cyber risks

Subscribe to cyber risks via RSS

In addition to the normal operational and legal risks associated with owning and managing portfolio companies, 2025 has introduced or exacerbated a wave of geopolitical and macroeconomic risks such as inflation, tariffs, trade, depressed consumer sentiment, political risks, and credit risks. The resulting, increased risks faced by portfolio companies has caused a need for private equity sponsors to focus more closely on the insurance maintained at the portfolio company level, and not only the sponsor’s own policies. It is critical for sponsors to work closely with management of their portfolio companies, insurance brokers, and experienced coverage counsel to review and negotiate strong insurance for their portfolio companies. Savvy sponsors are able to utilize their leverage to negotiate bespoke, manuscript policy forms that can be used across their portfolio to provide consistent, strong protection for each of the sponsor’s portfolio companies.

With 46% of UK business reporting a cyber attack during 2019/2020 and 32% reporting at least one a week – see the UK Government’s Cyber Security Breaches Survey 2020 – the UK’s Financial Conduct Authority (“FCA”) has issued a timely warning to market participants of increasing cyber security threats in the wake of COVID-19.

With more people working remotely than ever before in light of COVID-19, firms in the private equity and hedge fund space should review their Regulation S-P privacy and information-safeguarding policies to ensure they are compliant and ready for a prolonged period of remote work. In particular, in view of SEC guidance, firms should focus on several key areas including personal devices and personally identifiable information.

COVID-19 has created many new concerns for private fund managers; however, managers should be particularly mindful of heightened cybersecurity and fraud risks. With increased numbers of employees teleworking, there are increased vulnerabilities for cybercriminal intrusions creating privacy-related risks for fund portfolio information, LP confidential data, and other sensitive electronically-stored materials.