Welcome!

Cloud Expo Authors: Carmen Gonzalez, Esmeralda Swartz, Elizabeth White, Lori MacVittie, Sandi Mappic

Blog Feed Post

Data Breach Virgins Completely Underestimate The Costs Of Failed Security, Reveals Faronics Survey

Organisations fail to realise implications of a data breach; estimate recovery costs to be a third less than they actually are

LONDON - 13th November, 2012 - Faronics, a global leader in securing multi-user PC environments, today announced the results of a survey that explores how UK organisations think about information security and what motivates them to invest in data defences. The research, conducted by Ponemon Institute[1], revealed that 54 percent of respondents have experienced at least one data breach in the last year, with nearly a fifth (19 percent) experiencing more than four. Perhaps more worryingly, those that have so far avoided a data breach demonstrated a real lack of awareness of the financial and long-term damage that a breach can have on a company.

Of those who have suffered a data breach, nearly half (48 percent) stated that it damaged their reputation, while close to a third (30 percent) were forced to downsize due to a loss of customers. However, when asking those that have not suffered a breach, 58 percent believe brand reputation would be untarnished should they fall victim, while the majority (70 percent) do not think that the cost of customer acquisition would increase. In fact, the research shows that on average the cost of customer acquisition rose by £91,985 after a breach.

"Despite growing awareness of cybercrime in general, it seems that organisations are still oblivious to the full financial and reputational costs data breaches can bring," said Dmitry Shesterin, VP of product management at Faronics. "As these results indicate, there is a serious discrepancy between what organisations perceive to be the real repercussions of failed security and what they actually are. While it's no secret that organisations are becoming more concerned about the possibility of a data breach, it seems they are actually not as prepared as they should be. Existing business contracts are not the only thing at stake - so too are future revenue opportunities, shifting it from a short-term to a potentially long-term problem. What is also worrying is that a growing number of organisations are not just experiencing one data breach, they are experiencing three, four or even more, indicating that they are either failing to learn from past mistakes or are simply not taking the necessary steps to adequately protect the data that they have been entrusted with."

The study also concluded that organisations are underestimating the long-term financial costs and time it takes to recover from a breach by up to a half, with those that have not suffered a data breach estimating a cost of just under £95,000 and a recovery period of four months. In reality, the research found that it is costing businesses £138,700 and taking over twice as long (9.3 months) to get back to normal.

"There really is no room for nonchalance when it comes to security strategies and it is completely irresponsible to assume the repercussions will be anything less than they are," continued Shesterin. "Organisations need to know exactly what is at stake in order to readdress existing security practices and ensure they are as well protected as they can be. Businesses are without doubt more vulnerable than ever, and with figures such as these, it's not surprising that many are unable to absorb the eye-watering cost and reputational damage that so often follows a breach."

In terms of the threats keeping security teams awake at night, nearly two thirds of those surveyed (62 percent) consider BYOD to be the most serious threat to security, followed by a lack of data protection across devices (56 percent), insecure third parties and cloud providers (53 percent), and the proliferation of unstructured data (44 percent), indicating that although they are becoming essential to business development, new technology trends pose a growing cause for concern for many organisations. Perhaps a little surprising, widely publicised threats are still a relatively low priority, with only eight percent stating it is very likely that their organizations would be affected by cyber espionage and just 17 percent very likely to see APTs as a potential danger.

"With today's complex security landscape, any organisation is a potential target," continued Shesterin. "You only need to take a look at the high profile security incidents, such as those at HSBC, LinkedIn and Yahoo, to realise that no one is safe. As well as raising awareness of cybercriminal tactics, organisations must consider a more holistic approach to security. They cannot afford to become absent-minded and rely solely on traditional perimeter solutions, such as anti-virus, as today's threats are just too sophisticated. Instead, organisations must consider a layered security approach involving application control and system restore methods, which offers a safety net should any malware make its way onto the network."

[1] 544 individuals in organisations with between 50 and 3,000 employees were surveyed by The Ponemon Institute on behalf of Faronics in October 2012.

