The growing cybercrime incidents now cost the world economy more than $1 trillion, or just more than one percent of global GDP, which is up more than 50 percent from a 2018 report that put global losses at close to $600 billion, leading cybersecurity firm McAfee revealed on Monday.
Two-thirds of surveyed companies reported some kind of cyber incident in 2019 and the average cost was more than half a million dollars per incident.
IP theft and financial crime account for at least 75 percent of cyber losses and pose the greatest threat to companies, according to the report conducted in partnership with the Center for Strategic and International Studies (CSIS).
The report. titled ‘The Hidden Costs of Cybercrime,’ also explored the damage reported beyond financial losses, revealing that 92 percent of businesses felt there were other negative effects on their business beyond financial costs and lost work hours after a cyber incident.
“The severity and frequency of cyber attacks on businesses continue to rise as techniques evolve, new technologies broaden the threat surface, and the nature of work expands into the home and remote environments,” said Steve Grobman, SVP, and CTO at McAfee.
“We need a greater understanding of the comprehensive impact of cyber risk and effective plans in place to respond and prevent cyber incidents given the 100s of billions of dollars of global financial impact.”
Damage to companies also includes downtime, brand reputation, and reduced efficiency and 56 percent of surveyed organizations said they do not have a plan to both prevent and respond to a cyber-incident.
Out of the 951 organizations that actually had a response plan, only 32 percent said the plan was effective. The system downtime was a common experience for around two-thirds of respondents’ organizations.
The average cost to organizations from their longest amount of downtime in 2019 was $762,231, said the report based on interviews with 1,500 IT and business decision-makers online.
Thirty-three percent of survey respondents stated that IT security incidents resulting in system downtime cost them between $100,000 and $500,000.
“As a result of system downtime, organizations lost, on average, nine working hours a week leading to reduced efficiency. The average interruption to operations was 18 hours”.
According to the report, it took an average of 19 hours for most organizations to move from the discovery of an incident to remediation.
Nearly 26 percent of the respondents identified damage to the brand from the downtime experienced because of a cyber-attack, the McAfee report mentioned.