The insurer won’t pay for ‘acts of cyber-war’ or nation-state retaliation attacks.
https://threatpost.com/lloyds-cyber-insurance-exclusions/176669/
In the latest software supply-chain attack, the code maintainer added malicious code to the hugely popular node-ipc library to replace files with a heart emoji and a peacenotwar module.
https://threatpost.com/dev-sabotages-popular-npm-package-protest-russian-invasion/178972/