ERPScan research team released “ERPScan Data breach Report 2017” dedicated to the analysis of major attacks in various industries. If your company is based in the USA and employs 5000+ workers, you may become a victim of a breach, which average cost amounts to $5 million.
Based on more than 200 incidents, the report aimed to show the specifics of cyber-endangered industries and their Business Applications systems.
Along with other findings, the results revealed that
- companies in Media sphere were the most attacked ones among all spheres of activity in 2017;
- the UK became the biggest victim of Healthcare data breaches;
- loopholes in CRM and POS systems were a common cause of Espionage attacks in Retail sector;
- hacking crypto projects are going to turn into a new hot topic.
Speaking about the characteristics of attacks, the ERPScan research team analyzed each incident according to its type or threat – Espionage, Sabotage or Fraud – and attack technique. It was possible to estimate average losses if the information was publically available. Aside from average data breach costs, analysts estimated Espionage attacks, with 14 million user accounts affected in an average, and a common Sabotage that led to some two-day downtime.
For better risk assessment, every victim company was analyzed according to country, size, and staffing level. ERPScan also decided whether the company belongs to Financial, Manufacture, Healthcare or other sectors. In some cases, it was also possible to divide companies into different subspheres.
Among the affected companies this year were such world-known leaders as HBO, Equifax, Honda, Apple, McDonald’s, etc. It means that organizations that seem to have enough power and finances to protect themselves are actually vulnerable to cyberattacks.
“As for takeaways, we shouldn’t underestimate the attention of the hackers to such topics as cryptocurrency and Machine Learning. They are supposed to continue being at risk. What is more, we assume that the number of target attacks on companies with the use of industry systems and specific business applications like ERP, EMR and CRM, will also grow in the future. So, now is the best time to think of cybersecurity.” — Alice Jossan, Cybersecurity Analyst at ERPScan
Everyone who wants to learn more details about cyber risks peculiarities in various industries is invited to the webinar.
ERPScan is the most credible Business Application Cybersecurity provider.
It operates globally and enables large Oil and Gas, Financial, Retail, and other organizations to secure their mission-critical processes. ERPScan is the leading SAP SE partner in resolving security vulnerabilities, called an ‘Emerging Vendor’ in Security by CRN, listed among “TOP 100 SAP Solution providers” and distinguished by 40+ other awards.
ERPScan’s primary mission is to bridge the gap between technical and business security and provide solutions for CISOs to evaluate and secure SAP and Oracle ERP systems.
+31 20 8932892