Cyber Insurance in 2026: How AI-Discovered Vulnerabilities Are Reshaping Coverage and Premiums
The window between vulnerability discovery and weaponization has collapsed. Here is how cyber insurers are responding, what your renewal questionnaire will ask, and how to position your program.

Retool's new app builder is where AI-generated code ships safely
Building apps with AI is easy. Getting them to production safely is another story.
The cyber insurance market has been through two major disruptions in the past five years: the ransomware surge of 2020-2022 that forced premium increases of 100-300 percent and policy restrictions across the market, and the AI vulnerability era beginning in 2024-2025 that has fundamentally changed the risk calculus for vulnerability management. Project Glasswing and Claude Mythos represent the most visible public demonstration of AI-powered vulnerability discovery, but the underlying capability, AI systems that can find exploitable vulnerabilities faster and at greater scale than human researchers, is now accessible to threat actors as well as defenders. Cyber underwriters are adapting their models, questionnaires, and coverage terms to this new reality. This guide explains what changed, what underwriters are now looking for, and how to position your security program for renewal in the AI vulnerability era.
How Cyber Insurance Underwriting Works
Cyber insurance underwriting involves two primary inputs: security questionnaires and continuous monitoring. Security questionnaires, which can range from 30 to 300 questions depending on the insurer and policy size, ask organizations to attest to their security controls, vulnerability management practices, incident response capabilities, and data handling procedures. For policies above a certain premium threshold (typically above $500,000 in annual premium), underwriters supplement questionnaire responses with continuous monitoring data from tools that scan the organization's externally visible attack surface.
The questionnaire responses are used to score the organization's security posture against the underwriter's actuarial model, which maps specific controls to expected loss frequency and severity. Organizations that attest to strong controls receive lower premium quotes; organizations that disclose gaps receive higher quotes or coverage restrictions.
Continuous monitoring tools used by major cyber insurers, including Coalition's Atlas platform, Corvus's risk platform, and similar capabilities at Beazley and AIG, scan the organization's external IP space and domain portfolio to identify exposed services, unpatched software, and misconfigured systems. When the monitoring discovers a high-severity unpatched CVE on an externally exposed system, the underwriter typically triggers a notification and may require remediation within a specified timeframe as a condition of continued coverage.
What Changed Post-Glasswing for Underwriters
Project Glasswing's public demonstration that AI can discover critical vulnerabilities at scale and generate working exploits in hours has changed the underwriting conversation in three ways. First, the assumed time-to-exploitation for newly disclosed CVEs has compressed significantly in actuarial models. Where underwriters previously assumed organizations had 30-60 days after CVE publication before active exploitation became widespread, the AI-accelerated weaponization timeline now compresses that window to days for high-CVSS vulnerabilities.
Second, the complexity and novelty of CVEs entering the market has increased. Pre-Glasswing, most CVEs entering exploitation pipelines were known vulnerability classes that human researchers had catalogued. Post-Glasswing, AI systems can identify novel vulnerability chains that combine multiple weaknesses into exploitable attacks that traditional scanners miss. Underwriters cannot rely on signature-based scanning to provide complete coverage assessment.
Third, the threat actor capability landscape has changed. When the same AI capabilities that Project Glasswing uses for defensive research are available to offensive actors, the asymmetry between attacker capability and average organizational defense capability grows. This asymmetry directly affects actuarial loss models, which translate to higher expected losses and higher premiums.
Briefings like this, every morning before 9am.
Threat intel, active CVEs, and campaign alerts, distilled for practitioners. 50,000+ subscribers. No noise.
The Questionnaire Questions That Matter Now
The 2026 cyber insurance renewal questionnaire reflects the AI vulnerability era through several new or elevated question areas. Vulnerability management velocity questions now ask specifically about mean time to patch (MTTP) for CVEs in different severity tiers, patch SLA documentation, and what happens when systems cannot be patched immediately (compensating control process).
Software bill of materials questions have moved from rare to common among sophisticated underwriters. An SBOM gives both the organization and the insurer visibility into which software components are deployed, enabling rapid assessment of exposure when a new CVE (like a Glasswing disclosure) targets a specific component. Organizations without SBOM programs face higher assumed exposure because their patch management programs cannot be as targeted.
KEV integration questions ask whether the organization subscribes to CISA's KEV feed and maintains a process for emergency patch deployment when a KEV addition affects in-scope systems. The KEV catalog is now a baseline expectation for mature vulnerability management programs.
