Story image

Malware and malicious insiders account for a third cybercrime costs

01 Apr 2019

The cost to global companies from malware and “malicious insider” related cyber attacks jumped 12 per cent in 2018 and accounted for one-third of all cyberattack costs, according to new research published today by Accenture and the Ponemon Institute.

Based on interviews with more than 2,600 security and information technology (IT) professionals at 355 organisations worldwide, Accenture’s 2019 "Cost of Cybercrime Study" found that the cost to companies due to malware increased 11 per cent, to more than US$2.6 million (NZ$3.76 million) per company, on average, and the cost due to malicious insiders, defined as employees, temporary staff, contractors and business partners, jumped 15 per cent, to US$1.6m  (NZ$2.3m) per organisation, on average.

Together these two types of cyber attacks accounted for one-third of the total US$13.0m (NZ$18.8m) cost to companies, on average, from cybercrime in 2018, an increase of US$1.3m (NZ$1.8m) in the past year. Similarly, the cost to companies from phishing and from social engineering increased to US$1.4 million (NZ$2m) per organisation, on average.

The study calculated cybercrime costs as what an organisation spends to discover, investigate, contain and recover from cyber attacks over a four-consecutive-week period, as well as expenditures that result in after-the-fact activities — i.e., incident-response activities designed to prevent similar attacks — and efforts to reduce business disruption and the loss of customers.

Accenture New Zealand MD Justin Gray says, “In New Zealand, we are facing similar issues to our global counterparts. From people to data to technologies, every aspect of a business invites risk and too often security teams are not closely involved with securing new innovations.

“Security is everyone’s responsibility and it’s time for a more holistic and preventative approach to cyber risk management, especially as the way we live, work and play become increasingly digitised. By understanding where they can gain value in their cybersecurity efforts, leaders in New Zealand can minimise the consequences, and even prevent, future attacks.”

Tech Data to distribute Nutanix backup solution in A/NZ
Tech Data will distribute HYCU Data Protection for Nutanix backup and recovery software to their network of partners across Australia and New Zealand.
Veeam releases v3 of its MS Office backup solution
One of Veeam’s most popular solutions, Backup for Office 365, has been upgraded again with greater speed, security and analytics.
Too many 'critical' vulnerabilities to patch? Tenable opts for a different approach
Tenable is hedging all of its security bets on the power of predictive, as the company announced general available of its Predictive Prioritisation solution within Tenable.io.
Safety solutions startup wins ‘radical generosity’ funding
Guardian Angel Security was one of five New Zealand businesses selected by 500 women (SheEO Activators) who contributed $1100 each.
Industrial control component vulnerabilities up 30%
Positive Technologies says exploitation of these vulnerabilities could disturb operations by disrupting command transfer between components.
McAfee announces Google Cloud Platform support
McAfee MVISION Cloud now integrates with GCP Cloud SCC to help security professionals gain visibility and control over their cloud resources.
Why AI and behaviour analytics should be essential to enterprises
Cyber threats continue to increase in number and severity, prompting cybersecurity experts to seek new ways to stop malicious actors.
Scammers targeting more countries in sextortion scam - ESET
The attacker in the email claims they have hacked the intended victim's device, and have recorded the person while watching pornographic content.