CyberCube's April 2026 report treats AI not as an underwriting enhancement but as a systemic loss driver in its own right, warning that dependence on a small number of GPU, cloud and foundation model providers creates shared points of failure across thousands of otherwise unrelated policyholders (CyberCube, April 2026). Most carriers still have no cause-of-loss code that separates an AI-driven claim from a generic cyber claim, which means the data needed to price this risk is being discarded as it is created.

From comparing cyber cat model vendor outputs against actual claims taxonomies over the past several renewal cycles, that gap shows up first as a data problem long before it shows up as a pricing problem. By the time a frequency trend is visible in a carrier's loss triangle, the mispricing has already happened, because the claims that would have revealed the trend were coded as garden-variety ransomware, business email compromise, or data exfiltration rather than as AI-attributable events.

The Concentration Argument, in Actuarial Terms

CyberCube's report, authored by William Altman, Director of Cyber Threat Intelligence Services, identifies aggregation risk embedded at four layers of the AI stack: lithography and advanced chip fabrication, GPU compute, hyperscale cloud platforms, and foundation model providers (CyberCube, April 2026). "Dependencies on a small number of dominant providers create shared points of exposure across insureds," Altman wrote, adding that this concentration "increases the likelihood of correlated losses rather than isolated events" (CyberCube, April 2026).

That framing matters because it breaks the mental model most cyber cat modelers have used for a decade. Cyber cat models, built largely on the template of natural catastrophe modeling, treat aggregation as a function of shared vendor exposure, a single cloud outage, a single ransomware strain, a single software supply-chain compromise, propagating across a defined population of insureds. Those events are severe but bounded: a CrowdStrike-style outage or a Kaseya-style supply-chain attack hits a specific customer base, runs its course over days to weeks, and resolves. AI infrastructure concentration is different in kind, not just degree, because the dependency is structural rather than incidental. NVIDIA holds 81% of the data-center AI chip market (IDC, 2026), and across hyperscale cloud, AWS, Microsoft Azure, and Google Cloud together control roughly 68% of the market, with AWS alone at 30% (industry cloud-share tracking, Q1 2026). A carrier's cyber book does not need direct exposure to any single AI vendor for this concentration to matter; it only needs enough insureds running AI-dependent operations on the same handful of underlying providers.

The distinction actuaries should hold onto is that geographically bounded catastrophe risk, the kind most cyber cat models were calibrated against, has a natural exposure ceiling set by policy count and geography. Infrastructure-layer AI concentration has no such ceiling. A foundation-model outage or a compromised GPU driver update does not respect industry classification codes, state boundaries, or line-of-business splits. It can touch a manufacturer's automated quality-control system, a hospital's clinical documentation assistant, and a regional bank's fraud-detection pipeline in the same reporting period, because all three sit on the same underlying compute and model layer even though none of them appear correlated in a traditional NAICS-based aggregation view.

The Claims Taxonomy Gap: Why Carriers Are Discarding the Data They Need

The more actionable finding sits underneath the concentration warning, and it is a data-governance problem rather than a modeling one. A recent academic treatment of agentic AI insurance put the mechanism plainly: "If early claims are absorbed into generic cyber, technology E&O, or professional-liability categories, the market risks losing the empirical evidence necessary to develop actuarially sound pricing models" (Insurance of Agentic AI, arXiv, June 2026). That is precisely what is happening across the current claims-adjudication process. When a claims examiner closes a file today, the intake system offers cause-of-loss options built around a taxonomy that predates agentic AI: ransomware, business email compromise, denial of service, data breach, system failure. There is no standard field for "the insured's AI vendor pushed a model update that produced erroneous autonomous decisions" or "a prompt-injection attack caused an AI agent to exfiltrate data through an authorized channel."