AI and automation questions ask whether the organization uses AI-powered vulnerability management or penetration testing tools, whether external AI-powered scanning is used to identify attack surface exposures, and how the organization monitors for novel vulnerability classes that signature-based tools might miss. These questions are the underwriter's attempt to assess whether the organization is keeping pace with the offensive AI capability landscape.
Continuous Monitoring Tools Insurers Use
The externally facing continuous monitoring capability deployed by major cyber insurers scans the organization's internet-exposed attack surface for indicators of risk that correlate with insurance losses. The specific indicators monitored have expanded significantly since 2023 to include AI-discovered vulnerability classes.
Coalition's Atlas platform, one of the most widely deployed insurer-side monitoring tools, scans for exposed RDP, exposed database ports, unpatched web application frameworks, expired or weak TLS certificates, and misconfigured cloud storage. When Atlas detects a high-risk condition, Coalition notifies the policyholder and, for conditions that represent material coverage risk, may require remediation within 30 days as a condition of policy renewal.
For organizations subject to monitoring, the practical implication is that an unpatched Glasswing CVE on an externally exposed system will be detected. The organization will receive a notification, and failure to remediate within the specified timeframe creates a documented record of non-compliance that can affect both the renewal terms and the coverage outcome of a subsequent claim.
Organizations with mature vulnerability management programs that can demonstrate rapid response to monitoring notifications are in a stronger position for renewal, because the monitoring record provides third-party evidence of program effectiveness rather than relying solely on self-attestation.
Premium Adjustments for the AI Threat Landscape
Premium adjustments in 2026 are not uniform: they are granular and differentiated by the organization's demonstrated vulnerability management maturity. Underwriters are applying tiered adjustments based on measurable program characteristics rather than binary attestion.
Organizations with documented patch SLAs and measurable MTTR data for the past 12 months showing compliance with those SLAs are seeing premium adjustments in the 5-15 percent range for comparable coverage, reflecting the improved actuarial risk profile of a demonstrably functioning patch program.
Organizations without documented patch programs, without SBOM capabilities for critical systems, and without KEV integration in their vulnerability management workflow are seeing larger adjustments, typically 20-40 percent for comparable coverage, because the underwriter's actuarial model must assume worst-case exposure for unmeasured risk factors.
For organizations with prior ransomware claims or prior regulatory actions related to unpatched vulnerabilities, the adjustments are more significant and may include coverage sub-limits for specific attack categories or requirements for enhanced monitoring as a condition of coverage. The market signal is clear: demonstrated vulnerability management velocity is now a direct premium lever, not just a questionnaire checkbox.
Coverage Exclusions to Watch
Beyond the war exclusion, several coverage provisions deserve attention in the AI vulnerability era. The known vulnerability exclusion, present in some policies, excludes coverage for losses attributable to exploitation of vulnerabilities that were publicly known and for which a patch was available at the time of the loss event. The specific language varies: some policies exclude CVEs that were published more than a certain number of days before the loss; others require only that the vulnerability was publicly known. For Glasswing CVEs, which are publicly disclosed with CVE IDs and patches, this exclusion creates meaningful coverage risk for organizations that delay patching.
The systemic risk exclusion, growing in prevalence following the CrowdStrike incident of 2024, excludes or limits coverage for losses that affect a large number of policyholders simultaneously from a common cause. If a Glasswing CVE enables a widespread attack that affects hundreds or thousands of organizations, systemic risk provisions could limit aggregate payouts, affecting claim settlement for individual policyholders.
The failure to maintain exclusion, which requires the insured to maintain security controls consistent with representations made in the application, creates coverage risk when an organization attests to a patch management program that does not operate at the speed the AI threat landscape demands. Underwriters are increasingly asking for measurable evidence of program performance, not just attestation of program existence.
The Nation-State and War Exclusion Debate
The war and nation-state exclusion debate intensified in 2025-2026 as AI capabilities made it harder to distinguish state-sponsored from criminal threat actor activity. When a Glasswing CVE is exploited by a threat actor using AI-assisted weaponization, the attribution question becomes both legally and financially significant.
The Lloyd's Market Association model clauses, which have been adopted by many Lloyd's syndicates and are influencing the broader market, define attributable state-sponsored cyber operations broadly enough to cover cases where attribution is not formally confirmed by any government. An insurer applying this exclusion might deny coverage by asserting that the characteristics of an attack are consistent with state-sponsored activity, even without a formal government attribution.
Policyholders should examine war exclusion language carefully at renewal: the most policyholder-favorable versions require definitive governmental attribution before the exclusion applies; the least favorable versions allow the insurer to apply the exclusion based on the insurer's own attribution assessment. The difference in coverage outcome between these two formulations can be significant for large claims.
