June 28, 2026

The National Association of Insurance Commissioners (NAIC) confirmed on June 25 that data stolen in a cyberattack on its Oracle PeopleSoft system has been published online by the responsible group. The extortion group ShinyHunters exploited a zero-day vulnerability (CVE-2026-35273) and claims to have obtained 3.1 terabytes of data, though the NAIC maintains no personally identifiable or payment information was accessed and the group does not hold the scope of data it claims.

Federal data released June 26 shows five million fewer people are enrolled in Affordable Care Act marketplace plans for 2026 compared to last year's record high, after enhanced premium tax credits expired and caused average premium costs to roughly double. More than 1 million fewer people selected a plan, while 4 million additional enrollees disenrolled or dropped coverage by failing to pay, with several insurers — including Cigna — exiting ACA markets for next year.

An intense late-June heatwave shattered temperature records across Europe, with France recording its hottest day ever at a 30.0°C national average and red alerts issued across most of the country. London experienced its hottest June day on record, with the mayor's office estimating prior heatwaves cost the city £1.5 billion. An Allianz Trade analysis projects extreme heat could wipe $638 billion off Europe's four largest economies by 2030, drawing increasing attention from insurers and investors.

The US Federal Reserve held its benchmark interest rate steady at its June meeting as widely expected, but markets reacted to a notably hawkish tone in the updated summary of economic projections. A majority of policymakers now expect a rate hike will be necessary later this year rather than a cut, as May inflation came in at 4.2% annually — the highest in more than three years — driven partly by energy costs from the US-Iran conflict.

The Reserve Bank of India's Monetary Policy Committee unanimously held the repo rate at 5.25% at its June 2026 meeting, maintaining a neutral stance after cumulative cuts of 100 basis points during FY25-26. RBI raised its FY27 inflation forecast to 5.1% — citing risks from a possible sub-normal monsoon, emerging El Niño conditions, and higher fuel prices — while liberalizing foreign portfolio investment norms to attract capital amid global uncertainty.

Corebridge Financial and Equitable Holdings have announced a merger valued at approximately $22 billion, combining two scaled retirement, life insurance, and wealth management platforms with roughly $1.5 trillion in assets under management and administration. Announced as part of a wave of insurance sector consolidation, it ranks among the largest strategic combinations in the US life and retirement sector in recent years, reflecting continued demand for reliable capital flows and scale.

Australia's landmark operational resilience standard, Prudential Standard CPS 230, takes full effect on July 1, 2026, including finalised amendments providing limited contractual exemptions for non-traditional service providers such as central banks and clearing facilities. Insurers, banks, and superannuation trustees face an immediate deadline to ensure their Material Service Provider registers and contractual arrangements comply with the framework designed to strengthen resilience against operational disruptions and cyber incidents.

The average US 30-year fixed mortgage rate stood at 6.49% as of June 25, according to Freddie Mac, edging up slightly from 6.47% the prior week and remaining stable over the past six weeks. While easing Middle East tensions provided some relief, the Federal Reserve's hawkish June projections and 4.2% inflation are keeping rates elevated, pressuring affordability even as refinance activity picks up among rate-responsive borrowers.

The Bank of Japan continues to navigate a challenging path between persistent oil-driven inflation and slowing growth, having raised rates toward 1% — the highest level since the mid-1990s — amid energy costs linked to the Middle East conflict. With core inflation forecast at 2.5–3.0% for fiscal 2026 and Japanese government bond yields at multi-decade highs, the central bank's tightening has significant implications for Japanese life insurers and global financial markets.

Progressive has surpassed State Farm to become the largest auto insurer in the United States, according to S&P Global Market Intelligence, with nearly 27 million personal auto policies in force. The shift comes as the US property-casualty industry posts a Q1 underwriting gain with net income doubling, though slowing premium growth and persistent litigation and catastrophe risks signal a market transitioning from a hard cycle toward softer conditions.

The ShinyHunters cyber campaign that struck more than 100 organizations worldwide by exploiting a single Oracle PeopleSoft zero-day vulnerability is testing the cyber insurance market's central challenge: systemic accumulation risk. With the global cyber insurance market estimated near $15.3 billion in 2025 and projected to grow at over 10% annually, the campaign illustrates how one software flaw can trigger correlated losses across many insureds simultaneously — the precise scenario regulators and reinsurers fear most.

North Carolina has become the first US state to pass an outright ban on third-party litigation financing, making it unlawful for outside investors to fund lawsuits in exchange for a share of any award. The move is significant for insurers, who have long argued that litigation funding fuels 'social inflation' and drives up claims costs — a trend the industry has increasingly cited as a key driver of rising premiums across casualty lines.

Germany's Federal Financial Supervisory Authority (BaFin) has issued a circular confirming the legal permissibility of ransom insurance under German supervisory law, consolidating previous regulatory requirements and providing clarity for insurers and policyholders. The move comes as cyber extortion campaigns proliferate globally and as BaFin separately flags systemic accumulation risk in the cyber insurance market, where it has introduced dedicated reporting obligations for the first time.

The United Kingdom experienced its hottest June day on record during the late-June European heatwave, with the UK Met Office issuing a rare extreme heat warning as temperatures approached 40°C. London Mayor Sadiq Khan's office warned that extreme heat is now 'a growing reality,' estimating that making the city's most vulnerable homes heat-resilient could cost up to £45 billion, highlighting a widening insurance and adaptation funding gap that will require private investment.

Insurtech company Lemonade has launched insurance for Tesla Full Self-Driving (FSD) vehicles in Colorado, leveraging direct access to manufacturer driving data to reshape how autonomous and semi-autonomous vehicles are priced. The move signals a broader transformation in auto insurance, where original equipment manufacturer (OEM) data access and AI-driven underwriting are increasingly determining premiums as vehicles become more automated.