Cyber risk economics have fundamentally shifted as threat actors deploy sophisticated multi-vector strategies beyond data breaches, encompassing business interruption, supply chain attacks and extortion. Financial institutions now face class action lawsuits filed within days - sometimes before victim notifications are complete - as plaintiff's attorneys monitor SEC filings and ransomware leak sites. Insurers have responded by demanding business impact analyses for supply chain outages, fourth and fifth-party vendor visibility, and proof that AI implementations won't accelerate discrimination across thousands of automated decisions.

The panel of experts will examine how CISOs, legal teams and insurers are redefining risk quantification across operational downtime, privacy litigation and vendor aggregation risk.

The session will also cover:

• What’s measurable and what remains unpredictable in cyber risk quantification;
• The new wave of “non-breach” privacy and arbitration claims shaping insurance coverage;
• Communicating risk exposure and resilience to boards in business terms.