The Claim Carriers Aren't Making (But the Data Suggests)
The standard pitch on Midwest manufacturing is wrong in a useful way. National cyber premiums are actually falling, manufacturing is the single highest-claims sector globally, and yet Midwest manufacturers remain systematically underrepresented in reported loss data compared to coastal states. That gap is real, it's citable, and it's your opening to negotiate better terms for a client segment most brokers are pricing too conservatively.
First, Correct the Premium Narrative
"Increasing national cyber premiums" is already outdated. Marsh reports U.S. cyber rates declined an average of 5% in Q4 2024, the first quarterly drop after seven years of increases. Zoom out and it's the same picture: U.S. cyber direct written premium dropped from $9.84B in 2023 to $9.14B in 2024, a 7% market-wide decline, the first ever recorded. The American Academy of Actuaries notes that after high double-digit rate increases from mid-2020 through 2022, global cyber rates have moved to single-digit negatives in 2023 and 2024. If you're still quoting clients as if rates are climbing, you're walking into renewal conversations with the wrong posture.
The Manufacturing Problem You Can't Ignore
Here's where the argument gets harder. Allianz reports manufacturing accounted for 33% of cyber insurance claims globally in 2024, the largest share of any industry, driven by a 71% increase in attacks against the sector. Ransomware is the core problem. Allianz puts ransomware at 60% of the value of large cyber claims over €1M. Coalition identifies OT/IT convergence as the primary structural risk driver in manufacturing submissions.
So the sector-level case for lower premiums doesn't hold on its own. Manufacturing is genuinely high-risk. The argument has to be built on geography and controls, not on industry sentiment.
Where the Midwest Data Actually Helps You
The FBI IC3 2023 Internet Crime Report shows Illinois with $521M in reported cybercrime losses, Ohio at $356M, and Michigan at $333M. Those sound large until you set them next to California's $2.19B and Florida's $875M. The Midwest's three biggest states combined don't reach California alone. That's a material geographic concentration story, and it's the kind of loss-distribution data underwriters actually look at when setting regional rates.
Illinois is also worth flagging for a different reason. NAIC data shows Illinois at 15.63% of U.S. cyber DWP in 2024, second only to California at 17.69%. That's a mature, active market, which means carriers competing for Midwest business, not avoiding it.
One honest caveat: the IC3 data is by victim location and doesn't isolate manufacturing. The NAIC figures are by insurer domicile, not insured location. There's no published table breaking out Midwest manufacturing breach rates versus the national average. That gap is load-bearing. The geographic loss disparity is real, but you're extrapolating when you apply it specifically to a manufacturing client. State your case, but don't overstate the data.
What to Actually Do With This
Pull your client's IC3 state data and put it in front of the underwriter. Illinois, Ohio, and Michigan all report losses well below California and Florida on a per-state basis. Pair it with documented controls. Specifically: segmentation between OT and IT environments and documented MFA on remote access. Those are the two controls underwriters are explicitly asking about in manufacturing submissions, and they matter more than the geographic argument alone given Allianz's numbers on claim frequency.
Public disclosure records across Ohio, Michigan, and Illinois point the same direction for manufacturing. Carriers doing their own diligence will find the same sources. Better that you walked in with them first.
The rate environment is already moving in your favor. The work is building a file that justifies why this manufacturer, in this state, deserves better than the sector average.