<div dir="ltr"><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><a href="http://www.hiscoxgroup.com/news/press-releases/2018/12-04-2018.aspx">http://www.hiscoxgroup.com/news/press-releases/2018/12-04-2018.aspx</a></div><div dir="ltr"><br></div><div dir="ltr"><p style="border:0px none;text-decoration:none;background-color:rgb(245,245,245);outline:none;margin:0px 0px 14px;padding:0px;color:rgb(80,80,80);font-family:Arial,Helvetica,sans-serif;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px">Hiscox recently learned of an information security incident affecting a specialist law firm in the US that provided advice to Hiscox or its policyholders on some of its US commercial liability insurance claims.</p><p style="border:0px none;text-decoration:none;background-color:rgb(245,245,245);outline:none;margin:0px 0px 14px;padding:0px;color:rgb(80,80,80);font-family:Arial,Helvetica,sans-serif;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px">The incident involved illegal access to information stored on the law firm’s server, which may have included information relating to up to 1,500 of Hiscox’s US-based commercial insurance policyholders. US small business online policyholders and all non-US policyholders are unaffected by this incident. The law firm’s systems are not connected to Hiscox’s IT infrastructure and Hiscox’s own systems were unaffected by this incident.</p><p style="border:0px none;text-decoration:none;background-color:rgb(245,245,245);outline:none;margin:0px 0px 14px;padding:0px;color:rgb(80,80,80);font-family:Arial,Helvetica,sans-serif;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px">Hiscox promptly retained a top IT security and forensics firm to assist with the investigation and analysis of affected information. Hiscox reported the incident to law enforcement authorities in the US and UK. Hiscox has also taken additional security measures in relation to its own systems.</p><p style="border:0px none;text-decoration:none;background-color:rgb(245,245,245);outline:none;margin:0px 0px 14px;padding:0px;color:rgb(80,80,80);font-family:Arial,Helvetica,sans-serif;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px">We take the security of client information seriously, and were very disappointed to learn about this incident. We are contacting those US commercial policyholders who may have been affected to provide further information and assistance.</p><br><br clear="all"><div><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><b><span style="font-size:10pt"></span></b><span style="font-size:10pt"></span><span style="font-family:arial,helvetica,sans-serif"></span><br></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
</div>