A cyber insurance as a basic policy usually covers data breaches, legal costs, customer notification, credit monitoring services, ransomware payments, and business interruption caused by cyber incidents. It may also include some regulatory fines ​(Howden Group).