Cybercrime Costs Over $600 Billion Annually

Uploaded on 2018-02-26 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW

Cybercrime and espionage have caused more than $600 billion worth of damage annually in recent years, according to some new estimates from the US think tank Center for Strategic and International Studies (CSIS) and American cybersecurity firm McAfee.

“When we talk about impact of cybercrime, really it’s an economic impact with significant ramifications toward things like jobs, opportunity, investment, innovation,” said Raj Samani, McAfee’s chief scientist. “The objective is to change the discussion from this-country-does-that to how cyber-crime impacts all of us, why it matters and how to address it.”

The total cost is rising.

A 2014 estimate from CSIS put the annual cost of hacking at around $500 billion. Increasingly sophisticated hacking tools, the quick adoption of new technology and the growing professionalisation of cyber-crime have made it easier than ever to be a profitable crook online.

Even so, cyber-crime ranks behind government corruption and narcotics trafficking for annual cost to the world, according to the International Monetary Fund. “Cyber-crime also leads in the risk-to-payoff ratio,” the authors of the report wrote. 

“It is a low risk crime that provides high payoffs. A smart cyber-criminal can make hundreds of thousands, even millions of dollars with almost no chance of arrest or jail. When you think of big cyber-crimes, from Target to SWIFT to Equifax, none of the perpetrators have been prosecuted to date. 
“Law enforcement agencies can be aggressive and skillful in pursuing cyber-criminals, but many operate outside their reach. This is one reason why the cost of cyber-crime continues to grow.”

Plenty of Targets

The report’s authors estimate that more than 2 billion people, about two-thirds of the people online today, have had personal information stolen or compromised by hackers. As the number of people online grow, the number of compromises is poised to rise as well because new users usually come from low-income nations with systemic cyber-security problems.
East Asia, Europe and North America see annual costs ranging from $120 billion to $200 billion each. Higher-income nations tend to be more frequently targeted but lower income nations are often more easily exploited.
Ransomware is spotlighted in the report as the fastest growing cyber-crime. In 2015, about $24 million in total ransoms was paid. In 2016, that number jumped to $1 billion, according to the FBI. In 2017, estimates put the total amount of ransom paid at $2 billion.

According to CSIS, the published research is intended to help governments and the public understand the costs of cyber-crime, a category of illegal activity that is notoriously opaque and difficult to understand.
“The more that governments understand what those costs are, the more likely they are to bring their laws and policies into line with preventing those sorts of losses,” Stewart A. Baker, a former senior NSA and DHS official, said at the release of the last CSIS report.

Almost Nothing Works

To that end, the report’s authors put eight countries under a microscope to study the unique impact of cyber-crime on each nation.

“The most disturbing thing we found is that whether a country takes significant efforts against cyber-crime or whether it does almost nothing, cyber-criminals will still be successful,” the report’s authors wrote.

The think tankers ended the report with recommendations including increased international law enforcement cooperation, improving mutual legal assistance treaties to request help across borders and up-to-date and standardised laws around the world.

There are numerous “state sanctuaries” called out in the report. Russia, North Korea and Brazil are pointed to as world capitals, for various reasons, of cybercrime that need painful but temporary penalties to pressure for change, according to CSIS. Otherwise, there’s no reason the problem won’t continue to grow.

“There was a recent claim by a law enforcement official saying, oh if we see an attack from such-and-such country then we don’t even bother investigating,” McAfee’s Samani said. 
“You, kind of think to yourself, ‘That’s insane.’ We’re going to have to start small and ensure there is a global, collaborative agreement between law enforcement to work together as fast as possible. It’s crucial.”

Cyberscoop

You Might Also Read: 

Cybercrime: £130bn Stolen From Consumers In 2017:

FBI's Ability To Disrupt Cybercrime Has  Deteriorated:

British Banks Are Hiding Cyber Attacks:

« Discover Hidden Cybersecurity Talent
Eight Reasons Why Facebook Has Peaked »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Trend Micro

Trend Micro

Trend Micro is a leader in hybrid cloud, endpoint, and network security solutions.

SecWest

SecWest

SecWest is the organizer of CanSecWest, PACSEC, originator of PWN2OWN, security auditing, and virtual engagement/training.

RiskSense

RiskSense

RiskSense empowers enterprises and governments to reveal cyber risk, quickly orchestrate remediation, and monitor the results.

Commissum

Commissum

Commissum specialise in information assurance and security testing services.

Cyber Aware

Cyber Aware

Cyber Aware aims to drive behaviour change amongst small businesses and individuals, so that they adopt simple secure online behaviours.

HYAS Infosec

HYAS Infosec

HYAS is a highly skilled information security firm developing the next generation of information security technology.

Cyber Defense Initiative Conference (CDIC)

Cyber Defense Initiative Conference (CDIC)

Cyber Defense Initiative Conference (CDIC) is one of the most distinguished Cybersecurity, Privacy and Information Security Conference in Thailand and Southeast Asia.

Kryptus

Kryptus

Kryptus provides a wide array of solutions for hardware, firmware and software ranging from semiconductors to complex digital certificate management systems.

42Gears

42Gears

42Gears is a leading Unified Endpoint Management provider. Secure, monitor and manage tablets, phones, desktops and wearables.

Infodas

Infodas

Infodas provides Cybersecurity and IT consulting / system integration services as well as a range of innovative Cybersecurity products to public sector and commercial clients.

Infinite Ranges

Infinite Ranges

Infinite Ranges delivers secure, comprehensive digital solutions by connecting experts with the best products and services for the digital age.

Jit

Jit

Jit empowers developers to own security for the product they are building from day zero.

BlueSteel Cybersecurity

BlueSteel Cybersecurity

BlueSteel is a compliance consulting firm that leverages deep system, data and application expertise to build sustainable cybersecurity solutions.

Maintel

Maintel

Maintel provides cloud and managed communications services. We help our customers to deliver exceptional customer experiences, and to securely access their applications and their data.

Downdetector

Downdetector

Downdetector helps people all over the world understand disruptions to vital services such as the internet, social media, web hosting platforms, banks, games, entertainment, and more.

Cyabra

Cyabra

Cyabra is leading the fight against disinformation. Our AI shields companies and the public sector by uncovering malicious actors, bot networks, and GenAI content.