IDEAS home Printed from https://ideas.repec.org/p/arx/papers/2603.15369.html

A stochastic SIR model for cyber contagion: application to granular growth of firms and to insurance portfolio

Author

Listed:
  • Caroline Hillairet
  • Olivier Lopez
  • Lionel Sopgoui

Abstract

This work evaluates the impact of contagious cyber-events, over a finite horizon, on firms' financial health and on a cyber insurance portfolio. Our approach builds on key empirical findings from economics and cybersecurity. In economics, firm size and growth-rate distributions are non-Gaussian and exhibit heavy tails. In cybersecurity, contagion dynamics strongly depend on firm size and environmental conditions. To capture these features, we propose a stochastic multi-group SIR model coupled with a granular model of firm growth. This framework allows us to quantify the financial impact of cyber-attacks on firms' revenues and on the insurer's portfolio. In the model, the arrival time and duration of cyber-attacks are driven by a combination of a Cox process and a Bernoulli random variable. The Cox process represents external contagion, with an intensity given by the force of infection derived from the stochastic SIR dynamics. The Bernoulli component captures contagion originating from an infected sister or subsidiary firm. Environmental variability enables stochastic scenario generation and the computation of aggregate exceedance probabilities, a standard metric in catastrophe modeling that provides insurers with immediate insight into the financial severity of an event. We apply the framework to the LockBit ransomware attacks observed between May and July 2024. For a portfolio of 2,929 firms located in Ile-de-France, the model predicts that, with 50% probability, the insurer will need to compensate losses equivalent to up to two days of revenue over a 100-day cyber incident.

Suggested Citation

  • Caroline Hillairet & Olivier Lopez & Lionel Sopgoui, 2026. "A stochastic SIR model for cyber contagion: application to granular growth of firms and to insurance portfolio," Papers 2603.15369, arXiv.org.
    • Handle: RePEc:arx:papers:2603.15369
    as

