February 23, 2018 By David Bisson 2 min read

The global cost of cybercrime rose to unprecedented levels in 2017, according to recent research.

In its new report titled “Economic Impact of Cybercrime — No Slowing Down,” McAfee and the Center for Strategic and International Studies (CSIS) revealed that cybercrime cost the world between $445 and $608 billion in 2017. That is $100 billion more than the minimum worldwide cost estimated for 2014.

What’s Driving Up the Global Cost of Cybercrime?

The report’s authors attributed this increase to five trends, most notably the rise of ransomware. The FBI noted that victims of ransomware paid $209 million to recover stolen files in the first quarter of 2016, a significant increase over the $24 million in ransom payments made throughout the year prior, SC Magazine reported.

In addition, 70 new cryptomalware strains emerged over the course of the year, more than double the number of ransomware samples that emerged between 2013 and 2015. The threat of ransomware arguably reached its peak in Q1 2017 with the WannaCry outbreak before declining in the next six months as cryptominers surged in popularity among computer criminals.

Cybercrime-as-a-service, a greater reliance on anonymization services such as Tor, the rise of state-sponsored theft, and the increasingly popularity of both identity theft and intellectual property theft also drove up the cost of cybercrime in 2017, according to the report.

Reducing the Cost of Cybercrime

Responding to these trends, McAfee chief scientist Raj Samani noted that organizations can protect themselves against cybercriminals by improving their internal communication channels.

“Businesses often struggle to remain vigilant against threats because they have too many tools operating in silo at once — and failing to communicate with each other,” he said, as quoted by Infosecurity Magazine. “By making sure that tools can work together and removing siloed security teams, organizations can find the right combination of people, process and technology to effectively protect data, detect threats and, when targeted, rapidly correct systems.”

Companies should implement security measures, as well as share threat intelligence with other organizations and law enforcement, to reduce the global cost of cybercrime.

More from

Is AI saving jobs… or taking them?

3 min read - Artificial intelligence (AI) is coming to take your cybersecurity job. Or, AI will save your job.Well, which is it?As with all things security-related, AI-related and employment-related, it's complicated.How AI creates jobsA major reason it's complicated is that AI is helping to increase the demand for cybersecurity professionals in two broad ways. First, malicious actors use AI to get past security defenses and raise the overall risk of data breaches. The bad guys can increasingly use AI-based tools for improved reconnaissance…

CISA warns about credential access in FY23 risk & vulnerability assessment

3 min read - CISA released its Fiscal Year 2023 (FY23) Risk and Vulnerability Assessments (RVA) Analysis, providing a crucial look into the tactics and techniques threat actors employed to compromise critical infrastructure. The report is part of the agency’s ongoing effort to improve national cybersecurity through assessments of vulnerabilities in key sectors. Meanwhile, IBM’s X-Force Threat Intelligence Index 2024 has identified credential access as one of the most significant risks to organizations.Both reports shed light on the persistent and growing threat of credential…

Are we getting better at quantifying risk management?

4 min read - As cyber threats grow more sophisticated and pervasive, the need for effective risk management has never been greater. The challenge lies not only in defining risk mitigation strategy but also in quantifying risk in ways that resonate with business leaders. The ability to translate complex technical risks into understandable and actionable business terms has become a crucial component of securing the necessary resources for cybersecurity programs.What approach do companies use today for cyber risk quantification? And how has cyber risk…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today