Towergate Insurance has issued a warning on the risks associated with email account breaches, highlighting the potential consequences for both personal and professional security.
The broker, which specialises in cyber insurance and is set to rebrand as Everywhen, said email addresses are widely used for online banking, e-commerce, social media, file sharing, and business platforms.
This breadth of use, it noted, increases the exposure to cybercrime, with compromised inboxes offering cybercriminals access to sensitive information.
Marc Rocker (pictured above), head of cyber at Towergate, said that once an attacker gains access to an inbox, they can compile detailed information about the individual and use it to impersonate them.
“This could involve social engineering attacks against someone you know which might include your clients, signing you up for unwanted services that may send you spam or even using your information for criminal activities on the dark web,” Rocker said.
Towergate’s cyber security team outlined indicators of a compromised email account, which include being locked out due to a changed password, the appearance of unauthorised messages in the sent folder, contacts reporting spam sent from the account, multiple unexpected password reset requests, and an unusual increase in incoming spam.
Market data from Marsh’s UK Cyber Insurance Claims Trend Report showed a 20% decline in claims compared to 2023. However, activity remains elevated, with overall claims volume still about one-third higher than pre-2023 levels.
Ransomware-related claims fell by 31 % but continue to be double the volume recorded between 2020 and 2022. The figures highlight that while some threat levels have eased, the risk environment remains significantly above historical norms.
Meanwhile, the role of cyber insurance for SMEs has become increasingly prominent, according to the Coalition Cyber Threat Index 2025. The report pointed to ransomware as a consistent driver of claims, often originating from vulnerabilities in perimeter systems or remote desktop access.
Another recent survey found that 43 % of UK businesses had experienced some form of breach or attack in the previous year. Despite this, only around 40 % of SMEs have cyber insurance in place.
Industry specialists have warned that artificial intelligence-driven attacks are increasingly targeting smaller organisations, further widening the protection gap for those without cover.
Rocker said it is important to act without delay if a breach is suspected. He advised determining the source of the compromise, which could stem from a data breach, phishing attack, or inclusion on a leaked database.
“Websites such as ‘Have I been pwned’ or ‘Norton Breach Detector’ can help identify where your information has been leaked. Once you have identified the source of the data breach, check to see if they have taken any steps to address the problem or informed their users about the next steps,” he advised.
If a breach is confirmed, the recommended steps include changing the account password to a strong and unique one, notifying contacts to be alert for suspicious messages, and reviewing account settings for any changes such as unauthorised auto-forwarding.
Additional measures include enabling multifactor authentication, installing antivirus software, and, in certain cases, creating a new email address and updating associated accounts.
“These simple steps,” Rocker said, “Can help to minimise the risk, and mitigate any potential damage caused by your email address being leaked.”
Towergate also emphasised that many small and medium-sized enterprises remain without adequate cyber insurance, despite the growing threat. The company said the likelihood of cybercrime affecting a business is greater than many other risks that are routinely insured.
What are your thoughts on this story? Please feel free to share your comments below.
