Whoever said “crime doesn’t pay” hasn’t been following the growth of cybercrime across the globe. A thriving underground economy has evolved over the past decade to become a massive industry. Estimates in the Web of Profit research paper show cybercriminal revenues worldwide of at least $1.5 trillion – equal to the GDP of Russia. If cybercrime was a country, it would have the 13th highest GDP in the world…
Which brings me around to a presentation on cybersecurity that I recently shared with colleagues. Up on the screen popped an extraordinary data visualization created by Information is Beautiful that depicts the world’s biggest data breaches over a span of 14 years in an interactive online graphic. Each breach is represented by a circular “bubble” whose diameter varies in relation to the severity of the breach. Clicking on a breach bubble opens additional details about the incident.
When it comes to spotting trends, there’s nothing like having a data-rich timeline for reference, and the ‘Information is Beautiful’ infographic does not disappoint. Scrolling through the years from 2004 through 2010, there are relatively few annual breaches. But in the 2011-2012 timeframe, the visual data dramatically changes as the number of hacks and compromised records spikes.
Why this sudden change? Threat actors were learning to more effectively monetize their efforts through highly-inventive and disruptive methods.
Take ransomware attacks on healthcare organizations, for example. Attacks through remote access systems have become the number one patient safety risk, according to the ECRI Institute’s annual Top 10 Health Technology Hazards for 2019. According to ECRI, “The consequences of an attack can be widespread and severe, making this a priority concern for all healthcare organizations. In critical situations, this could cause harm or death.” Healthcare providers quickly pay ransoms to avoid serious repercussions.
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Tripwire Guest Authors. Read the original post at: https://www.tripwire.com/state-of-security/featured/cybercrime-end-sight/