Examining Cybersecurity Threats as Reported by Aon: Insights into Current Trends Available
Aon plc, a leading global professional services firm, has published its 2025 Cyber Risk Report, providing valuable insights into the evolving cyber threat landscape. The report, which utilizes data from Aon's proprietary Cyber Quotient Evaluation, a patented global e-submission platform for cyber insurance intake, aims to strengthen both underwriting outcomes and cyber risk management strategies.
The report reveals that cyber events causing reputation risks can result in an average drop of 27% in shareholder value. Reputation risk events are defined as cyber incidents that attract significant media attention and lead to measurable declines in shareholder value.
According to the report, the top types of cyber attacks most likely to evolve into reputation risk events are Malware and Ransomware attacks. These attacks accounted for 60% of all reputation risk events, despite only comprising 45% of total cyber incidents analyzed.
The report analyzed 1,414 global cyber events and identified 56 that became reputation risk events, highlighting the disproportionate impact of malware and ransomware on reputational damage. Other categories of cyber attacks analyzed include unauthorized access and credential attacks, but malware and ransomware remain the predominant triggers of reputational harm.
Five drivers of value recovery - preparedness, leadership, swift action, communication, and change - were identified as critical levers for mitigating reputational fallout. The report emphasizes the importance of preparedness, crisis communication, and swift leadership responses to mitigate fallout from malware and ransomware attacks.
However, it is worth noting that the report does not introduce any new tools or services, unlike the Cyber Risk Analyzer mentioned in another news article. Furthermore, the report does not specify the types of cyber events that were most likely to trigger reputational damage beyond malware and ransomware.
The report also highlights the growing challenge of managing uninsurable risks, as reputation risk remains largely nontransferable. Aon is uniquely positioned to support clients through the challenges of managing cyber risks, empowering organizations with actionable insights into their cyber exposures and insurability.
The 2025 Cyber Risk Report does not address the average drop in shareholder value due to cyber events or the drivers of value recovery, as discussed in Aon's Cyber Risk Report from previous years. Additionally, the report is not related to trends across various sectors, as discussed in the Client Trends 2025 report.
In summary, Aon's 2025 Cyber Risk Report underscores the significant reputational and financial stakes associated with malware and ransomware attacks, emphasizing the importance of preparedness, crisis communication, and swift leadership responses to mitigate fallout from these types of attacks.
- The 2025 Cyber Risk Report, published by Aon plc, indicates that cyber events causing reputation risks may lead to an average drop of 27% in shareholder value, particularly when they relate to Malware and Ransomware attacks.
- As noted in the report, Malware and Ransomware attacks account for a disproportionate impact on reputational damage, making up 60% of all reputation risk events, despite only comprising 45% of total cyber incidents analyzed.
- In order to mitigate the fallout from Malware and Ransomware attacks, the report identifies five drivers of value recovery as critical levers, including preparedness, leadership, swift action, communication, and change.
