testing, evidence collection and issue remediation. 'Severe repercussions of recent attacks, and new threats posed by emerging technologies have moved cyber to the forefront of business leaders' concerns. And while the reckoning that cyber is at the crux of enabling business has finally come, communicating risk clearly, in business terms, is still a major challenge for CISOs,' said Grant Bourzikas, Chief Security Officer at Cloudflare. 'The Cyber Risk Report – underpinned by Cloudflare's telemetry, based on our global network that's one of the largest in the world – will enable security leaders to pinpoint exact relevant issues, overlay them with comprehensive context and ultimately provide clarity to the board on the overall state of your organization's resilience.' Developed with input from more than 50 CISOs and board members, the enhanced Cyber Risk Report connects technical metrics with strong decision-making. With features such as built-in trend tracking, peer comparisons and intuitive dashboards, the report enables CISOs to prioritize vulnerabilities based on business impact and deliver actionable insights to the board, ultimately enhancing governance. This strategic partnership enables the integration of cutting-edge technologies from Cloudflare and Qualys into the Diligent One Platform and serves as the foundation for future cybersecurity solutions to address the evolving threat landscape. 'CISOs don't need more dashboards; they need a smarter, business-focused strategy,' said Rich Seiersen, Chief Risk Tech Officer of Qualys. 'At Qualys, we help our customers be more effective at measuring, communicating and eliminating their cyber risk with the Risk Operations Center (ROC). Together with Diligent and Cloudflare, we're redefining how cyber risk is communicated to the board, translating technical data into the financial language of business – dollars and cents. At the same time, we're empowering CISOs with clear, actionable insights to manage their risk surface, drive down risk, boost efficiency and elevate security as a true business enabler.' The partnership was announced today at the 2025 RSA Conference. For more information about the Cyber Risk Report capabilities developed by Diligent, Cloudflare and Qualys, visit: About Diligent Diligent is the leading governance, risk and compliance (GRC) SaaS company, empowering more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster. Learn more at Follow Diligent on LinkedIn and Facebook. About Cloudflare Cloudflare, Inc. (NYSE: NET) is the leading connectivity cloud company on a mission to help build a better Internet. It empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost. Cloudflare's connectivity cloud delivers the most full-featured, unified platform of cloud-native products and developer tools, so any organization can gain the control they need to work, develop, and accelerate their business. Powered by one of the world's largest and most interconnected networks, Cloudflare blocks billions of threats online for its customers every day. It is trusted by millions of organizations – from the largest brands to entrepreneurs and small businesses to nonprofits, humanitarian groups, and governments across the globe. Learn more about Cloudflare's connectivity cloud at Learn more about the latest Internet trends and insights at Follow us: Blog | X | LinkedIn | Facebook | Instagram About Qualys Qualys, Inc. (NASDAQ: QLYS) is a leading provider of disruptive cloud-based security, compliance and IT solutions with more than 10,000 subscription customers worldwide, including a majority of the Forbes Global 100 and Fortune 100. Qualys helps organizations streamline and automate their security and compliance solutions onto a single platform for greater agility, better business outcomes, and substantial cost savings. The Qualys Enterprise TruRisk Platform leverages a single agent to continuously deliver critical security intelligence while enabling enterprises to automate the full spectrum of vulnerability detection, compliance, and protection for IT systems, workloads and web applications across on premises, endpoints, servers, public and private clouds, containers, and mobile devices. Founded in 1999 as one of the first SaaS security companies, Qualys has strategic partnerships and seamlessly integrates its vulnerability management capabilities into security offerings from cloud service providers, including Oracle Cloud Infrastructure, Amazon Web Services, the Google Cloud Platform and Microsoft Azure, along with a number of leading managed service providers and global consulting organizations. For more information, please visit Learn more about Qualys Enterprise TruRisk Management at .
