Insurers crave data to better write cyber risk policies and understand their risk accumulation, but getting hold of it is a tough assignment. Cintia Cheong reports