Story image

Cost of a data breach for Australian organisations? $2.64 million

16 Jun 16

IBM and Ponemon Institute have today released the annual 'Cost of a Data Breach' report, and its Australian results show that the average cost of a data breach is now AU$2.64 million.

The report analysed 26 Australian companies across 11 industries who have been affected by data breaches. These organisations suffered the loss or theft of protected personal data, and who have notified affected victims and regulators.

The $2.64 million average data breach cost, each lost or stolen information record costs $142. Overall, however, the report states there was a 6.6% decrease in the total cost of a data breach, and a 1.4% decrease in the cost of each lost or stolen information record.

The average number of breached records totalled 19,663, but individual company breaches recorded ranged from 4000 to 68,700 records.

Most of these were caused by malicious or criminal cyber attacks, with 46% stating they had experienced an attack, 27% stating breaches involved a negligent employee or contractor, and 27% stating that system glitches were the cause of breaches.

Malicious attacks are also the most costly for organisations, with the report showing that attacks have the highest per capita cost of $162. System glitches account for $126 per capita costs, and employer/contractor negligence account for $123 per capita cost.

The report says that incident response plans, employee training, CISO appointments and business continuity management reduced the average cost of data breaches.

The report also says that extensive use of encryption technologies reduced the cost of data breaches by $13.50, and involvement in threat sharing reduces costs by $8.50.

Although the report can't generalise sample findings with industry trends, the report says that industries with higher churn rates could benefit from customer retention as well as brand preservation. This may significantly reduce the cost of data breaches.

Finally, the Mean Time to Identify (MTTI) and Mean Time to Contain (MTTC) metrics showed that Australian organisations took more than five months to detect an incident, and another two months to contain it. For MTTIs less than 100 days, the average cost of breach identification totalled $2.05 million. For MTTIs greater than 100 days, this cost dramatically increased to $3.21 million.

AWS awarded protected level certification by the ACSC
“Cloud technology is in huge demand, and in line with that, the ACSC is also evolving its programs to continue lifting cybersecurity standards across the whole Australian economy."
Why the optical transport equipment market is on the rise
The cumulative spend on optical transport equipment during the next five years is projected to grow by 16%.
Tongan fibre-optic cable outage relieved by satellite
Recently Tonga suffered an outage in the submarine cable network that connects the island nation to the outside world.
IoT: Productivity boost or Pandora’s Box of security issues?
Organisations have begun using IoT to track assets, improve efficiency, boost customer service and gain greater insight into their operations.
Can you spot the phish? Google's quiz puts you to the test
The quiz may not be as clear-cut as you think - but that's exactly why you should do it.
FalconStor announces AWS integration
"While competitors provide narrower proprietary or niche solutions, FalconStor thinks differently about data storage."
2019 network predictions for service providers
There are a number of key events set to impact the IT industry this year – but 5G won’t be one of them.
Veeam expands cloud data management capabilities for IBM, AWS and Azure
The new capabilities supposedly deliver cost-effective data retention, easy cloud migration and data mobility.