The earliest days of cyber breach insurance covering unauthorized network access, data loss, and malware-related claims began in earnest in the early 2000s – especially following the 2003 California Security Breach and Information Act, which mandated notification to any resident whose unencrypted personal information had been accessed or acquired by an unauthorized person.