Ponemon / IBM Annual Cost of a Data Breach Report
*Ponemon is one of many cost-of-breach benchmarking reports and they vary widely. This variance is because methods and samples vary widely. Ponemon’s study looks at small and mid-sized organizations.
Accenture Cyber Threatscape Report
The two most critical things for you to know about this report are:
Verizon Data Breach Investigations Report
DBIR has been paying more attention to assets that are effected by incidents. These asset classes were the most commonly exploited among the general population in the previous year:
NetDiligence Cyber Claims Study
The most critical thing for you to know about this study is that two-thirds of cyber insurance claims are associated with liability (regulatory fines, litigation and settlements). Those are the easiest to reduce if you just do a risk assessment. When risk assessments don’t show a plan based on reasonable controls, litigators and regulators go into action and cause your breach costs to triple.
Proofpoint State of the Phish
The most critical thing for you to know about this study is that remote workers’ home networks are not secure. Fewer than half of home users secure their network routers with passwords. About two-thirds do not change default passwords on routers. About 80% do not update firmware on routers. Because of the shift to remote workers, the perimeter has almost disappeared.