Cybercrime is more costly than most organizations realize, and those costs are continuing to rise. The cost per victim has increased 50 percent, and the total cost of cybercrime is a staggering $113 billion—with a “B.” One way to avoid becoming a victim of cybercrime is to make sure users are trained to recognize potential threats.
A cybercrime attack impacts a company in three ways. There is the cost of the attack itself, including any money or data that is stolen, as well as the cost of eradicating the threat and cleaning up after the incident is discovered. There is the effect the attack has on the brand reputation and credibility, resulting in a decline in business in general. And, finally, there is the potential cost of lawsuits from those affected by information compromised in a data breach.
Symantec conducts an annual study of consumer online behavior, attitudes, and security habits, and their relation to online dangers and the financial cost of cybercrime. The 2013 Norton Report found that the number of cybercrime victims has declined, but that the average cost per incident, and the overall cost globally both went up. To summarize, your chances of being a victim of cybercrime have decreased slightly, but the impact of being a victim of cybercrime has gone up substantially.
When you combine that with other findings from the Norton Report, it gets a bit scarier. Symantec found that 63 percent of those surveyed have smartphones, and 30 percent have tablets—but half of them don’t use basic security precautions like setting a PIN or password of some sort. On top of that, nearly half of the respondents use their personal devices–laptops, smartphones, and tablets–for business purposes at well, so those poor security practices are putting sensitive business data at risk.
There are a lot of things companies can do to defend against malware and cybercrime, but the reality is that there is no absolutely impenetrable defense. Security is a game of risk management. The goal is not to create an invulnerable network—the goal is to make a successful attack more challenging and more costly for attackers.
One of the most effective ways to do that is through education and security awareness. No matter how great your security tools are, the human beings using the devices, typing on the keyboard, and clicking the mouse are the weakest link. User error can torpedo even the best defense…
Read the full story at CSOOnline.com: The more you know, the less likely you are to be a victim of cybercrime.