We're sorry but your browser is not supported by Marsh.com

For the best experience, please upgrade to a supported browser:



Cleanup Information and Claims Support for “Petya/GoldenEye” Cyber-Attack


On 27 June, a ransomware cyber-attack — possibly the Petya virus or a variation known as GoldenEye — hit major government agencies and operations in the Ukraine and Russia, as well as a range of companies throughout Europe and the US. Affected sectors include financial services, transportation, energy, manufacturing, and professional services, among others. In many cases, the attack led to the suspension of operations and significant business interruption.  

If your organisation has been directly or indirectly impacted through a customer or supplier, you should act quickly to contain the outbreak and collect information you may need to file a claim by:

  • Working with your broker and cyber insurance insurer to access breach support and recovery services available under your policy.
  • Contacting technology vendors, legal counsel, public relations experts, and/or other advisers who can help contain the outbreak.
  • Preserving information and documenting the timeline of the breach and recovery efforts, which you may need later to file a claim. 

Marsh is already actively working with clients in these regards. If you need help with any of these steps, please contact your Marsh cyber adviser or Marsh Risk Consulting via your Marsh client executive.