The SEC says inadequate security at three firms resulted in the information of customers being compromised through email account break-ins.
The Russian group REvil has offered to unscramble all computers affected by its massive hack in return for $70 million in cryptocurrency.
The cryptocurrency was used to pay the ransom in the attack on the Colonial Pipeline system.
The increase in cyber losses outstripped rate hikes last year, suggesting "more trouble for 2021 as ransom demands continue to grow."
The company expects to incur "significant legal and other professional services expenses" associated with the hack of its software in future quarters.
A report by CipherTrace finds that losses from cryptocurrency theft fell 57% in 2020.
The company says the hackers' malware attack enabled them to select more than 40 customers for "narrower and more focused" measures.
The hackers appear to have used a "supply-chain attack" to breach the computer systems of federal agencies including the Treasury and Commerce departments.
The hack of FireEye "demonstrates that even the most sophisticated companies are vulnerable to cyberattacks."
The attack on Universal Health Services left doctors and nurses scrambling to render care, with computers replaced by pen and paper.
“The United States government is starting to turn the tide on Chinese intrusion operations on Western companies and targets."
The attack exploited human vulnerabilities to gain access to its internal systems.
