The cost of malware and malicious insider cyberattacks grew 12% in 2018 compared to the previous year, according to a report by Accenture and the Ponemon Institute. The two types of exploits now constitute one-third of company cybersecurity costs, the “Cost of Cybercrime Study” says.

The report found that malware and malicious insider attacks jumped 11% and 15%, respectively. The former now costs U.S. companies an average of $2.6 million annually and the latter $1.6 million. The combined totals equate to one-third of the $13 million average cybersecurity costs to companies, which is $1.3 million more than in 2017. The cost of phishing and social engineering attacks increased to $1.4 million on average.

The report was based on input from more than 2,600 security and IT professionals at 355 organizations around the world. Other findings include:

  • In 2018, surveyed companies each recorded an average of 145 cyberattacks — resulting in the infiltration of a company’s core networks or enterprise systems — an 11 percent increase over 2017 and 67 percent higher than five years ago.
  • Malware is the most expensive type of attack, costing companies US$2.6 million, on average, followed by web-based attacks, at US$2.3 million.
  • The number of organizations experiencing ransomware attacks increased by 15 percent in 2018, with the costs increasing 21 percent, to approximately US$650,000 per company, on average. The number of ransomware attacks more than tripled in the past two years.
  • Six in seven companies (85 percent) experienced phishing and social engineering cyberattacks in 2018 — a 16 percent increase over 2017 — and three-quarters (76 percent) suffered web-based attacks.
  • Automation, orchestration and machine-learning technologies were deployed by only 28 percent of organizations — the lowest of the technologies surveyed — yet provided the second-highest cost savings for security technologies overall, at US$2.9 million.

Security threats indeed are growing. In December, Nokia’s Threat Intelligence Report 2019 said that IoT botnet activity accounted for 78% of malware detection in events for CSPs in 2018, a huge increase from the 33% figure in 2016.

Join the Conversation

Leave a Reply

Your email address will not be published. Required fields are marked *

Don’t Miss Any of Our Content

What’s happening with broadband and why is it important? Find out by subscribing to Telecompetitor’s newsletter today.

You have Successfully Subscribed!