Hi All, Web attacks, malware and insider threats can cost organizations millions of dollars in losses each year, according to a Ponemon Institute
The survey of 45 U.S. organizations, sponsored by security and compliance solutions provider ArcSight, found that cybercrime costs organizations $3.8 million per year on average. IT security practitioners in thier study,they found that the cost of cybercrime ranged from $1 million to $52 million per year per company. “Basically, the No. 1 takeaway is that cybercrime is very costly,” Ponemon said. The analysis attempted to capture the direct and indirect costs of cybercrime, including information theft or loss, business disruption and property destruction – all of which constitute “external” costs. In addition, the cost of “internal” cybercrime mitigation activities, including detection, investigation, containment, recovery and post-incident response, were quantified. Cybercrime detection and recovery were the most costly internal activities, while information loss was the most expensive external cost,Companies included in the study fell victim to 50 attacks per week, or the equivalent of more than one successful attack per company each week. More than 90 percent of all cybercrime costs resulted from web-based attacks, malicious code and malicious insiders. Organizations that were analyzed took 14 days on average to resolve cyberattacks, with the average cost per day totaling $17,696, according to the study. Malicious insider attacks, however, took up to 42 days or more to resolve. “Every organization should be concerned about cyberattacks and how much it will cost to manage and contain them,” Tom Reilly, president and CEO of ArcSight, said in a statement. Appointing a CISO, deploying an enterprise security strategy, and investing in technologies that address sophisticated threats and manage security events could reduce the impact and cost of cyberattack, Ponemon said -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
