Cybercrime Costs for Financial Sector up 40% Since 2014
A 9.6% increase just in the past year, and denial-of-service attacks are partly to blame.
Financial services companies spend more on cyber incident response, on average, than any other industry, and the amount they spend per incident has swelled by 40% over the past three years, according to a new study.
The Cost of Cybercrime Study, released Tuesday by Accenture and the Ponemon Institute, focuses on direct costs of incident response, not long-term remediation. According to the report, the finance sector's average per incident cost increased from $12.97 million in 2014 to $18.28 million in 2017; well above the 2017 average of all other industries at $11.7 million.
Nevertheless, the financial services industry continues to lead the way when it comes to their cybersecurity programs.
"While the cost of cybercrime for financial services companies continues to rise, our research found that these companies have considerably more balanced and appropriate spending levels on key security technologies to combat sophisticated attacks than do those in other industries," Chris Thompson, a senior managing director at Accenture, said in a statement. "This is particularly true with regard to the use of automation, artificial intelligence and machine-learning technologies, which could be critical to future cybersecurity efforts."
In fact, the types of attacks that caused the financial services industry the most trouble were those that are as yet difficult to solve with technology, or have recently made advances in sophistication. While malware attacks were among the least costly for financial services at $5.46 million per incident on average, malicious insiders cost $169 million, phishing/social engineering cost $196.6 million, and denial-of-service attacks $227.7 million.
For more information, see here.
Read more about:
2018About the Author(s)
You May Also Like
Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024Extending Access Management: Securing Access for all Identities, Devices, and Applications
June 4, 2024Assessing Software Supply Chain Risk
June 6, 2024Preventing Attackers From Wandering Through Your Enterprise Infrastructure
June 19, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024