Newsletters
The Enterprise Security Supersite NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home Network Security Viruses & Malware Cybercrime Security Solutions More Topics...
Eliminate costly downtime!
Find out how with Free White Paper
& enter to win a Samsung Galaxy Note

www.apc.com
Big Data
Next Generation Data Center Is Here!
Average Rating:
Rate this article:  
Cost of Data Breaches Falls 24%, Study Finds
Cost of Data Breaches Falls 24%, Study Finds

By Barry Levine
March 20, 2012 1:46PM

Bookmark and Share
This seventh annual Ponemon Cost of Data Breach Study is based on actual data breach cases from 49 U.S. companies, representing 14 industries. The average per capita cost of a data breach is now $194, down from the last report's $214. Organizationally, costs for a data breach have declined from an average of $7.2 million to $5.5 million.
 


The average organizational cost for data breaches dropped 24 percent from 2010 to 2011, according to a new study by security firm Symantec and the Ponemon Institute, a research organization. The cost of data breaches declined because companies are getting better at managing the costs, such as detection and escalation.

Although notification costs have increased, customer loss following a breach has lessened, as customers are apparently getting used to data loss incidents. Additionally, more data loss prevention technologies are being employed and fewer records are being lost in individual breaches.

'Anywhere at Any Time'

The average per capita cost of a data breach is now $194, down from the last report's $214. Organizationally, costs for a data breach have declined from an average of $7.2 million to $5.5 million.

Other costs in a data breach include outside forensic experts, outsourcing hotline support, and providing free credit monitoring subscriptions or discounts for future products and services, to retain customer loyalty following a breach. There are also indirect costs, such as in-house investigations and communication.

These average costs did not include data from catastrophic breaches involving more than 100,000 records, since they are not typical in the U.S. The report looked at incidents ranging from 4,500 records to about 98,000 records, with the average being 28,349.

This seventh annual Ponemon Cost of Data Breach Study is based on actual data breach cases from 49 U.S. companies, representing 14 industries.

Malicious attacks are about 25 percent more costly than other kinds, but, the study said, organizations with a chief information security officer, or CISO, can reduce the cost of a data breach. A CISO with responsibility for enterprise data protection can help to reduce the average cost of a data breach by as much as $80 per record.

CISO 'Makes Sense'

Larry Ponemon, chairman and founder of the Ponemon Institute, told news media that this correlation between having a CISO and reducing data breach costs was "one of the most interesting findings" in the new report. He noted that it "makes sense that having the proper security leadership in place can help address these challenges."

Aside from employing a CISO, Symantec recommends that best practices should include educating employees on policy and holding them accountable, encrypting laptops, implementing two-factor authentication, and using an integrated security solution that includes proactive threat protection, firewalls and intrusion protection.

While malicious attacks cost the most, negligence is seen as the root cause of data breaches by 39 percent of the organizations surveyed. Malicious attacks are now more than a third of the total reported.

Francis deSouza, group president for Enterprise Products and Services at Symantec, said in a statement that the threat from insiders is heightened by the increasing use of mobile devices, which allow employees "access to corporate information anywhere, at any time."

The Ponemon Institute conducts independent research, educational efforts, and the verification of data protection and privacy practices to advance "responsible information and privacy management practices in business and government."
 

Tell Us What You Think
Comment:

Name:



APC has an established a reputation for solid products that virtually pay for themselves upon installation. Who has time to spend worrying about system downtime? APC makes it easy for you to focus on business growth instead of business downtime with reliable data center systems and IT solutions. Learn more here.


 Big Data
1.   SAP Taps Apigee for API Management
2.   Many Sites Are Studying Consumers
3.   Cloud Wars: AWS vs. Microsoft, IBM
4.   Watson's First Consumer-Facing Gig
5.   HP Drops $50M on Hortonworks


advertisement
Many Sites Are Studying Consumers
Facebook and OKCupid are not alone.
Average Rating:
Comcast Customer Service Fiasco
Lessons to be learned for all companies.
Average Rating:
Apple, IBM Team on Mobile Biz Apps
A match made in technology heaven.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Cybercrime | Security Solutions | Mobile Security | Disaster Recovery | Windows Security
Data Security | EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.