Targeted attacks cost companies an average of $200k

Share this article:

The result of not bulking up information security efforts could cost companies more than $200,000, a study reveals.

Independently conducted by the Ponemon Institute, the "Impact of Cybercrime on Businesses" survey states that targeted attacks cost enterprises an average of $214,000. The expenses are associated with “forensic investigation, investments in technology and brand recovery costs.”

The report polled 2,618 C-level executive and IT security personnel from the United States, United Kingdom, Germany, Hong Kong and Brazil. Its purpose was to identify commonalities among the countries relating to security.

While the average cost of one successful attack for U.S. companies has an extrapolated value of $276,671, Germany came in with the highest estimated cost for an average cyber attack at $298,359, the study found.

Even as hacktivism continues to make headlines, Scott Emo, head of endpoint product marketing at Check Point Software Technologies, which commissioned the survey, said the findings still indicate it is all about financial gain for saboteurs.

“The main motivation for cyber crime is still good old-fashioned thievery.”

– Scott Emo, head of endpoint product marketing at Check Point

According to 65 percent of respondents, financial fraud is believed to be the primary motive for targeted threats, followed by customer data theft and disruption of business operations, which could lead to monetary gain for the attackers.

“The main motivation for cyber crime is still good old-fashioned thievery,” Emo said on a phone call Friday with SCMagazine.com. “They're after the money.”

Additionally, the report stated that a majority of companies are concerned with the use of personal mobile devices in the workplace , including smartphones and tablets. Each country involved in the survey revealed bring-your-own-device to be the most worrisome threat vector.

Although the security landscape is continuously evolving, 64 percent of respondents said their companies currently have training and awareness programs in place to aid in preventing attacks. The level of concern expressed by C-level executives have caused companies to implement security precautions and technology to diminish risks associated with targeted attacks, Larry Ponemon, chairman and founder of the Ponemon Institute, said in a statement released by Check Point.

“While the types of threats and level of concern companies have may vary across regions, the good news is that security awareness is rising,” Ponemon said.

Of the security participants surveyed, various industries were represented, but financial services, retail, health and pharmaceuticals, and the public sector contributed half of the results.
Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, ...

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.

Data on 97K Bugzilla users posted online for about three months

During a migration of the testing server for test builds of Bugzilla software, data on about 97,000 Bugzilla users was inadvertently posted publicly online.

Chinese national had access to data on 5M Arizona drivers, possible breach ...

Although Lizhong Fan left the U.S. in 2007, the agencies responsible for giving him access to Americans' personal information have yet to disclose the details of the case to the public.