The Corporate Problem with Cybersecurity

Large, medium and small corporations have a problem with cybersecurity – they don’t think it’s critical. Thus, the corporate problem with cybersecurity.

According to HelpNetSecurity “Gemalto’s Breach Level Index, 918 data breaches led to 1.9 billion data records being compromised worldwide in the first half of 2017. Compared to the last six months of 2016, the number of lost, stolen or compromised records increased by 164%. A large portion came from the 22 largest data breaches, each involving more than one million compromised records. Of the 918 data breaches, more than 500 (59% of all breaches) had an unknown or unaccounted number of compromised data records.” Verizon revised the total number of records stolen from the Yahoo! hack in 2013 from 1 billion to all 3 billion email and non-email accounts.

Considering this data how could executives not view cybersecurity as a critical business function? Without cybersecurity, a company is the low hanging fruit of a sitting duck in the hacker world. The mindset that people have about not protecting themselves or their business because “it hasn’t happened to me yet” is not only irresponsible but woefully counterintuitive.

When a hurricane is approaching most people prepare.

In the event you’re in an accident, you purchase vehicle insurance.

In the event your home is destroyed in a natural disaster, you purchase homeowners insurance.

Humans regularly take steps to protect themselves in a myriad of situations. Except for cybersecurity. People in the security industry use to ask “How many people will have their financial lives destroyed before people take cybersecurity seriously?” At this point, everyone has been affected by a breach, yet apathy is abundant.