    Download full text from publisher

    File URL: http://arxiv.org/pdf/2603.15369
    File Function: Latest version
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Caroline Hillairet & Olivier Lopez, 2021. "Propagation of cyber incidents in an insurance portfolio: counting processes combined with compartmental epidemiological models," Post-Print hal-02564462, HAL.
    2. Farkas, Sébastien & Lopez, Olivier & Thomas, Maud, 2021. "Cyber claim analysis using Generalized Pareto regression trees with applications to insurance," Insurance: Mathematics and Economics, Elsevier, vol. 98(C), pages 92-105.
    3. Caroline Hillairet & Olivier Lopez & Louise d'Oultremont & Brieuc Spoorenberg, 2022. "Cyber contagion: impact of the network structure on the losses of an insurance portfolio," Post-Print hal-03388840, HAL.
    4. Caroline Hillairet & Olivier Lopez, 2021. "Propagation of cyber incidents in an insurance portfolio: counting processes combined with compartmental epidemiological models," Scandinavian Actuarial Journal, Taylor & Francis Journals, vol. 2021(8), pages 671-694, September.
    5. Bessy-Roland, Yannick & Boumezoued, Alexandre & Hillairet, Caroline, 2021. "Multivariate Hawkes process for cyber insurance," Annals of Actuarial Science, Cambridge University Press, vol. 15(1), pages 14-39, March.
    6. Chen Peng & Maochao Xu & Shouhuai Xu & Taizhong Hu, 2017. "Modeling and predicting extreme cyber attack rates via marked point processes," Journal of Applied Statistics, Taylor & Francis Journals, vol. 44(14), pages 2534-2563, October.
    7. Jos'e Moran & Angelo Secchi & Jean-Philippe Bouchaud, 2024. "Revisiting Granular Models of Firm Growth," Papers 2404.15226, arXiv.org, revised Jun 2024.
    8. Aniket Baksy & Daniele Caratelli & Luke M. Olson, 2025. "Cyberattacks and Firm Size: The Vulnerability of Mid-Size Firms," The OFR Blog 25-12, Office of Financial Research, US Department of the Treasury.
    9. Cox, John C. & Ingersoll Junior, Jonathan E. & Ross, Stephen A., 2007. "A theory of the term structure of interest rates," RAE - Revista de Administração de Empresas, FGV-EAESP Escola de Administração de Empresas de São Paulo (Brazil), vol. 47(2), April.
    10. Kamiya, Shinichi & Kang, Jun-Koo & Kim, Jungmin & Milidonis, Andreas & Stulz, René M., 2021. "Risk management, firm reputation, and the impact of successful cyberattacks on target firms," Journal of Financial Economics, Elsevier, vol. 139(3), pages 719-749.
    11. Eling, Martin & Loperfido, Nicola, 2017. "Data breaches: Goodness of fit, pricing, and risk measurement," Insurance: Mathematics and Economics, Elsevier, vol. 75(C), pages 126-136.
    12. Aurélien Alfonsi, 2015. "Affine Diffusions and Related Processes: Simulation, Theory and Applications," Post-Print hal-03127212, HAL.
    13. Bernard Herskovic & Bryan Kelly & Hanno Lustig & Stijn Van Nieuwerburgh, 2020. "Firm Volatility in Granular Networks," Journal of Political Economy, University of Chicago Press, vol. 128(11), pages 4097-4162.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Daniel Gaigall & Stefan Weber, 2025. "Jointly Exchangeable Collective Risk Models: Interaction, Structure, and Limit Theorems," Papers 2504.06287, arXiv.org, revised Feb 2026.
    2. Malavasi, Matteo & Peters, Gareth W. & Shevchenko, Pavel V. & Trück, Stefan & Jang, Jiwook & Sofronov, Georgy, 2022. "Cyber risk frequency, severity and insurance viability," Insurance: Mathematics and Economics, Elsevier, vol. 106(C), pages 90-114.
    3. Mohamed Ben Alaya & Ahmed Kebaier & Djibril Sarr, 2024. "Financial Stochastic Models Diffusion: From Risk-Neutral to Real-World Measure," Papers 2409.12783, arXiv.org.
    4. Raj Kumari Bahl & Sotirios Sabanis, 2017. "General Price Bounds for Guaranteed Annuity Options," Papers 1707.00807, arXiv.org.
    5. Micha{l} Barski & Rafa{l} {L}ochowski, 2024. "Affine term structure models driven by independent L\'evy processes," Papers 2402.07503, arXiv.org.
    6. Zängerle, Daniel & Schiereck, Dirk, 2022. "Modelling and predicting enterprise‑level cyber risks in the context of sparse data availability," Publications of Darmstadt Technical University, Institute for Business Studies (BWL) 136276, Darmstadt Technical University, Department of Business Administration, Economics and Law, Institute for Business Studies (BWL).
    7. Matteo Malavasi & Gareth W. Peters & Stefan Treuck & Pavel V. Shevchenko & Jiwook Jang & Georgy Sofronov, 2024. "Cyber Risk Taxonomies: Statistical Analysis of Cybersecurity Risk Classifications," Papers 2410.05297, arXiv.org.
    8. Daouia, Abdelaati & Hachem, Joseph & Stupfler, Gilles, 2026. "Extreme value inference for heterogeneous heavy-tailed data: A derandomization theory," TSE Working Papers 26-1727, Toulouse School of Economics (TSE).
    9. Mayerhofer, Eberhard & Stelzer, Robert & Vestweber, Johanna, 2020. "Geometric ergodicity of affine processes on cones," Stochastic Processes and their Applications, Elsevier, vol. 130(7), pages 4141-4173.
    10. Micha{l} Barski & Rafa{l} {L}ochowski, 2023. "Classification and calibration of affine models driven by independent L\'evy processes," Papers 2303.08477, arXiv.org.
    11. Yoshioka, Hidekazu, 2025. "CIR bridge for modeling of fish migration on sub-hourly scale," Chaos, Solitons & Fractals, Elsevier, vol. 199(P3).
    12. Chelsea Liu & Muhammad Ali Babar, 2026. "Corporate cybersecurity risk and data breaches: A systematic review of empirical research," Australian Journal of Management, Australian School of Business, vol. 51(1), pages 62-92, February.
    13. Hillairet, Caroline & Lopez, Olivier & d'Oultremont, Louise & Spoorenberg, Brieuc, 2022. "Cyber-contagion model with network structure applied to insurance," Insurance: Mathematics and Economics, Elsevier, vol. 107(C), pages 88-101.
    14. Beáta Bolyog & Gyula Pap, 2019. "On conditional least squares estimation for affine diffusions based on continuous time observations," Statistical Inference for Stochastic Processes, Springer, vol. 22(1), pages 41-75, April.
    15. Frank Cremer & Barry Sheehan & Michael Fortmann & Arash N. Kia & Martin Mullins & Finbarr Murphy & Stefan Materne, 2022. "Cyber risk and cybersecurity: a systematic review of data availability," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 47(3), pages 698-736, July.
    16. Matyas Barczy & Mohamed Ben Alaya & Ahmed Kebaier & Gyula Pap, 2015. "Asymptotic behavior of maximum likelihood estimators for a jump-type Heston model," Papers 1509.08869, arXiv.org, revised May 2018.
    17. Kwangmin Jung & Chanjin Kim & Jiyeon Yun, 2025. "The effect of corporate risk management on cyber risk mitigation: Evidence from the insurance industry," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 50(2), pages 259-301, April.
    18. Mohamed Ben Alaya & Ahmed Kebaier & Ngoc Khue Tran, 2020. "Local asymptotic properties for Cox‐Ingersoll‐Ross process with discrete observations," Scandinavian Journal of Statistics, Danish Society for Theoretical Statistics;Finnish Statistical Society;Norwegian Statistical Association;Swedish Statistical Association, vol. 47(4), pages 1401-1464, December.
    19. Manon Costa & Sébastien Gadat & Lorick Huang, 2025. "CV@R-penalised portfolio optimisation with biased stochastic mirror descent," Finance and Stochastics, Springer, vol. 29(3), pages 609-664, July.
    20. Na Ren & Xin Zhang, 2024. "A novel k-generation propagation model for cyber risk and its application to cyber insurance," Papers 2408.14151, arXiv.org.

    More about this item

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:arx:papers:2603.15369. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: arXiv administrators (email available below). General contact details of provider: http://arxiv.org/ .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.