Financial Fraud Tops Malware As Biggest Financial Drain
This year's Computer Crime and Security Survey shows that financial fraud has overtaken viruses as the cause of the greatest amount of financial loss.
For years, IT managers have feared that a massive malware attack could drain their company's financial coffers.
But now, financial fraud has overtaken virus attacks as source of the greatest amount of financial losses, according to the 12th Annual Computer Crime and Security Survey. Financial fraud is estimated to cost surveyed businesses, government agencies and universities $21,124,750 this year alone. By comparison, malware is expected to cost the same enterprises $8, 391,800, according to the study, which is run by the Computer Security Institute.
While a total of 494 companies took part in the study, 194 companies willing to answer the monetary loss part of the survey added up to $66,930,950.
The study also showed that the average annual loss shot up to $350,424 from $168,000 last year. Not since the 2004 report have average losses been this high, according to Robert Richardson, director of the Computer Security Institute.
"We should keep in mind that losses reported in this survey were suffered by enterprises, not individual consumers," Richardson wrote in the report. "The biggest losses reported by organizations throughout most of the survey's history have been caused by computer viruses, but almost all respondents say they have anti-virus software and that software has
gotten better and better over time... So whereas a virus such as 'ILOVEYOU' could wreak relative havoc in 2000, causing estimates that 45 million computers were affected in a single day, more recent years (including last year) have been relatively calm."
The Top 10 loss categories include:
Financial fraud: $21,124,750;
System penetration by an outsider: $6,875,000;
Theft of data, from all devices except mobile: $5,685,000;
Laptop or mobile hardware theft: $3,881,150;
Insider abuse of email or net access: $2,889,700;
Denial of service: $2,888,600;
Phishing (where the company is represented as the sender): $2,752,000;
Bots within the organization: $2,869,600, and
Theft of proprietary information from mobile device: $2,345,000.
The report also noted that the financial fraud and data loss categories together account for nearly half of the overall reported losses.
Building A Mobile Business MindsetAmong 688 respondents, 46% have deployed mobile apps, with an additional 24% planning to in the next year. Soon all apps will look like mobile apps – and it's past time for those with no plans to get cracking.
InformationWeek Must Reads Oct. 21, 2014InformationWeek's new Must Reads is a compendium of our best recent coverage of digital strategy. Learn why you should learn to embrace DevOps, how to avoid roadblocks for digital projects, what the five steps to API management are, and more.