For Glasswing CVE-triggered losses specifically, the attribution complexity is elevated because the AI-powered vulnerability discovery that Project Glasswing demonstrates is also accessible to state-sponsored threat actors. An attack that exploits a Glasswing CVE using AI-assisted exploitation tooling may be characterized by insurers as consistent with state-sponsored sophistication, triggering war exclusion analysis even for criminal ransomware operators who have acquired similar AI capabilities.
What a Glasswing-CVE-Triggered Claim Looks Like
Understanding the anatomy of a Glasswing CVE-triggered insurance claim helps organizations anticipate both the coverage analysis and the documentation requirements. A typical scenario: a Glasswing CVD notification for a critical vulnerability in a widely-deployed middleware component is disclosed publicly. The organization receives the notification but patches over a 45-day cycle due to change management requirements. Thirty days after disclosure, a ransomware actor who has obtained a working exploit for the vulnerability deploys it against the organization's internet-exposed instance of the affected software. The attacker establishes persistence, laterally moves to file servers, exfiltrates customer data, and deploys ransomware across the environment.
The claims process begins with the insurer's coverage analysis team reviewing the timeline: When was the CVE publicly disclosed? When did the organization receive the CVD notification? When was the affected system identified in the organization's asset inventory? When was the patch applied or a compensating control implemented? When was the exploitation event? If the exploitation event occurred when the organization had access to a patch and had not applied it, the known vulnerability exclusion and failure to maintain exclusion become relevant.
Documentation that supports coverage in this scenario: evidence that the patch was in a tested, approved queue at the time of the incident (demonstrating good-faith compliance); documented compensating controls that were in place between disclosure and patching (demonstrating active risk management); evidence that the organization's scanning detected the vulnerability and had generated a remediation ticket (demonstrating that the vulnerability management program was functioning). Organizations without this documentation face a materially harder claims process.
Positioning for Renewal: The Security Program Narrative
The renewal conversation with cyber underwriters is more effectively framed as a security program presentation than a questionnaire response session. Underwriters are trying to assess whether your organization operates a security program that will reduce the likelihood and severity of covered losses. A narrative that demonstrates program maturity, measurement, and responsiveness to the AI threat landscape is more persuasive than checkbox answers.
For Glasswing CVE exposure specifically, your renewal narrative should address: how your organization receives and processes CVD notifications, including Glasswing disclosures; how your asset management program enables rapid identification of affected systems when a CVD notification arrives; what your patch SLA is for CVSS 9+ vulnerabilities and what your actual MTTR has been for the past 12 months; how your program handles embedded and OT systems that cannot be patched on standard timelines; and how you integrate CISA KEV additions into your emergency remediation workflow.
Organizations that can present this narrative with supporting data, such as actual MTTR metrics from their vulnerability management platform, CISA KEV subscription confirmation, and SBOM availability for critical systems, are presenting a materially different risk profile than organizations that answer the same questionnaire questions with unsubstantiated attestations.
Underwriter Questionnaire Prep Guide and Coverage Gap Analysis
The Mythos Brief provides the complete practitioner toolkit for cyber insurance renewal in the AI vulnerability era, including resources specifically designed for organizations that have received Glasswing CVD notifications or operate in environments where Glasswing CVEs are relevant.
Subscribe to unlock Remediation & Mitigation steps
Free subscribers unlock full IOC lists, Sigma detection rules, remediation steps, and every daily briefing.
The bottom line
Cyber insurance underwriting has fundamentally shifted in response to AI-powered vulnerability discovery. The compress of exploit development timelines from weeks to hours has made patch management velocity a direct underwriting factor, not just a compliance checkbox. Organizations that can demonstrate measurable vulnerability management programs, SBOM coverage, KEV integration, and documented patch SLA performance are in a materially stronger underwriting position at renewal. Those that cannot are facing higher premiums, narrower coverage, and increased coverage defense risk when claims arise from Glasswing CVEs that were publicly known before exploitation. For the complete 2026 underwriter questionnaire framework, coverage gap analysis, and policy language negotiation guide, visit decryptiondigest.com/mythos-brief.
Frequently asked questions
Are cyber insurance premiums going up because of AI vulnerability discovery?
Yes, for most organizations. The compression of the exploit development timeline, from weeks to hours with AI assistance, has directly increased actuarial loss expectations. Underwriters at Coalition, Beazley, AIG, and Corvus have all updated their models to reflect the elevated risk from AI-accelerated weaponization of newly disclosed CVEs. Organizations with strong patch management programs, documented SLAs for critical CVE remediation, and mature vulnerability management programs are seeing smaller premium increases or flat renewals. Organizations without documented vulnerability management processes are seeing larger increases, typically in the 15-30 percent range for comparable coverage.
