In a recent industry analysis, it was revealed that organizations grappling with a data breach face an average financial impact close to $5 million—marking a 10% rise from the previous year. This insight comes from a comprehensive cybersecurity report.
A collaboration between a major technology corporation and a research institute surveyed 604 organizations that experienced data breaches from March 2023 to February 2024. These incidents spanned 17 sectors and 16 geographical regions, with the number of compromised records ranging from 2,100 to 113,000. The study included interviews with over 3,500 security professionals and executives who dealt with these breaches.
The report highlighted a significant increase in the average global cost of a data breach, now at $4.88 million, the most substantial rise observed since the pandemic period. The previous year’s figure was $4.45 million.
The study found that more than half of the affected organizations are transferring the heightened costs of breaches to consumers by raising the prices of their products and services.
A security executive commented on the recurring pattern of breaches and the subsequent responses, which now frequently involve bolstering security measures and transferring the financial burden to customers, thus integrating security as a fundamental business expense.
The $4.88 million cost is attributed to four key activities: detecting the breach, notifying those affected, managing the aftermath, and the business lost due to the incident. This includes expenses for forensic services, customer support, and complimentary credit monitoring, alongside indirect costs like internal investigations and customer attrition.
The study also noted increases in costs related to operational interruptions, customer turnover, customer service staffing, and regulatory penalties. The combined costs of lost business and post-breach response reached $2.8 million, the highest in six years.
Personal customer data, such as tax IDs, email addresses, and physical addresses, were involved in over 45% of the breaches, while intellectual property was compromised in 43% of cases.
The analysis also covered ransomware-related breaches, noting that incidents involving law enforcement resulted in cost savings of $1 million, not accounting for any ransom payments. A majority of the affected organizations engaged law enforcement and refrained from paying the ransom, which also reduced breach identification and containment time by 16 days.
The healthcare sector continues to bear the highest average breach costs at $9.77 million, a trend that has persisted since 2011. The industrial sector saw the most significant cost increase per breach, with an average rise of $830,000 over the past year. This sector, encompassing chemical, engineering, and manufacturing firms, is heavily regulated and particularly sensitive to operational downtime.
In the global context, the U.S. remains the most expensive country for breach costs for the 14th consecutive year, averaging $9.36 million. While Canada and Japan reported decreases in average breach costs, Italy and Middle Eastern countries observed notable increases.
Phishing attacks and compromised credentials were identified as the primary sources of breaches, with costs averaging $4.88 million and $4.81 million respectively.
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
Wow! That’s a boatload of money they are able to steal. Scary but glad to know about it.