The consequence is that a claim genuinely caused by an AI failure gets filed under whichever legacy code is the closest fit, usually system failure or a catch-all technology error and omissions bucket, and the AI-specific signal disappears into the noise of that broader category. The American Academy of Actuaries' Cyber Risk Toolkit, the most widely used practitioner reference on cyber risk classification for U.S. actuaries, still organizes its guidance around the pre-AI framework: threat landscape, silent cyber, cyber data, accumulation, reinsurance, and ransomware, with AI treated as an emerging cross-cutting concern rather than its own coded category (American Academy of Actuaries, Cyber Risk Toolkit, updated 2025). That is not a criticism of the Toolkit; it reflects the state of industry practice it documents. But it means the reference actuaries actually use for cyber classification has no AI-specific cause-of-loss bucket to point carriers toward, even as the underlying research literature calls for exactly that structure.

A more granular taxonomy, distinguishing operational failures such as model drift and autonomous decision errors, prompt-injection and adversarial-input events, model-performance failures including hallucination-driven harms, and dependency outages from shared infrastructure, would let carriers actually measure the frequency and severity trends CyberCube is warning about (Insurance of Agentic AI, arXiv, June 2026). Without it, the industry is in the position of building concentration risk models on a foundation of claims data that cannot distinguish the risk it is trying to model. A cat modeler asked to build an AI accumulation curve today would be working from a claims history that systematically undercounts the exact events the curve is meant to capture.

What a Working Cause-of-Loss Framework Would Need

Legacy cyber codeWhere the AI signal is currently absorbedProposed AI-specific code
System failureModel drift, autonomous decision error causing operational disruptionAI operational failure
Data breach / exfiltrationPrompt-injection or adversarial-input attacks that trick an agent into disclosing dataAI adversarial-input incident
Technology E&OModel-performance failures, hallucination-driven harms to third partiesAI model-performance failure
Contingent business interruptionOutage at a shared GPU, cloud, or foundation-model providerAI dependency outage

Building that table into a claims intake system is a modest technical lift. The harder problem is coordination: a single carrier adopting an internal AI cause-of-loss taxonomy generates useful data for its own book, but the accumulation and cat-modeling problem CyberCube is describing is a market-wide phenomenon that requires market-wide data to characterize. That is the same coordination failure the industry solved for hurricane and earthquake risk through decades of ISO and industry-consortium loss data pooling, and cyber has not yet built the equivalent institution for AI-specific causes of loss.

Two Faces of AI Inside the Same Cyber Line

CyberCube's systemic-risk framing is a useful contrast to the more familiar story about AI inside cyber underwriting: AI tools that scan policy wording, endorsements, and exclusions to find silent-cyber gaps before they accumulate into unpriced exposure. That defensive use case, covered in an earlier look at how wording-scanner tools are changing PML certification, treats AI as an underwriting instrument that reduces aggregation risk by catching contract-language gaps a human reviewer would miss at scale.

CyberCube's report is the mirror image of that story. The same technology that helps a carrier find and close a silent-cyber gap in its own book is, at the infrastructure layer, becoming a new source of exactly the kind of concentrated, correlated exposure that silent-cyber scanning was designed to prevent. A carrier can run wording-scanner tools built on a foundation model from one of a handful of providers to close its silent-cyber gaps, while its underlying book of insureds is simultaneously accumulating AI dependency risk on those same providers. The tool and the exposure share an infrastructure layer. That is not a contradiction so much as a reminder that AI inside a single line of business is now both a risk-reduction lever and a risk-accumulation vector, and treating it as only one or the other in a single underwriting or actuarial workflow misses half the picture.

What Dependency Mapping Would Actually Require

Turning CyberCube's warning into an operational underwriting and reserving process requires three specific building blocks that most cyber MGAs and carriers do not yet have in production.

The first is a vendor concentration register: a structured field in the underwriting submission that captures which cloud provider, which foundation model vendor, and which GPU or chip supply chain each significant AI-dependent business process relies on. This is a heavier lift than it sounds, because most commercial insureds cannot fully answer the question themselves. A mid-market manufacturer using an AI-enabled quality-control vendor may not know, and its own vendor may not disclose, that the underlying inference runs on a specific hyperscaler's infrastructure. Underwriting questionnaires built for silent-cyber wording gaps do not currently probe this layer, and building that data field is a prerequisite for everything downstream.

