Global study at a glanc:
- 419 companies in 13 country or regional samples
- $3.62 million is the average total cost of data breach
- 10% one-year decrease in average total cost
- $141 is the average cost per lost or stolen records
- 11.4% one-year decrease in the per capita cost
- 27.7% is the likelihood of a recurring material data breach over the next two years
- 2.1% increase in the likelihood of a recurring material data breach
- US with highest frequency of breach followed by UK then India and so on;
- while largest breaches were India, Middle East and US and conversely smallest being Australia, South Africa and Italy;
- per capita cost by industry results in Health at 380 in 2017 and 40year average of 369, followed by Financial at 245 and 222 then Services at 223 and 178;
- root cause of breach were malicious / criminal attack to system glitch and then human error for top 3;
- Decrease in cost of breach directly related to (in order) Incident Response Team, Extensive use of Encryption, Employee training, BCM involvement, Participating in Threat Sharing...and conversely the ones the Increase cost first, Third-party involvement, Extensive Cloud Migration, Compliance Failures
Other considerations: These number likely reflect breaches that were required to be reported, while identifying the breach is critical its remedy can be complex and long-term, the financial effects can also last including Target's settlement years after breach and latest FedEx affect after Petya randomware
