In a post on Halock.com, auditor Chris Cronin writes that as insurers try to model cyber risk and brokers try to get the right information from their clients it may be better to focus on management behavior than on hacker tactics.
Using data from NetDiligence reports, Cronin breaks down costs of crisis services, legal defense, settlements, regulatory defense and fines between small/medium and large organizations.