From Cyber-Clumsy to Cybercrime: Examining Why Businesses Underinvest in Cybersecurity

Earlier this year, Paul Ferrillo and Chris Veltsos recorded a nine-part podcast series complementing their recent book release, “Take Back Control of Your Cybersecurity Now.” Now, Paul and Chris are back to talk with IBM’s Mitch Mayne about current topics in security.

If You Exist on the Internet Today, You Are a Target

This is the unfortunate but critical lesson Paul and Chris draw from the present landscape of cyberattacks, including WannaCry in May and the exposure of a U.S. voter database even more recently.

Cybercrime is now a full-fledged industry and, like any other successful business, it won’t be disappearing any time soon. In such an environment, it is crucial that chief information security officers (CISOs) and other security professionals are able to effectively communicate with other executives and board members.



Listen to the complete podcast to learn why businesses continue to underinvest in cybersecurity even in the face of increasingly sophisticated and widespread attacks — and why even doing nothing is a risk decision.

Download the Ponemon Institute 2017 Cost of Data Breach Global Study

To stay up to date on the latest cybersecurity content, subscribe to the Security Intelligence podcast and listen to all the episodes in the ongoing “Deciphering Today’s Cyber Headlines with Mitch Mayne, Paul Ferrillo and Chris Veltsos” series.

You can also read the FBI’s 2010 list of ten typical cybercrime specializations and learn more about the behavioral economics of why executives underinvest in cybersecurity.


Mitch Mayne

Public Information Officer, IBM X-Force Threat Intelligence

Mitch is the Public Information Officer (PIO) for IBM Security X-Force Threat Intelligence, and is responsible for how...