A Handy List of Cyber Stats for Your Next Executive Presentation

Sometimes there’s nothing more compelling than having the right statistic in your executive presentation. Here is a handy list of some compelling statistics I have recently collected.

Depending on the level interest I receive from this post, I can put these out every so often.

Cyber Spending and the Cost of Cyber Crime

• Security budgets have increased 35X over the past 13 years (Cybersecurity Ventures)
•  In 2004 the global cybersecurity market was worth $3.5 billion. By the end of 2017 it will be worth $120 billion (Wired)
• Cybercrime will cost the world in excess of $6 trillion annually by 2021 (Cybersecurity Ventures)
• The average cost per breach worldwide was $4 million, that figure rose to $7 million in the U.S. (Ponemon Institute)
• The cyber insurance market rose to $2.5 Billion in 2016 (Forbes)

IoT Cyber Security

• There are 25 connected devices per 100 inhabitants in the US (Symantec Internet Security Threat Report)
• Intel predicts there will be up to 200 Billion connected devices by 2020 Microsoft predicts that the number of connected devices will be about 50 Billion by 2020
• Connected Cars
  • 12 million connected vehicles are on the road today, and 4.5 million of those are 4G LTE connected vehicles (Network World)
  • Reduced rates of collisions and theft thanks to in-vehicle IoT devices could lower insurance premiums by as much as 25% (AT&T)
• According to AT&T’s “The CEO’s Guide to Securing the Internet of Things”
  • 90% of organizations lack full confidence in their IoT security
  • 35% of U.S. manufacturers are using data generated by smart sensors to enhance their manufacturing or operating processes
  • 88% of organizations lack full confidence in the security of their business partners’ connected devices
•  By 2020 data volumes online will be 50 times greater than today (Microsoft)

Ransomware

• According to IBM:
  • Ransomware increased 6,000% in 2016
  • Ransomware was in almost 40% of all spam messages in 2016
  • 70% of business victims paid the hackers to get their data back
  • Of those who paid, 50% paid more than $10,000 and 20% paid more than $40,000
  • Almost 40% of consumers would be willing to pay more than $100 to get data back
  • Most ransomware fetches over $300 per victim
  • More than half of parents surveyed said they would pay the ransom to get back personal photos and memories
• Ransomware attacks are predicted to double in 2017 (Beazly Insurance)
• Healthcare and Financial are the most likely industries to be targeted by ransomware (Osterman Survey)
• Less than 25% of Ransomware attacks are reported (Datto)
• Companies experienced an average of 2-5 days of downtime due to ransomware attacks (Intermedia’s 2016-Crypto Ransomware Survey)

Prices on the Cyber Black Market

• According to the SecureWorks 2016 Underground Hacker Marketplace Report, you can purchase:
  • DDOS attacks for as low as $5 USD an hour
  • American Express Cards for $30 USD
  • Banking credentials from 1% to 5% of the account balance
• According to Fortune, on the Dark Web:
  • Uber accounts (take free rides!) costs between $1 and $2 USD each
  • Netflix accounts cost between $1 and $2 USD each
  • Paypal is $80 USD per account
  • eHarmony going for $10 USD per account
• You can buy a lifetime license to run a ransomware package for the low price of $39 USD. (Trend Micro)

The Human Factor

• According to Microsoft:
  • 556 million people fall victim to cybercrime annually or 12 people every second
  • By 2020, 4 billion people will be online—that’s double the number today
• 95% of all security incidents involve human error (IBM)
• According to Ponemon
  • 53% of mobile professionals carry confidential company information
  • 65% of those who carry confidential company information don’t take steps to protect it
  • Up To 12,000 laptop computers are lost weekly and up to 600,000 are lost annually in U.S. airports
• 60% of fired employees steal important corporate data after departing their position (Global HR)
• According to the Verizon 2016 Data Breach Investigations Report:
  • 30% of phishing messages were opened by the receiver
  • 89% of all attacks involve financial or espionage motivations
  • 63% percent of confirmed data breaches involve weak, default or stolen passwords
• 26% of employees admitted to uploading sensitive information to cloud apps with the specific intent to share that data outside the company (SailPoint)
• The cybersecurity workforce shortage is expected to reach 1.5 million unfilled positions by 2019 (Forbes)

Let me know if you find these useful. Also, if you like cyber security, digital transformation, and risk management, check out our other blog posts.