There can be some different solutions:
1) we can use some KYC service to stop insurance spam
2) we can restrict max insured balance to minimise a potential damage if some of the policies are an abuse
3) we can stop to issue insurance policies after the first minimal signal about hack is received
4) we can discuss with the community another ways to solve this problem

any suggestions?