Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Cyber security incident reports increased 48% this year

Reprints
Cyber security incident reports increased 48% this year

The number of cyber security incidents has increased 48% this year, to 42.8 million, or the equivalent of 177,339 incoming attackers per day, according to a PricewaterhouseCoopers L.L.P. survey released Tuesday.

The survey of 9,700 officials around the globe, conducted via e-mail between March 27 and May 25, found also that the compound annual growth rate of detected security incidents has increased 66% year-over-year since 2009. The survey was conducted by New York-based PwC US in conjunction with CIO and CSO magazines, whose clients and readers were surveyed.

“These numbers are by no means definitive, however,” says the survey report. They “represent only the total incidents detected and reported.” Many organizations are either unaware of attacks, or do not report them, states the report, “Managing cyber risks in an interconnected world, key findings from The Global State of Information Security Survey 2015.”

The survey found that organizations with gross annual revenues of at least $1 billion detected 44% more incidents than last year, while companies with revenues of less than $100 million detected 5% fewer incidents this year

“The reasons are not immediately clear, but one explanation may be that small companies are investing less in information security, which may leave them both incapable of detecting incidents, and a more tempting target to cyber adversaries,” says the report.

Globally, the annual estimated reported average financial loss attributed to cybersecurity incidents was $2.7 million, an increase of 34% over 2013, according to the report.

The survey also found that despite the overall increase in cyber incidents, security spending decreased 4% compared with 2013, and has remained at 4% or less of the information technology budget for the past five years.

“Cyber risks will never be completely eliminated, and with the rising tide of cybercrime, organizations must remain vigilant and agile in the face of a constantly evolving landscape,” said David Burg, McLean, Virginia-based PwC's global and U.S. advisory cybersecurity leader, in a statement.

“Organizations must shift from security that focuses on prevention and controls, to a risk-based approach that prioritizes an organization's most valuable assets and its most relevant threats. Investing in robust internal security awareness policies and processes will be critical to the ongoing success of any organization,” he said.

Read Next