IBM report reveals data breaches cost average of $4m globally

A survey by IBM Security has revealed that data breaches are higher-impact and costlier than ever before, with the global average reaching an all-time high of $4.35 million.

Conducted on behalf of IBM by the Poneman Institute, the 2022 Cost of a Data Breach Report was based on in-depth analysis of real-world data breaches experienced by 550 organisations globally between March 2021 and March 2022.

The report showed breach costs rising by nearly 13 per cent over the past two years, with the results suggesting the incidents may also be contributing to the rising costs of goods and services, with 60 per cent of surveyed organisations reportedly having raised their product or services prices due to a breach.

The survey also showed that 83 per cent of those studied had experienced more than one data breach in their lifetime. Another factor shown to be rising over time was the aftereffects of breaches lingering long after they occur, with 50 per cent of breach costs incurred more than a year after a breach.

Other key findings of the report revealed that ransomware victims who decide to pay threat actors’ random demands only incurred $610,000 less in breach costs than those who chose not to pay.

The study shows that 80 per cent of critical infrastructure organisations studied don’t adopt ‘zero trust’ strategies, seeing average breach costs rise to $5.4 million – a $1.17 million increase compared with those who do.

Immature cloud security practices in clouds – with 43 per cent reporting only being in the early stages of applying security measures to the cloud - resulted in $660,000 higher breach costs on average than organisations with mature security across their cloud environments.

Commenting on the report, Charles Henderson, global head of IBM security X-force, said: “This report shows that the right strategies coupled with the right technologies can help make all the difference when businesses are attacked.”

    Share Story:

Recent Stories


Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.

Beyond compliance: Transforming document management into a strategic advantage for financial institutions
In this exclusive fireside chat, John Rockliffe, Pre-Sales Manager at d.velop, discusses the findings of Adapting to a Digital-Native World: Financial Services Document Management Beyond 2025 and explores how FSIs can turn document workflows into a competitive advantage.

Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.

Achieving operational resilience in the financial sector: Navigating DORA with confidence
Operational resilience has become crucial for financial institutions navigating today's digital landscape riddled with cyber risks and challenges. The EU's Digital Operational Resilience Act (DORA) provides a harmonised framework to address these complexities, but there are key factors that financial institutions must ensure they consider.