Home : Security : News

Security breaches cost $1 trillion last year

The global economic downturn could put sensitive information at even more risk, according to a McAfee survey.

By Miya Knights, 29 Jan 2009 at 12:06

The global economic turmoil is putting vital information at greater risk than ever before, according to the findings of a new study published today.

Nearly two out of five (39 per cent) surveyed for the McAfee study, 'Unsecured Economies: Protecting Vital Information', believed sensitive data and intellectual property (IP) is more vulnerable in the current economic climate than before.

Researchers from Purdue University’s Centre for Education and Research in Information Assurance and Security examined responses from more than 800 chief information officers (CIOs) around the world, with the results released today at the World Economic Forum in Davos.

The researchers found that the heightened awareness of IP and data security had come at a cost. The average company had $12 million (£8.5 million) worth of sensitive information residing abroad, while respondents reported average IP losses worth $4.6 million (£3.25 million) in 2008.

Greg Day, security analyst at McAfee, said: “Most analyst research puts information security in the top three of most companies’ agendas for this coming year... They are realising the importance of security to information economies.”

McAfee projected that companies worldwide lost more than $1 trillion (£708 billion) last year, based on the total combined IP losses in 2008 and an additional $600 million (£454.5 million) the study found had been spent repairing data breach damage.

The UK reported some of the lowest losses of $375,000 (£265,336) and lowest levels of investment, “but then it is a mature country when it comes to information economies,” added Day.

Overall, the study found developing countries were more motivated to invest in protecting their IP than their Western counterparts. But then these countries were also the ones that reported the highest instance of data breaches, as China came out top with losses of $7.2 million (£5.1 million).

So much so, 26 per cent of respondents purposely avoided storing their IP in China.

“On one hand it’s a matter of the perception of which countries have more cybercrime than others, but on the other it’s about the how well they deal with security incidents and balancing the risks between the two,” Day said.

Another key finding was that 42 per cent said laid-off employees were the biggest security threat caused by the economic downturn, followed by external data thrives at 39 per cent. The rest were also worried that existing staff would view corporate data theft as a lucrative enough risk to take in tough times.

Email to a friend

Print this page

< Previous Security : News Next >

1 comments

You need to Login or Register to comment.

Protect Yourself Now, Breaches to Get Worse

Price Waterhouse Cooper and Carnegie-Mellon’s CyLab have recent surveys that show the senior executive class to be, basically, clueless regarding IT risk and its tie to overall enterprise (business) risk. Data breaches and thefts are due to a lagging business culture – absent new eCulture, breaches will, and continue to, increase. For example: Microsoft patched for the worm affecting Heartland 4 months ago. As CIO, I’m constantly seeking things that work, in hopes that good ideas make their way back to me - check your local library: A book that is required reading is "I.T. WARS: Managing the Business-Technology Weave in the New Millennium." It also helps outside agencies understand your values and practices. The author, David Scott, has an interview that is a great exposure: http://businessforum.com/DScott_02.html - The book came to us as a tip from an intern who attended a course at University of Wisconsin, where the book is an MBA text. It has helped us to understand that, while various systems of security are important, no system can overcome laxity, ignorance, or deliberate intent to harm. Necessary is a sustained culture and awareness; an efficient prism through which every activity is viewed from a security perspective prior to action. In the realm of risk, unmanaged possibilities become probabilities – too many companies are "secure" insofar as they haven't been targeted yet, or suffered a human error resulting in a catastrophic exposure. Read the book BEFORE you suffer a bad outcome – or propagate one.

By Ip_johnfranks999 on Thursday Jan 29

Latest Security Analysis & Insight

Striving to solve the security skills crisis

The Cyber Security Challenge is doing a fine job, but flat registration growth and weak Government funding are cause for concern, Tom Brewster discovers.

More Security Analysis & Insight

Latest Security Reviews

Check Point 2210 Appliance review

Rating:

Check Point's new 2200 Appliances combined enterprise level network security with an SMB price tag. Its software blades provide a wealth of features, but do they complicate deployment? Read this exclusive review to find out.