What do insurers ask about AI threats in 2026?
The 2026 renewal questionnaire landscape includes new questions that were absent or rare two years ago: Does your organization subscribe to CVD notification programs or threat intelligence feeds that provide early warning of AI-discovered vulnerabilities? What is your mean time to patch critical CVEs (CVSS 9+) from public disclosure? Do you maintain a software bill of materials (SBOM) for your critical systems? What is your patching SLA for KEV catalog additions? How do you handle embedded or OT systems where traditional patching is not feasible? These questions are designed to assess whether your vulnerability management program can operate at the speed the AI threat landscape now demands.
Does a Glasswing CVE affect my insurance coverage?
A Glasswing CVE that remains unpatched after public disclosure and then enables a covered loss event creates potential coverage complications. Insurers routinely include provisions requiring insureds to maintain a reasonable security program, and failure to patch a known critical vulnerability within a reasonable timeframe can support a coverage defense. The specific language varies by policy: look for provisions requiring compliance with security standards, maintenance of a security program, or prompt remediation of known vulnerabilities. If your policy contains these provisions, a Glasswing CVE that was publicly available for 60 days before enabling a breach is a coverage risk.
What is the war exclusion and why does it matter?
Most cyber insurance policies contain a war exclusion that excludes coverage for losses attributable to acts of war. The Lloyd's Market Association model cyber war exclusion clauses, adopted in 2023, exclude losses from cyber operations that are part of a war, whether declared or not, and from state-sponsored cyber operations intended to significantly impact the functioning of a state. The exclusion matters for AI-discovered vulnerabilities because nation-state actors (particularly those affiliated with Russia, China, North Korea, and Iran) are among the most sophisticated consumers of AI-powered vulnerability research. If a Glasswing CVE is exploited by a state-sponsored actor in an operation that insurers attribute to state-directed activity, the war exclusion may apply to preclude coverage.
How do I prove patch management maturity to an underwriter?
Underwriters look for documented, measurable evidence of patch management program maturity, not self-attestation. Evidence that carries weight includes: a formal vulnerability management policy with defined SLAs by severity tier (e.g., critical CVEs patched within 72 hours, high within 14 days, medium within 30 days); documented CVSS, EPSS, or KEV-based prioritization methodology; scan coverage metrics showing what percentage of your asset inventory is covered by vulnerability scanning; mean time to remediate (MTTR) data by severity tier for the past 12 months; exception handling documentation for systems where patching is delayed, including compensating controls; and SBOM availability for critical systems. Organizations that can produce this documentation at renewal are in a materially stronger underwriting position.
How does an organization's AI-augmented vulnerability program affect its cyber insurance renewal negotiation posture?
Underwriters at Coalition, Corvus, and Beazley have begun asking applicants whether they use AI-assisted vulnerability discovery or continuous monitoring tools, and they weight affirmative answers positively in their actuarial scoring. To leverage an AI-augmented program at renewal, compile a one-page program summary that covers three data points: the AI tooling in use and its scanning cadence, the mean time to remediate critical findings discovered by that tooling over the past 12 months, and the number of findings that were detected and remediated before a public CVE was assigned -- evidence that your program operates faster than the threat actor weaponization timeline. If your organization participates in CVD notifications from programs like Project Glasswing, document the notification-to-triage and triage-to-patch timelines for each notification received during the policy period. This evidence directly counters the underwriter's assumed worst-case exploitation window and can justify a reduced rate adjustment or expanded coverage sublimit that a purely self-attested program cannot.
Sources & references
Free resources
Critical CVE Reference Card 2025–2026
25 actively exploited vulnerabilities with CVSS scores, exploit status, and patch availability. Print it, pin it, share it with your SOC team.
Ransomware Incident Response Playbook
Step-by-step 24-hour IR checklist covering detection, containment, eradication, and recovery. Built for SOC teams, IR leads, and CISOs.
Get threat intel before your inbox does.
50,000+ security professionals read Decryption Digest for early warnings on zero-days, ransomware, and nation-state campaigns. Free, daily, no spam.
Unsubscribe anytime. We never sell your data.

Founder & Cybersecurity Evangelist, Decryption Digest
Cybersecurity professional with expertise in threat intelligence, vulnerability research, and enterprise security. Covers zero-days, ransomware, and nation-state operations for 50,000+ security professionals every morning.
Win a $2,495 Black Hat pass.
Full-access to Black Hat USA 2026 in Las Vegas. Subscribe free to enter.
