Story image

Cybercrime could cost companies US$5.2tril over next five years – survey

21 Jan 2019

Companies globally could incur US$5.2 trillion in additional costs and lost revenue over the next five years due to cyber attacks, as dependency on complex internet-enabled business models outpaces the ability to introduce adequate safeguards that protect critical assets, according to a new report from Accenture.

Based on a survey of more than 1,700 CEOs and other C-suite executives around the globe, the report, Securing the Digital Economy: Reinventing the Internet for Trust, explores the complexities of the internet-related challenges facing business and outlines imperatives for the CEO’s evolving role in technology, business architecture and governance.

The report notes that cybercrime from a wide range of malicious activities poses significant challenges that can threaten business operations, innovation and growth, and the expansion into new products and services, ultimately costing companies trillions of dollars.

The high-tech industry faces the highest risk, with more than US$753 billion hanging in the balance, followed by the life sciences and automotive industries, with US$642 billion and US$505 billion at risk, respectively.

Accenture communications, media, and technology operating group lead Omar Abbosh “Internet security is lagging behind the sophistication of cyber criminals and is leading to an erosion of trust in the digital economy.”

“Strengthening internet security requires decisive — and, at times, unconventional — leadership by CEOs, not just CISOs. To become a cyber-resilient enterprise, companies need to start by bringing CISOs’ expertise to the board, ensuring security is built-in from the initial design stage and that all business managers are held responsible for security and data privacy.”

Among the key findings: Four in five respondents (79%) believe that the advancement of the digital economy will be severely hindered unless there is dramatic improvement to internet security, and more than half (59%) of respondents said the internet is getting increasingly unstable from a cybersecurity standpoint and they are unsure how to react.

At the same time, three-quarters (75%) of respondents believe that addressing cybersecurity challenges will require an organised group effort, as no single organisation can solve the challenge on its own.

With heightened concerns about internet security, more than half (56%) of executives would also welcome stricter business regulations imposed by a central organisation or governing body.

“The internet wasn’t built with today’s level of complexity and connectivity in mind, which is why it takes just one click — whether inside or outside the company walls — to fall prey to a devastating cyber attack,” says Accenture security senior managing director Kelly Bissell.

“No organisation can tackle the challenges posed by cyber threats on its own; it’s a global challenge that needs a global response, and collaboration is key.

“To shape a future that thrives on a strong and trustworthy digital economy, senior executives need to look beyond the bounds of their organisation, team with an ecosystem of partners, and secure their entire value chains — across every partner, supplier and customer.”

The rapid emergence of new technologies is creating additional challenges, as four in five respondents (79%) admit that their organisation is adopting new and emerging technologies faster than they can address related cybersecurity issues, with three-quarters (76%) noting that cybersecurity issues have escaped their control due to new technologies such as the internet of things (IoT) and the industrial internet of things (IIoT).

A majority (80%) also said protecting their companies from weaknesses in third parties is increasingly difficult, which isn’t surprising given the complexity of today’s sprawling internet ecosystems.

Also, consumer data protection is on the minds of many senior executives.

Fuelled by security concerns, 76% of respondents believe that consumers can’t trust the safety of their online identities when too much of their personal data is already available without restrictions.

Venafi and nCipher Security partner on machine identity protection
Cryptographic keys serve as machine identities and are the foundation of enterprise information technology systems.
Machine learning is a tool and the bad guys are using it
KPMG NZ’s CIO and ESET’s CTO spoke at a recent cybersecurity conference about how machine learning and data analytics are not to be feared, but used.
Seagate: Data trends, opportunities, and challenges at the edge
The development of edge technology and the rise of big data have brought many opportunities for data infrastructure companies to the fore.
Popular Android apps track users and violate Google's policies
Google has reportedly taken action against some of the violators.
How blockchain could help stop video piracy in its tracks
An Australian video tech firm has successfully tested a blockchain trial that could end up being a welcome relief for video creators and the fight against video piracy.
IBM X-Force Red & Qualys introduce automated patching
IBM X-Force Red and Qualys are declaring a war on unpatched systems, and they believe automation is the answer.
Micro Focus acquires Interset to improve predictive analytics
Interset utilises user and entity behavioural analytics (UEBA) and machine learning to give security professionals what they need to execute threat detection analysis.
Raising the stakes: McAfee’s predictions for cybersecurity
Security teams and solutions will have to contend with synergistic threats, increasingly backed by artificial intelligence to avoid detection.