Cloud

1/22/2018
04:05 PM
50%
50%

Most Companies Suffer Reputation Damage After Security Incidents

New Kroll Annual Global Fraud & Risk Report says 86% of companies worldwide experienced security incidents and information theft and loss in the past twelve months.

Seventy percent of organizations worldwide suffered at least one security incident during the past year - up from 68% in the previous year, a new study by Kroll found.

Meanwhile, security incidents and information theft and loss hit some 86% of companies in the past twelve months. The new 2017/18 Kroll Annual Global Fraud & Risk Report also shows that physical theft or loss of intellectual property most commonly occured these security incidents, at 41%.

"People instinctively think about data being targeted by cyber attacks, but not all threats to information are confined to the digital realm. There is a convergence between physical and digital threats, with issues arising from equipment with sensitive data being stolen or lost, for example, or employees with access to highly sensitive information accidentally or intentionally causing a breach," said Jason Smolanoff, senior managing director and global cyber security practice leader for Kroll.

Nearly two-thirds of companies said incidents due to fraud (65%), cyber (67%), or security (66%) incidents had damaged their reputations. Some 23% say their company suffered losses of 7% or more in revenues.

Read the full report here

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
1/23/2018 | 1:04:58 PM
Re: Please correct the link to the report
Thanks, Jason. The link has been fixed. 
JasonofB
50%
50%
JasonofB,
User Rank: Apprentice
1/23/2018 | 11:44:41 AM
Please correct the link to the report
It points to the C drive of the author.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
1/23/2018 | 8:24:57 AM
7% is tough but...
7% loss is a rough hit to take financially however brand reputation is monumental amongst many industries and can cripple your business. Just look at Arthur Andersen, the firm that was in charge of Enron auditing. Based on negative brand reputation due to unethical practices there big 5 firm was driven to extinction.
Google Engineering Lead on Lessons Learned From Chrome's HTTPS Push
Kelly Sheridan, Staff Editor, Dark Reading,  8/8/2018
Election Websites, Backend Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-10510
PUBLISHED: 2018-08-15
A Directory Traversal Remote Code Execution vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to execute arbitrary code on vulnerable installations.
CVE-2018-10511
PUBLISHED: 2018-08-15
A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to conduct a server-side request forgery (SSRF) attack on vulnerable installations.
CVE-2018-10512
PUBLISHED: 2018-08-15
A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to manipulate a reverse proxy .dll on vulnerable installations, which may lead to a denial of server (DoS).
CVE-2018-8753
PUBLISHED: 2018-08-15
The IKEv1 implementation in Clavister cOS Core before 11.00.11, 11.20.xx before 11.20.06, and 12.00.xx before 12.00.09 allows remote attackers to decrypt RSA-encrypted nonces by leveraging a Bleichenbacher attack.
CVE-2018-9129
PUBLISHED: 2018-08-15
ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.