The full report findings can be found here: http://www.faronics.com/assets/UK-Faronics-FINAL-1.pdf

About Faronics
With a well-established record of helping businesses manage, simplify, and secure their IT infrastructure, Faronics makes it possible to do more with less by maximising the value of existing technology. Faronics is the ONLY endpoint security software vendor to offer a comprehensive layered security solution consisting of anti-virus, application whitelisting, and instant system restore protection. Incorporated in 1996, Faronics has offices in the USA, Canada and the UK, as well as a global network of channel partners. Our solutions are deployed in over 150 countries worldwide, and we are helping more than 30,000 organisations.

For more information visit www.faronics.com

Press contacts:
Hannah Townsend or Richard Scarlett
Johnson King
T: +44 (0)20 7401 7968
E: [email protected]

Read the original blog entry...

More Stories By RealWire News Distribution

RealWire is a global news release distribution service specialising in the online media. The RealWire approach focuses on delivering relevant content to the receivers of our client's news releases. As we know that it is only through delivering relevance, that influence can ever be achieved.

@CloudExpo Stories
The Internet of Things will greatly expand the opportunities for data collection and new business models driven off of that data. In her session at Internet of @ThingsExpo, Esmeralda Swartz, CMO of MetraTech, will discuss how for this to be effective you not only need to have infrastructure and operational models capable of utilizing this new phenomenon, but increasingly service providers will need to convince a skeptical public to participate. Get ready to show them the money! Speaker Bio: ...
Compute virtualization has been transformational, yet security policy implementation and enforcement has lagged behind in agility and automation. There are a number of key considerations when implementing policy in private and hybrid clouds. In his session at 15th Cloud Expo, Holland Barry, VP of Technology at Catbird, will discuss the impact of this new paradigm and what organizations can do today to safely move to software-defined network and compute architectures, including: How normal ope...
Samsung VP Jacopo Lenzi, who headed the company's recent SmartThings acquisition under the auspices of Samsung's Open Innovaction Center (OIC), answered a few questions we had about the deal. This interview was in conjunction with our interview with SmartThings CEO Alex Hawkinson. IoT Journal: SmartThings was developed in an open, standards-agnostic platform, and will now be part of Samsung's Open Innovation Center. Can you elaborate on your commitment to keep the platform open? Jacopo Lenzi: S...
How do APIs and IoT relate? The answer is not as simple as merely adding an API on top of a dumb device, but rather about understanding the architectural patterns for implementing an IoT fabric. There are typically two or three trends: Exposing the device to a management framework Exposing that management framework to a business centric logic • Exposing that business layer and data to end users. This last trend is the IoT stack, which involves a new shift in the separation of what stuff hap...
SYS-CON Events announced today that SOA Software, an API management leader, will exhibit at SYS-CON's 15th International Cloud Expo®, which will take place on November 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. SOA Software is a leading provider of API Management and SOA Governance products that equip business to deliver APIs and SOA together to drive their company to meet its business strategy quickly and effectively. SOA Software’s technology helps businesses to accel...
SYS-CON Events announced today that Utimaco will exhibit at SYS-CON's 15th International Cloud Expo®, which will take place on November 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. Utimaco is a leading manufacturer of hardware based security solutions that provide the root of trust to keep cryptographic keys safe, secure critical digital infrastructures and protect high value data assets. Only Utimaco delivers a general-purpose hardware security module (HSM) as a customiz...
Almost everyone sees the potential of Internet of Things but how can businesses truly unlock that potential. The key will be in the ability to discover business insight in the midst of an ocean of Big Data generated from billions of embedded devices via Systems of Discover. Businesses will also need to ensure that they can sustain that insight by leveraging the cloud for global reach, scale and elasticity.
SYS-CON Events announced today that ElasticBox is holding a Hackathon at DevOps Summit, November 6 from 12 pm -4 pm at the Santa Clara Convention Center in Santa Clara, CA. You can enter as an individual or team of up to 10 developers. A New Star Is Born Every Month! All completed ElasticBoxes will then be sent to a judging panel - 12 winners will be featured on the ElasticBox website in 2015. All entrants will receive five full enterprise licenses for one year + ElasticBox headphones + Elasti...
Once the decision has been made to move part or all of a workload to the cloud, a methodology for selecting that workload needs to be established. How do you move to the cloud? What does the discovery, assessment and planning look like? What workloads make sense? Which cloud model makes sense for each workload? What are the considerations for how to select the right cloud model? And how does that fit in with the overall IT tranformation? In his session at 15th Cloud Expo, John Hatem, head of V...
