State or Cybercriminals? IBM Data Breach Report 2020


The 2020 Cost of a Data Breach Report sponsored by IBM Security and conducted by the Ponemon Institute is an analysis of interviews 3,200 security professionals from 500 organizations worldwide that suffered a data breach during August 2019- April 2020 fiscal year.

The data breach level cannot be wholly estimated without factoring legal, regulatory, and negative impact on brand equity, customers, and employee productivity.

Top 8 Findings of IBM Data Breach Report 2020

Deploying Industry 4.0 Technologies

According to the 2020 Cost of a Data Breach Report, organizations that focused on deploying Industry 4.0 technologies such as Artificial Intelligence, Analytics, and process-wide standard security automation, could effectively curb data breach costs to 2.45 million to companies that didn’t and babycried $6.03 million on average.

Compromised Corporate Credentials

Data breach costs $4.77 million per data breach in situations where attackers accessed corporate networks through stolen or compromised credentials. Attackers exploited third-party vulnerabilities cost $4.5 million for the 500 global organizations surveyed in this research outreach. 

Morbid Loss for Mega Breaches

In the preceding fiscal, the cost of data breach of over 50 million records was $388 million, which increased to $392 million. In the event of 40 to 50 million records exposed, the group report states a loss of $364 million on average, which is an increase of $19 million compared to the 2019 report.

State Attacks Worse than Cybercriminals

When analysts tried to figure out the most damaging data breaches, they found that nation-state attacks cost $4.43 million in data breach compared to elsewhere’ threats. It means that State-sponsored attacks surpass average data breach cost expeditioned by cybercriminals and hacktivists. 


Half-Empowered CISOs Charged for Cost

According to the report, 46% of the US-based data breach survey respondents, Chief Information Security Officers (CISOs) are the ones blamed for the security breach. Another 27% of the respondents justify the blame on CISO/CSO as they are the security policy and technology decision-maker. The mansplainers don’t agree a typical CISO saves up to $145,000 versus the average cost of a breach.

Work-from-Home (WFH) the New Vulnerability

During the pandemic or even far into the future when the current adjustment to WFH will be business as usual, a lack of a controlled data security environment will reason a 70% hike in data breach costs over and above the estimation of the 2020 Cost of a Data Breach Report. 

Cyber Insurance Settlers Cost Half the Damage

While the report underlines the value of organizations that have cyber insurance costing $200,000 less to global avg $3.86 million, it brings to the attention how the insured organizations pay 51% of the recovery amount to third-party consultants in fees and legal services. So, 36% of organizations use claim amounts for victim restitution costs, and only 10% of the claims cover the cost of ransomware or extortion.

Scandinavia Surpasses the US in Data Breach Cost

The US is not the lone victim to the extortionate cost of the data breach. Scandinavian countries seem to be ahead in this crisis year-on-year, observing a nearly 13% rise from FY19. The Scandinavian healthcare industry continues to incur the highest average at $7.13 million clocking in a 10% increase to FY19.

You can download the 2020 Cost of a Data Breach Report here


Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.