The 2018 Cost of a Data Breach Study from Ponemon Institute is now available.

IBM is proud to sponsor the 12th annual “Cost of Data Breach Study,” the industry’s gold-standard benchmark research, independently conducted by the Ponemon Institute.

Ponemon Institute researchers recruited 419 organizations in 11 countries and two regions to participate in this year’s research. More than 1,900 individuals who are knowledgeable about data breach incidents in these 419 organizations were interviewed.

Incident Response Reduces the Cost of a Data Breach

This year’s study found that the average consolidated total cost of a data breach is $3.62 million, a decrease of 10 percent over last year. However, 48 percent of the decrease over last year can be attributed to the strong U.S. dollar, with significant variability from country to country.

The country with the highest cost, both per record and per incident, is the U.S., whereas the countries with the lowest cost per record and per incident are Brazil and India. Despite the decrease in cost, the average size of a data breach (number of records lost or stolen) increased 1.8 percent over last year.

Among the most notable findings of the study, the research identified a number of factors that reduced the average $141 per-record cost of a data breach. For starters, having an incident response team — either in-house, via a third party or a combination of both — can shave off $19.30 per record. Even for a breach of 10,000 records, that represents savings to the tune of $193,000 — or $1.9 million for a breach of 100,000 records.

Learn More

Read the complete “2017 Cost of Data Breach Study” to learn:

  • The average costs and consequences related to experiencing a data breach incident in various countries and regions;
  • What regional trends affect the cost of a data breach; and
  • The most common factors that influence and can limit the cost of a data breach.

Download the Ponemon Institute 2017 Cost of Data Breach Study: Global Overview

You can also use the new data breach calculator to explore the industry, location and cost factors in the event of a security incident.

More from Data Protection

Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about

4 min read - At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about: RSAC 2024 is all about artificial intelligence (or as one CISO said, “It’s not RSAC; it’s RSAI”). The chatter around AI shouldn’t have been a surprise to anyone who attended…

3 Strategies to overcome data security challenges in 2024

3 min read - There are over 17 billion internet-connected devices in the world — and experts expect that number will surge to almost 30 billion by 2030.This rapidly growing digital ecosystem makes it increasingly challenging to protect people’s privacy. Attackers only need to be right once to seize databases of personally identifiable information (PII), including payment card information, addresses, phone numbers and Social Security numbers.In addition to the ever-present cybersecurity threats, data security teams must consider the growing list of data compliance laws…

How data residency impacts security and compliance

3 min read - Every piece of your organization’s data is stored in a physical location. Even data stored in a cloud environment lives in a physical location on the virtual server. However, the data may not be in the location you expect, especially if your company uses multiple cloud providers. The data you are trying to protect may be stored literally across the world from where you sit right now or even in multiple locations at the same time. And if you don’t…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today