A file bearing the heading 'Top Secret'

Cost of data breaches rises

Survey finds the average cost of data breaches to UK firms rose more than a fifth last year

Written by Sam Trendall

CRN, 04 Feb 2009

The cost of data breaches to UK firms spiralled last year as insider negligence cost companies millions of pounds in lost business, research has found.

The 2008 Annual Study: UK Cost of a Data Breach report was conducted by research firm the Ponemon Institute and sponsored by data protection firm PGP Corporation. It examined the cost of data breaches at 30 UK firms across 10 different industries over the course of last year.

The number of records compromised ranged from 4,100 in one instance to more than 92,000 in another, with costs ranging from £160,000 to £4.8m. The average cost per breach was £1.7m, a 21 per cent increase on 2007 while each compromised customer record cost an average £60, a 28 per cent hike.

Business lost as a result of a deterioration in customer trust was the most costly effect of data breaches, accounting for 53 per cent of reported costs. Seven in 10 breaches were caused by negligence with only 30 per cent involving purposeful maliciousness.

Dr Larry Ponemon, founder of the Ponemon Institute, said: "In just the second year of this UK study, research proves businesses continue to pay dearly for having a data breach. As costs only continue to rise, companies must remain on guard or face losing valuable customers in this unpredictable economy."

A third of breaches resulted from third-party errors and those involving outsourced data were the most costly with an average loss of £67 per customer. Costs associated with detecting and responding to breaches declined slightly in 2008, which the survey claims can be attributed to improved firms improving their processes.

Encryption and identity and access management tools were singled out by respondents as the top two technologies in dealing with data breaches. Control practices and training and awareness initiatives were cited as businesses preferred manual methods.

PGP chief executive Phil Dunkelberger added: “2008 saw no slow down to the stream of data breaches started in 2007; if anything they have got bigger and more costly. In this current climate, organisations are taking desperate measures to preserve their reputation and retain customers; this study shows they simply cannot afford to lose out to competitors as a result of poor data security.”

  • Have your say
  • Send to a friend
  • Share
  • Print

reader comments

related articles

Nigel Hawthorn of Blue CoatSecurity

Data loss prevention and new legislation

New regulations mean the channel should look again at fully layered data loss prevention, says Nigel Hawthorn 14 Jan 2009

 
Public Sector

Health pros neglect mobile security

Survey reveals many UK and US health professionals fail to ensure safety of work data on mobile devices 20 Nov 2008

VAR finds lost Whitehall data stashed in laptop

Counter-terrorist investigation launched after Leapfrog discovers missing Home Office disc 03 Mar 2008

Home Office calls cleaners

The Home Office is remaining tight-lipped over the missing disc which was recently discovered in a laptop handed in for repair at VAR Leapfrog Computers. 20 Mar 2008

Security

Vistorm issues data leakage warning

VAR finds 48 per cent of UK firms aren’t doing enough to prevent potential data losses 08 Dec 2008

Security

Speaking in code

Encryption is a topic shrouded in mystique and misunderstanding, but this is changing as companies become aware of the importance of data protection, says Tony Ross-Booker 24 Sep 2008

Security

Security breaches fall, but cost per incident rises

Companies implementing better security, Ponemon study finds 25 Jan 2010

Management

Two-thirds of organisations hit by data breach in last year

Public sector and financial services the biggest culprits 08 Jul 2009

Security

Data breach costs continue to rise

Annual PGP study finds incidents cost an average of £1.68m 27 Jan 2010

latest news

IBM gets tough on ‘black sheep’

Persistent sources of grey market kit could face expulsion from Big Blue's partner programme 12 Mar 2010

Tories pledge to open procurement to SMEs

Technology Manifesto promotes smaller contracts and reveals plans for more open source IT 12 Mar 2010

FPB offers smaller firms a helping hand

Forum of Private Business aims to help SMEs handle issues on areas such as HR, finance, marketing, legal and health and safety with latest package 12 Mar 2010

More news

analysis and reports

Wireless LAN systems for the healthcare industry

The goal of a paperless hospital driven by wireless access that improves patient healthcare, expedites administration and streamlines operations.

A technology solution to align sales and marketing

Presenting best practices around people, processes and technology, this paper will help you produce more valuable customer relationships.

poll

Setting the standard

Setting the standard

Should the IT industry have a formal accreditation process?

View poll results

David Critchley

PROMOTIONAL VIDEO - Accelerate your business with Cisco

Watch this Cisco promotional video to hear how the vendor can boost your business

money

CRN Web Seminar: Convincing Customers to Spend their way out of Recession

Join CRN editor Sara Yirrell and a panel comprised of Tim Black from sponsor Intel, Sam Routledge from VAR Softcat and Antony Young from analyst Demuto to find out how to get customers spending in 2010

More CRN TV

events

Reseller Business Academy

Reseller Business Academy: Sales Fundamentals for Resellers

This workshop is designed for anyone who is new to sales or who is already in sales but has had...

Expo 2008 entrance

Channel Expo 2010

The only UK exhibition dedicated to the channel is coming to London, Olympia on 12 and 13 May 2010

More Events

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Primary Navigation