Orgs Face Record $4.5M Per Data Breach Incident
Cl0p stands to make $100M on the MOVEit campaign, and according to a just-released survey, more than half of businesses are willing to pass data breach costs onto customers.
July 24, 2023
The average cost per data breach for business in 2023 jumped to $4.45 million, a 15% increase over three years. But instead of investing in cybersecurity, 57% of breached organizations told IBM they were inclined to just pass those costs onto consumers.
The final total for the year could be even higher: With organizations struggling to crack down on cybercrime, threat groups like Cl0p are cleaning up. Coveware has, for instance, released an analysis estimating the MOVEit breach, which has already claimed dozens of victims and counting, could earn Cl0p up to $100 million. Coveware anticipates the the Cl0p MOVEit campaign will effect up to 1,000 companies.
According to IBM's recent data breach cost report, there are three specific areas that organizations should address to help reduce the cost of the next breach:
First, artificial intelligence (AI) and automation reduces the data breach lifecycle on average from 322 days to 214;
Second, companies should bring in law enforcement. IBM's research found 37% of breached organizations refused to call in the cops, and it cost them an average of $470,000 in additional costs;
Third, investing in security teams so they are able to detect breaches early. The research added when cyberattackers disclose the breach first, those incidents cost an organization an average of $1 million more.
"As the report shows, early detection and fast response can significantly reduce the impact of a breach," Chris McCurdy, general manager, worldwide IBM Security Services said in a statement about the research. "Security teams must focus on where adversaries are the most successful and concentrate their efforts on stopping them before they achieve their goals. Investments in threat detection and response approaches that accelerate defenders speed and efficiency — such as AI and automation — are crucial to shifting this balance."
In the meantime, someone's picking up the tab for spiking cybercrime costs, and apparently in more than half of the cases, it's consumers.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024