August 25, 2015 By Douglas Bonderud 2 min read

Recovering from a security breach is costly. To mitigate the expenses, companies employ a number of solutions, including real-time antivirus solutions, detailed disaster recovery (DR) plans and the use of virtualization to reduce the chance of physical systems failure. But as noted by CSO Online reporting on a new Kaspersky Lab study, going virtual may actually increase the price of recovery.

Dollars and Sense

The Kaspersky Lab effort came to a startling conclusion: Companies using virtual machines (VMs) paid double the amount to recover after a security breach. For example, the average enterprise using physical servers spends $400,000 to recover after a breach. Using virtualization, enterprises were on the hook for $800,000. Small and midsize businesses (SMBs) were hit even harder: SMB breaches in traditional deployments cost $26,000 on average to fix and $60,000 in virtual environments.

So what’s the problem? Kaspersky points to three factors. First is an incorrect assumption of security. IT admins often assume that virtual environments are naturally more secure. Why? Because they believe that in the case of malware infection or file corruption, it’s possible to simply purge the affected machine and spin up a new, clean version. But cybercriminals have developed ways to hop malware from one machine to another or store it in the hypervisor, allowing it to bypass machine reimaging.

Secondly, companies tend to focus in on virtualization as a stand-alone solution and neglect the need for solid disaster recovery plans surrounding their new environment. As a result, downtime is often needlessly prolonged.

Finally, businesses tend to place high-value tasks in virtual environments. When these environments turn inhospitable, the result is often a total loss of access to critical corporate data. And as noted by Virtualization Review, there’s also the problem of forced upgrading, which sees enterprises buying new machines every three to four years to ensure that they receive solid technical support. This swapping of virtual technology prior to its natural end of life offers the perfect opportunity for attackers to capitalize on extended downtime and infect critical systems.

Virtualization Comes Back Down to Earth

The takeaway? There are two options: The easy route says that virtualization simply isn’t worth the cost and companies should stick with traditional deployments. The more complex path suggests that IT professionals and C-suite executives alike need to think of VMs in the same way as their physical counterparts — just as risk-, disaster- and failure-prone.

Rather than looking to VM benefits and pretending downsides don’t exist, the acknowledgment of any shortfall provides the foundation for better security, in turn reducing total spend after a security breach while still offering the benefits of agile VMs. No environment — physical or virtual — is untouchable. By assuming the worst, however, companies can engender the best response from virtual deployments and bring recovery costs in line with physical counterparts.

More from

Skills shortage directly tied to financial loss in data breaches

2 min read - The cybersecurity skills gap continues to widen, with serious consequences for organizations worldwide. According to IBM's 2024 Cost Of A Data Breach Report, more than half of breached organizations now face severe security staffing shortages, a whopping 26.2% increase from the previous year.And that's expensive. This skills deficit adds an average of $1.76 million in additional breach costs.The shortage spans both technical cybersecurity skills and adjacent competencies. Cloud security, threat intelligence analysis and incident response capabilities are in high demand. Equally…

Cyberattack on American Water: A warning to critical infrastructure

3 min read - American Water, the largest publicly traded United States water and wastewater utility, recently experienced a cybersecurity incident that forced the company to disconnect key systems, including its customer billing platform. As the company’s investigation continues, there are growing concerns about the vulnerabilities that persist in the water sector, which has increasingly become a target for cyberattacks. The breach is a stark reminder of the critical infrastructure risks that have long plagued the industry. While the water utility has confirmed that…

What’s behind unchecked CVE proliferation, and what to do about it

4 min read - The volume of Common Vulnerabilities and Exposures (CVEs) has reached staggering levels, placing immense pressure on organizations' cyber defenses. According to SecurityScorecard, there were 29,000 vulnerabilities recorded in 2023, and by mid-2024, nearly 27,500 had already been identified.Meanwhile, Coalition's 2024 Cyber Threat Index forecasts that the total number of CVEs for 2024 will hit 34,888—a 25% increase compared to the previous year. This upward trend presents a significant challenge for organizations trying to manage vulnerabilities and mitigate potential exploits.What’s behind…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today