Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Threat Intelligence

5/30/2017
12:20 PM
50%
50%

Cybercrime Costs to Reach $8 Trillion by 2022

Some 2.8 billion data records expected to be breached in 2017, according to a report released today by Juniper Research.

Cybercrime costs are expected to saddle businesses with a whopping $8 trillion price tag over the next five years, as connectivity to the Internet rises but security system upgrades don't keep pace, according to a Juniper Research report released today.

In this year alone, 2.8 billion data records held by business customers are expected to be breached, according to the report, The Future of Cybercrime & Security: Enterprise Threats & Mitigation 2017-2022. And in the next five years, that figure is anticipated to balloon to 5 billion breached records.

Small-and mid-size businesses (SMBs) are expected to face the brunt of the attacks, given these organizations shelled out an average of under $4,000 a year in 2017 on cybersecurity efforts. The amount they spend is not expected to substantially increase over the next five years, despite rising threats and the fact that a number of small businesses run older software.

Running older software that has not been patched is just one problem that SMBs face. Another growing problem is the greater availability of easy to use ransomware toolkits that requires little to no programming skills on part of the cyberattacker, according to the report.

Read the Juniper Research report here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Gavinkeats
50%
50%
Gavinkeats,
User Rank: Apprentice
6/2/2017 | 7:24:54 PM
Apple Mac issues?
Your article does not specify operating systems, a search in the article for iOS appears to be a limited threat. Is that correct?
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
5/31/2017 | 10:54:08 AM
Actively Patch
Like many security training programs attest to, actively patching can remediate a very large percentage of risk at your organization. Unfortunately, there are many cases where active patching is not a reality due to fear of breaking business facing apps. This in and of itself has inherent risks as denoted by the article.
Edge-DRsplash-10-edge-articles
7 Old IT Things Every New InfoSec Pro Should Know
Joan Goodchild, Staff Editor,  4/20/2021
News
Cloud-Native Businesses Struggle With Security
Robert Lemos, Contributing Writer,  5/6/2021
Commentary
Defending Against Web Scraping Attacks
Rob Simon, Principal Security Consultant at TrustedSec,  5/7/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: What Virtual Reality phishing attacks will look like in 2030.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21652
PUBLISHED: 2021-05-11
A cross-site request forgery (CSRF) vulnerability in Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVE-2021-21653
PUBLISHED: 2021-05-11
Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier does not perform a permission check in an HTTP endpoint, allowing with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
CVE-2021-21654
PUBLISHED: 2021-05-11
Jenkins P4 Plugin 1.11.4 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified Perforce server using attacker-specified username and password.
CVE-2021-21655
PUBLISHED: 2021-05-11
A cross-site request forgery (CSRF) vulnerability in Jenkins P4 Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified Perforce server using attacker-specified username and password.
CVE-2021-21656
PUBLISHED: 2021-05-11
Jenkins Xcode integration Plugin 2.0.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.