What expense is typically NOT included under extra expenses due to a cyber incident?

Upgrading computer systems is typically not categorized as an extra expense directly related to a cyber incident. Extra expenses in this context are typically associated with the immediate costs incurred to minimize the impact of a cyber event or to restore operations to normalcy.

Crisis management expenses, costs of data restoration, and security breach investigation expenses are directly tied to responding to and mitigating the effects of a cyber incident. These costs are specifically associated with actions taken to manage the fallout from the breach, repairing damage, and protecting the organization from further harm.

In contrast, upgrading computer systems often falls under routine operational improvements or preventative measures that are not immediate responses to a cyber incident. While such upgrades may be a part of a broader cybersecurity strategy, they are not typically classified as extra expenses arising directly from an incident itself.