But what are the true stats and trends behind these breaches, what are the types of vulnerabilities these companies are leaving exposed, and what is the true cost to companies?
A historical look at the most infamous breaches over the last decade below shows the number of compromised data records of customers from some of the top organizations, proving that no one is immune from being breached, and cybersecurity is a very important and needed strategy as part of a company's day to day operations.
Data Source: Statista 2018
Below you can see a breakdown of breaches by industry. It’s no surprise that Business and Healthcare been the most impacted areas, and have only seen incidences increase over the last four years.
Source: Identity Theft Resource Center; CyberScout (via Statista 2018)
Additional Information: United States; Identity Theft Resource Center; CyberScout; 2014 to 2018 H1
As a CISO, what should you be most worried about?
Over the last 13 years, the cost of data breaches to a business in the United States has hit just over $80 million. On average, breaches cost companies $6.2 million, with it peaking in 2018 at almost $8 million.
Source: Ponemon Institute; IBM; Digital Commerce 360 (via Statista 2018)
Additional Information: United States; Ponemon Institute; IBM; 2016 to 2018
The most common type of breach reported in 2017 was data theft, in which hackers would steal credentials for access to databases.
Source: Verizon (via Statista 2018)
Additional Information: Worldwide; Verizon; 2017; 1,799 respondents; confirmed data breaches
What should companies do?
It has to start at the top. CISOs need to adopt a better mindset and culture around investing time, effort and resources to really push the importance of cybersecurity within their companies. This includes how they handle incoming help from outside sources who disclose vulnerabilities.
We still believe there are more good folks out there than bad folks, so we look forward to discovering and being inspired by all the innovations coming our way in the world of cybersecurity!
Neda Blocho Head of Marketing and Growth, Tinfoil Security.
Who We Are
Tinfoil Security has a founding team of MIT and intelligence community alumni, with extensive backgrounds in security across many organizations around the globe. We focus on serving enterprise and government customers, including many of those in the Fortune 500. Our team members are highly regarded thought leaders in the cybersecurity community, having competed internationally in Capture The Flag (CTF) competitions, serving as technical liaisons for the media, speaking at numerous conferences, and through involvement in leadership and advocacy groups.
Tinfoil Security brings much-needed tools that require no additional burden or platforms to learn. Our effortless SaaS cybersecurity solutions protect the hard work of your DevOps teams. We have focused on creating the most comprehensive, transparent, and usable security products on the market. By focusing on developers, our products have streamlined the security process to provide the first line of security tools that easily integrate into any DevOps and SDLC development processes.