Better Cybersecurity Starts with Fixing Your Employees’ Bad Habits
Cybercrime is here to stay, and it’s costing American firms a lot of money. The average annualized cost of cybercrime for global companies has increased nearly 62% since 2013, from $7.2 million to $11.7 million. And these are just the average direct costs. Target, which experienced a massive data breach in 2013, reported that the total cost of the breach exceeded $200 million. Verizon, which recently purchased Yahoo, may have snagged a $350 million discount because of three large-scale Yahoo data breaches that occurred in recent years. Given these costs, what can companies do?
Governments and industry are doing what seems like the obvious thing to do — spending billions of dollars to develop and implement new technologies designed to stop the bad guys before they can get through the front door. Yet, even though we have some of the best and brightest minds on the case, there are still major limitations to what we can do with silicon and code. Despite our predilection for using technology to solve what appear to be technological problems, one lament that echoes in information security circles is that we’re not doing enough to deal with cybersecurity’s biggest, most persistent threat — human behavior.
Source: Harvard Business Review