Cybercrime Reaches $1.5 Trillion – Cybersecurity Must Change

in security •  7 years ago 

Although not a complete picture, as data can be hard to come by and validate, researchers over at Bromium have estimated cybercrime to reach an unbelievable cost of about $1.5 trillion dollars.  Take the numbers with a grain of salt, but the breakdown does give some understanding of the growing problem we face.  Even if it were a tenth of this amount, it is enough to bring in flocks of burgeoning criminals to explore how they can get a piece of this pie.  For organized criminals, it is worthy of doubling efforts to push this number further, making other illicit avenues of revenue pale in comparison.

For cybersecurity professionals, realize the sheer weight and momentum we must undermine.  Attackers are not going away, not sitting idly by, and not giving up regardless of the controls you institute.  We must be smarter and act in coordination against the tidal wave that will continue to roll-in.  This is a long-game scenario.  Dig in.  

Tactics are fine for daily activities, but they don't win such wars.  Strategic thinking is necessary.  

A good article can be found here: https://venturebeat.com/2018/04/21/the-web-of-profit-a-look-at-the-cybercrime-economy/ and more data with references to the original blog here: https://globenewswire.com/news-release/2018/04/20/1482411/0/en/Hyper-Connected-Web-of-Profit-Emerges-As-Global-Cybercriminal-Revenues-Hit-1-5-Trillion-Annually.html

The immense financial rewards as a motivator to cyber criminals is just another piece of the bigger picture that requires bigger thinking.  As for me, I am contemplating writing up a series of blogs or potentially even a longer periodical to discuss the strategic challenges and avenues which hold the best promise.  A few colleagues have asked for a book on the subject.  Over my career, spanning the better part of three decades, I have spent an inordinate amount of time thinking in these terms and have witnessed how almost every business, organization, sector, and government still needs real help to organize in a way so their cybersecurity program is structured to be 'sustainable'.  That is, to be effective over the long term, while not overly costly, or burdensome for customers.  It is a fine balance that must be flexible to align with ever changing attacks and growing threats.

Creating fixed-fortifications is, as General Patton once said, is a monument to man's stupidity.  Adaptability with insights to how adversaries will maneuver in the future, is key.  "Know your enemy and know yourself" (Sun Tsu) is the mantra for the next decade and beyond for securing our digital world.


Interested in more? Follow me on your favorite social sites for insights and what is going on in cybersecurity: LinkedIn, Twitter (@Matt_Rosenquist), YouTube, Information Security Strategy blog, Medium, and Steemit  

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

That is absolutely an insane amount! $1.5 trillion dollars! To put it into perspective, that is equivalent to the GDP of Russia.

The size is almost to big to believe or comprehend. Just wow!!!

How could a person who is not fully educated in this matter, help themselves and others become safer in the digital world?

the extreme payment just seems like another source of motivation for the people who do this sort of thing daily

thank you very much for the post. criminals will always find a way out. the figures are of course very large, even if divided as you say

cyber crime is very dangerous for general people .

safe to from cyber crime we need most security.

Most every country lack good security, criminal rate is yielding every day by day. From people at the top to the people at the root.

Yes, Day by day cybercrime is increasing .. ....
This is likely to bring about an increase in privacy
invasion and incidence of cyber crimes
and misdemeanors. To be able to effectively.

With high level of security, can certainly ward off attacks from groups of cyber crime..