The second is treating major AI providers as explicit single points of failure inside probable maximum loss modeling, the same way a cat modeler treats a levee or a single power substation as a structural dependency in flood or wildfire modeling. A PML model built on NAICS-code diversification alone will systematically understate accumulation if a material share of the diversified book runs on the same three or four cloud and model providers. This requires cyber cat modelers to build explicit provider-concentration curves, estimating what share of a given book's insureds would suffer a correlated business-interruption or liability loss if a specific hyperscaler or foundation-model API experienced an extended outage or integrity failure, in the same way hurricane models estimate what share of exposed value would suffer loss at a given wind speed.

The third is reinsurance program structure built explicitly around that concentration, rather than around the geographic and industry-diversification assumptions that underlie most current cyber treaty design. That has direct implications for how the tower absorbs a correlated event, which is where the capital math gets concrete.

Modeling a Foundation-Model Outage Through a Cyber Reinsurance Tower

Consider an illustrative, order-of-magnitude scenario built on the current shape of the U.S. cyber market. U.S. direct written cyber premium totaled $9.14 billion in 2024, itself down 7% from $9.84 billion in 2023, the first-ever annual decline in the market's history (NAIC, 2025 Cybersecurity Insurance Report). A typical cyber quota share cedes 50% to 70% of premium and loss to reinsurers, with an excess-of-loss layer or tower sitting above the primary carrier's retained net position to absorb tail severity beyond a set attachment point.

Now suppose a major foundation-model provider or a dominant hyperscale cloud region suffers an extended integrity failure or outage, one severe enough to disrupt AI-dependent business operations across a meaningful share of a cyber book's insureds within a single reporting quarter, rather than the isolated, staggered timing that characterizes most current cyber losses. Because the underlying dependency is shared infrastructure rather than a single insured's control failure, claims would cluster by quarter rather than trickle in over a policy year, the same clustering dynamic that catastrophe reinsurance towers are built to absorb but that most current cyber XoL programs are not explicitly priced for. If even a low single-digit percentage of a carrier's AI-exposed cyber book generated correlated business-interruption and liability claims in that window, the primary layer could exhaust quickly enough to trigger the attachment point on the excess-of-loss tower in a single quarter, forcing reinstatement provisions that most cyber treaties currently price on the assumption of geographically or temporally dispersed loss activity, not a single-quarter cluster.

That dynamic has a close parallel in the catastrophe bond market, where sponsors have already begun pricing exactly this kind of infrastructure-concentration tail. Catastrophe bond issuance hit a record $17.98 billion across 83 deals in the first half of 2026, with 81% of that volume using indemnity triggers on perils that in some cases carry thin historical loss histories, a basis-risk profile that mirrors the AI-concentration problem: capital markets are willing to underwrite correlated tail risk once it is defined and priced, but pricing requires a loss taxonomy granular enough to model in the first place. Cyber treaty structures for 2027, currently being finalized, are the natural point at which reinsurers could begin requiring AI-vendor concentration disclosure as a submission requirement, the same way property cat treaties require geocoded location schedules.

Why This Matters for Actuaries

The practical takeaway for pricing and reserving actuaries is that the data gap CyberCube is describing compounds every renewal cycle it goes unaddressed. Cyber loss development patterns already run longer and more uncertain than most short-tail lines, and a claims population that cannot distinguish AI-driven losses from generic cyber losses means any AI-specific frequency or severity trend will remain statistically invisible until it is large enough to distort the aggregate triangle, at which point the exposure has likely already been underpriced for several renewal cycles. Reserving actuaries setting IBNR on a cyber book with material AI-dependent insured operations should treat the current absence of AI-coded claims data as a data-completeness problem, not as evidence of low AI-attributable frequency.

For pricing actuaries, the near-term action is less about building a fully calibrated AI accumulation curve, which the industry does not yet have the claims data to support, and more about pushing AI-vendor concentration into the underwriting submission and treating provider diversification as a rateable underwriting credit, the same way carriers already price credit for network segmentation or MFA adoption. Carriers that start capturing AI-vendor dependency data now will have a multi-year head start on the accumulation modeling CyberCube says the industry needs, while those that wait for the claims data to accumulate organically will be pricing 2027 and 2028 renewals on the same incomplete taxonomy that created the gap in the first place.

Further Reading

Sources