Executives at Coalition say cyber risk in 2026 will look less like a string of isolated breaches and more like a web of hidden interdependencies capable of driving correlated, system-wide loss.
For re/insurers, that shift raises the bar on technical transparency, underwriting discipline, and how coverage responds when failures cascade.
Across underwriting, claims, and distribution, Coalition’s leadership describes an industry edging toward a breaking point. Systemic exposure is growing. Cloud reliance keeps deepening. Privacy rules keep splintering.
At the same time, pricing pressure in a soft market tempts carriers to relax standards just as risks become harder to see. According to Beinsure analysts, that combination rarely ends gently.
Diana Liu, head of underwriting at Coalition Re, says accumulation risk is moving into the spotlight. She argues that cyber risk aggregation, long treated as manageable, is now exerting destabilising pressure across the financial system.
As exposure expands, traditional grouping methods, industry, revenue, geography, start to look thin. They miss how digital systems actually connect.
She points to sector-specific mini-cat events as early warnings. Those incidents expose how little visibility reinsurers often have into shared software, common vulnerabilities, and concentrated cloud usage. Liu says preventing systemic failure will require models grounded in technical reality, not proxy assumptions.
As 2026 approaches, she expects demand for that clarity to accelerate as carriers and cedants accept that broad portfolio labels no longer contain accumulation, Beinsure noted.
Tiago Henriques, Coalition’s chief underwriting officer, narrows the focus further. For him, business interruption tied to cloud infrastructure sits at the center of next year’s risk.
After a year marked by high-profile outages, insurers are paying closer attention to scenarios where thousands of sites and servers fail at once.
Henriques points to incidents involving CrowdStrike and Amazon Web Services, where technical failures, not malicious attacks, triggered widespread disruption.
Many businesses remain exposed, he says, because multi-region or multi-cloud setups cost money and require expertise they don’t always have.
Those outages reveal a broader blind spot. Technical debt and fragile infrastructure often get waved through underwriting. Insurers, chasing volume, don’t always ask hard questions.
Henriques says profitability will increasingly depend on understanding how technology interconnections translate into correlated loss. Without that, business interruption tied to cloud software and systemic failure stays underpriced.
On the claims side, Anne Juntunen, senior claims manager at Coalition, flags a different pressure point. Wrongful collection claims are rising, driven by statutory damages embedded in state privacy and wiretap laws. The economics now work even for small players.
She says demand letters and lawsuits once came mainly from well-funded firms targeting complex, high-traffic sites. Opportunistic claimants are emerging, using automated or template-based approaches that still generate returns.
In 2026, fragmented privacy rules and more advanced tracking tools will raise exposure for companies with weak disclosures, shaky consent flows, or limited oversight of third-party analytics and marketing vendors.
Without proactive steps, auditing web technologies, tightening vendor contracts, and monitoring consent, Juntunen expects a sharp rise in privacy-driven third-party claims. Many organisations won’t see it coming.
Shawn Ram, Coalition’s chief revenue officer, looks at the market backdrop. He expects the soft cyber market to persist into 2026, with rate cuts and aggressive pricing intensifying competition. Growth remains tempting. Aggregation risk doesn’t disappear just because claims have been light.
Ram says as core policy terms converge, price and coverage alone stop being differentiators. Instead, carriers will compete on what they add around the policy, security tools, intelligence, breach response capabilities that actually reduce loss.
He warns that insurers leaning on temporary claim trends risk volatility if frequency or severity shifts. Sustainable growth, in his view, depends on disciplined evaluation and models that hold up when conditions turn.
Kyle Bryant, head of international at Coalition, widens the lens again. He says supply chain aggregation risk will push insurers to rethink cyber protection.
The market’s focus on single-vendor outages, he argues, has obscured a larger issue: customer concentration.
Bryant points to disruptions like the attack on Jaguar Land Rover, where downstream suppliers suffered severe economic damage when a primary customer faltered enough to draw government involvement.
Small manufacturers took hits far out of proportion to their size. Insurance structures didn’t always follow the exposure.
Taken together, Coalition’s executives paint a consistent picture. Cyber risk in 2026 won’t hinge on one breach, one vendor, or one headline. It will sit in the overlaps. The places models still struggle to see.
