Protect yourself from scams

In this section, IVASS publishes documents, information, press releases, and anything else that may be necessary to consumers, individuals, and businesses to protect themselves from cybersecurity threats and online scams, particularly those perpetrated through unauthorised sites.

The increasingly widespread use of innovative technologies, such as artificial intelligence and blockchain, the increased use of web-based transactions, and the digitization of processes are producing effects on insurance companies' business models, mediation methods, product distribution, and are also modifying customers’ habits and behaviours.

Automation generates benefits for businesses and households but at the same time exposes them to the risk of fraudulent use of sensitive information stored into computer systems or put on the network. This is the so-called "cyber risk," i.e., the risk of cyber incidents occurring and this information being lost, stolen, and fraudulently disseminated with possible financial loss, damage tothe image and reputation of the individuals who become victims. For companies, "cyber risk" can generate operational and legal risks related to business interruption or violation of regulations.

A widespread and concrete example of cyber risk is the phenomenon of unauthorised sites distributing fake policies. IVASS recommends paying special attention to this. In this section, IVASS publishes the orders to cease the unauthorised activity it has issued, as well as the press releases on sites that have been shut down.

IVASS participates in national and international coordination tables (CERTFin, EIOPA, IAIS) with the aim of strengthening the safety of operators and the stability and resilience of the insurance market.

Last update

16 January 2024

Share on:

advertising campaigns

  1. Cybersecure - feasible business
  2. I Navigati - Informati e Sicuri ('The cyber-aware family - Up to date and trouble-free')

information for consumers

  1. Protect yourself
  2. Websites of undertakings and intermediaries
  3. Fake insurance policies sold online (only in Italian) (Video)Video clip published on 16/01/2020
  4. Defend yourself against scams (only in Italian) pdf 1013.1 KB IVASS Insurance Guides in simple terms - volume 2
  5. Fraud risks in online sales and IVASS strategy pdf 1.8 MB FIN-NET Plenary meeting, 16 November 2023
  6. Fight against irregular websites: IVASS collaborates with Google in combating online fraud

information for operators

  1. The importance of cyber-security tests for the Italian insurance system (only in Italian) pdf 708.4 KB Speech by Stefano de Polis
  2. A new FSB proposal to achieve greater convergence in cyber incident reportingNotice of 24/10/2022
  3. Adoption of the TIBER-IT National Guidance for advanced cybersecurity tests for the Italian financial sectorNotice of 2/8/2022
  4. Letter to the market of 3 June 2021 EIOPA Guidelines on security and governance of information and communication technology

legal references

  1. Regulation (EU) 2022/2554 - Digital Operational Resilience Act (DORA) (External link)
  2. EIOPA - Guidelines on information and communication technology security and governance (solo in inglese) (External link)
  3. IVASS Regulation No. 38 of 3 July 2018 Regulation laying down provisions on the system of governance

reports and surveys

  1. EIOPA - methodological principles of insurance stress testing - cyber component (External link)
  2. IAIS - Global Insurance Market Report (GIMAR) - Special Topic on Cyber (External link)
  3. Survey on policies against cyber risk
  4. A Risk Dashboard for the Italian insurance sector Working Paper No. 26

useful links

  1. CERTFin (External link)
  2. National Cybersecurity Agency (External link)
  3. EIOPA - Cyber operational resilience and cyber insurance (External link)
  4. IAIS - Cyber risk (External link)