Light Dark
August 31, 2016 By Dan Mallinson 2 min read
Data Protection

For security leaders today, the question of how to stop cyberattacks might seem pretty obvious. But for small and midsize businesses, the role of security leader often doesn’t exist at all and the responsibility of protecting the organization against cyberattacks instead lies elsewhere in the organization.

This presents a real problem since these companies may not have the skills and tools available to prevent, detect or respond to a cybersecurity incident.

More Than Just Money at Stake

According to the Ponemon Institute’s “2016 Cost of Data Breach Study,” the average total cost of a data breach in the U.K. is 2.53 million British pounds, which is a 6.5 percent increase since 2013 and equates to 102 pounds ($158) for every record breached.

But the impact of a cybersecurity breach extends far beyond the financial implications. The damage that data breaches can do to a company’s brand is just as costly, if not more. Customers who have their personal information exposed as a result of insufficient cybersecurity are unlikely to return and rebuilding that trust can, in many cases, be impossible.

In 2015, 736 million records were exposed due to a record 3,930 data breaches. The risk doesn’t just sit with smaller enterprises either — as recent history shows us, even the big players aren’t immune.

How to Counterattack Cyberattacks

There are three critical factors you should consider when dealing with the increasing risk of cyberattacks:

Prevention

The first line of defense against security breaches is preventing them from happening in the first place. Don’t settle for a reactive defense strategy — make prevention a priority.

You need to make sure you have the right preventative measures in place and generate awareness within your organization about good cybersecurity practices. After all, data breaches aren’t just a product of malicious activity; human error and bad practices can also leave your business exposed.

Detection

Your ability to respond to cyberthreats becomes negligible if you don’t have the visibility to detect them. Cybercriminals can break through conventional defenses without most victims even knowing. The average threat goes undetected for 225 days — an uncomfortably long time for any organization to be exposed. Make sure your business has the right analytics and insight tools for rapid detection of security breaches.

Response

As cyberattacks become more sophisticated, all organizations should have the correct measures in place to be able to react accordingly to any malicious activity before it becomes harmful.

Three Steps to Stop Cyberattacks

  1. Sign up to IBM X-Force Exchange. IBM X-Force Research is one of the world’s most highly respected commercial security research teams. The team monitors and analyzes security issues and produces research assets to help customers and fellow security experts better understand the evolving threat landscape.
  2. Keep up to date with current cybersecurity trends. The latest security analysis and insight from top IT security experts and leaders can help you understand what to watch for in your environment.
  3. Understand the issues and your options. The topic of cybersecurity is broad, dynamic and constantly changing. The issues that are most pertinent to your business will depend on your business needs, infrastructure and industry.
 |  |  |  | 
Dan Mallinson
Digital Strategist, IBM

More from Data Protection
January 27, 2025

How secure are green data centers? Consider these 5 trends

4 min read - As organizations increasingly measure environmental impact towards their sustainability goals, many are focusing on their data centers.KPMG found that the majority of the top 100 companies measure and report on their sustainability efforts. Because data centers consume a large amount of energy, Gartner predicts that by 2027, three in four organizations will have implemented a data center sustainability program, which often includes implementing a green data center.“Responsibilities for sustainability are increasingly being passed down from CIOs to infrastructure and operations…

January 21, 2025

Why maintaining data cleanliness is essential to cybersecurity

3 min read - Data, in all its shapes and forms, is one of the most critical assets a business possesses. Not only does it provide organizations with critical information regarding their systems and processes, but it also fuels growth and enables better decision-making on all levels.However, like any other piece of company equipment, data can degrade over time and become less valuable if organizations aren’t careful. What’s even more dangerous is that neglecting data hygiene can expose organizations to a number of security…

January 3, 2025

Router reality check: 86% of default passwords have never been changed

4 min read - Misconfigurations remain a popular compromise point — and routers are leading the way.According to recent survey data, 86% of respondents have never changed their router admin password, and 52% have never adjusted any factory settings. This puts attackers in the perfect position to compromise enterprise networks. Why put the time and effort into creating phishing emails and stealing staff data when supposedly secure devices can be accessed using "admin" and "password" as credentials?It's time for a router reality check.Rising router risksRouters…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature