Hacked Company Loses Insurance Battle Over Customer Payment Scam

The information on this website is general in nature and does not take into account your objectives, financial situation, or needs. Consider seeking personal advice from a licensed adviser before acting on any information.

The company, holding a management liability insurance policy, sought to claim under its third-party crime coverage to recover the outstanding bills from the customers. However, AIG Australia denied the claim, stating that the policy only addressed "direct financial loss" from theft or fraud by a third party, and argued that since the stolen money belonged to customers, the business itself did not suffer a direct loss.

The Australian Financial Complaints Authority (AFCA) reviewed the case and acknowledged the company's loss. However, it determined that the loss did not align with the policy's specific terms. The ruling emphasized that only the company's customers faced direct financial loss, whereas the company experienced an indirect one due to subsequent non-payments.

The AFCA explained that the hack did not meet the company's policy definition of theft, as the stolen funds belonged to the customers, not the business. This discrepancy meant that the policy's electronic and computer crime coverage was not applicable. Additionally, the policy's criteria for "fraudulent act," which required acts of forgery or counterfeiting the insured had acted upon, were not met since the company was unaware of the false invoices.

This case highlights the critical distinction between direct and indirect financial losses in insurance claims, emphasizing the importance of understanding policy terms. For businesses, particularly those prone to cyber threats, it underscores the significance of having insurance coverage that appropriately addresses loss scenarios stemming from such events. It also serves as a cautionary tale of the complexities involved in recovering from cybercrime attacks without adequate protection.

Moving forward, businesses should ensure robust cybersecurity measures to prevent similar email hacks, coupled with clarifying insurance policies for adequate coverage against indirect financial losses as a result of customer fraud. This scenario may lead insurance providers to reevaluate their product offerings, potentially driving the development of more comprehensive cybercrime coverages. Additionally, the financial sector might witness increased discussions on how to formulate clearer policy definitions that align with the evolving nature of cyber threats.

Published:Tuesday, 11th Mar 2025
Author: Paige Estritori

Please Note: We do not endorse any specific products or companies. Some content is sourced from third parties, including press releases, and may not be independently verified for accuracy or completeness.

Share this news item:

Insurance News

Clear

APRA Halts Unjustified Premium Increases in Commercial Auto Insurance

18 Apr 2026: Paige Estritori

The Australian Prudential Regulation Authority (APRA) has recently taken decisive action to address significant concerns within the commercial auto insurance sector. In response to widespread industry protests over substantial premium increases, APRA has introduced emergency regulations aimed at safeguarding transport operators from financial hardship. - read more

Deloitte Forecasts Transformative Trends in Australian Insurance for 2026

18 Apr 2026: Paige Estritori

As the Australian insurance industry navigates a rapidly evolving landscape, Deloitte's 2026 Insurance Predictions report highlights two pivotal trends poised to reshape the sector: the integration of artificial intelligence (AI) and the adoption of advanced climate risk modeling. - read more

TAL's Health Sense Plus Now Covers Income Protection Policies

17 Apr 2026: Paige Estritori

In a significant development for policyholders, leading Australian life insurer TAL has announced the expansion of its Health Sense Plus program to encompass income protection (IP) policies. Effective from 8 August 2025, this initiative aims to incentivise proactive health management by offering premium discounts to clients who engage in preventative health checks. - read more

AFCA Directs Insurer to Reinstate Critical Illness Coverage After Miscommunication

17 Apr 2026: Paige Estritori

The Australian Financial Complaints Authority (AFCA) has recently ruled in favour of a policyholder who inadvertently cancelled his critical illness insurance due to unclear communication from his insurer, TAL Life. This decision underscores the critical importance of transparent communication between insurers and their clients, particularly regarding the implications of policy modifications. - read more

AIA Australia's Latest Enhancements to Priority Protection Insurance

17 Apr 2026: Paige Estritori

AIA Australia has recently updated its Priority Protection life insurance suite, introducing changes designed to simplify discounts, enhance policy clarity, and support premium affordability. These enhancements, effective from 9 November 2025, reflect AIA's commitment to providing value-driven solutions for policyholders. - read more

Click for more Insurance News