Cloud services are the newest tool in the arsenal of IT products in the market today. These cloud services integrate process and tools. In order to use these products effectively, organizations must have a good understanding of themselves and their business requirements. In his session at 15th Cloud Expo, Brian Lewis, Principal Architect at Verizon Cloud, will outline key areas of organizational focus, and how to formalize an actionable plan when migrating applications and internal services to...
SAP is delivering break-through innovation combined with fantastic user experience powered by the market-leading in-memory technology, SAP HANA. In his General Session at 15th Cloud Expo, Thorsten Leiduck, VP ISVs & Digital Commerce, SAP, will discuss how SAP and partners provide cloud and hybrid cloud solutions as well as real-time Big Data offerings that help companies of all sizes and industries run better. SAP launched an application challenge to award the most innovative SAP HANA and SAP ...
Ixia develops amazing products so its customers can connect the world. Ixia helps its customers provide an always-on user experience through fast, secure delivery of dynamic connected technologies and services. Through actionable insights that accelerate and secure application and service delivery, Ixia's customers benefit from faster time to market, optimized application performance and higher-quality deployments.
SYS-CON Events announced today that Calm.io has been named “Bronze Sponsor” of DevOps Summit Silicon Valley, which will take place on November 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. Calm.io is a cloud orchestration platform for AWS, vCenter, OpenStack, or bare metal, that runs your CL tools puppet, Chef, shell, git, Jenkins, nagios, and will soon support New Relic and Docker. It can run hosted, or on premise and provides VM automation / expiry, self-service portals,...
In her General Session at 15th Cloud Expo, Anne Plese, Senior Consultant, Cloud Product Marketing, at Verizon Enterprise, will focus on finding the right mix of renting vs. buying Oracle capacity to scale to meet business demands, and offer validated Oracle database TCO models for Oracle development and testing environments. Anne Plese is a marketing and technology enthusiast/realist with over 19+ years in high tech. At Verizon Enterprise, she focuses on driving growth for the Verizon Cloud pla...
SYS-CON Events announced today that Aria Systems, the recurring revenue expert, has been named "Bronze Sponsor" of SYS-CON's 15th International Cloud Expo®, which will take place on November 4-6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. Aria Systems helps leading businesses connect their customers with the products and services they love. Industry leaders like Pitney Bowes, Experian, AAA NCNU, VMware, HootSuite and many others choose Aria to power their recurring revenue bu...
The Internet of Things (IoT) is going to require a new way of thinking and of developing software for speed, security and innovation. This requires IT leaders to balance business as usual while anticipating for the next market and technology trends. Cloud provides the right IT asset portfolio to help today’s IT leaders manage the old and prepare for the new. Today the cloud conversation is evolving from private and public to hybrid. This session will provide use cases and insights to reinforce t...
As Platform as a Service (PaaS) matures as a category, developers should have the ability to use the programming language of their choice to build applications and have access to a wide array of services. Bluemix is IBM's open cloud development platform that enables users to easily build cloud-based, creative mobile and web applications without having to spend large amounts of time and resources on configuring infrastructure and multiple software licenses. In this track, you will learn about the...
Blue Box has closed a $10 million Series B financing. The round was led by a strategic investor and included participation from prior investors including Voyager Capital and Founders Collective, as well as the Blue Box executive team. This round follows a $4.3 million Series A closed in December of 2012 and led by Voyager Capital. In May of this year, the company announced general availability of its private cloud as a service offering, Blue Box Cloud. Since that release, the company has dem...
SYS-CON Events announced today that Verizon has been named "Gold Sponsor" of SYS-CON's 15th International Cloud Expo®, which will take place on November 4-6, 2014, at the Santa Clara Convention Center in Santa Clara, CA. Verizon Enterprise Solutions creates global connections that generate growth, drive business innovation and move society forward. With industry-specific solutions and a full range of global wholesale offerings provided over the company's secure mobility, cloud, strategic network...
SimpleECM is the only platform to offer a powerful combination of enterprise content management (ECM) services, capture solutions, and third-party business services providing simplified integrations and workflow development for solution providers. SimpleECM is opening the market to businesses of all sizes by reinventing the delivery of ECM services. Our APIs make the development of ECM services simple with the use of familiar technologies for a frictionless integration directly into web applicat...