ERPScan experts decide on the major cyber risks for various industries 2017

Palo Alto, CA – February 7, 2018ERPScan experts estimated cyber risks for various industries.

The ERPScan research team released “ERPScan Data breach Report 2018” dedicated to the analysis of major attacks in various industries. If your company is based in the USA and employs 5000+ workers, you may become a victim of a breach, which average cost amounts to $5 million.

Basing on more than 200 incidents, the report aimed to show the specifics of cyber-endangered industries and their Business Applications systems.

Along with numerous findings, the results revealed that

  • companies in Media sphere were the most attacked ones among all the spheres of activity in 2017;
  • the UK became the biggest victim of Healthcare data breaches;
  • loopholes in CRM and POS systems were a common cause of Espionage attacks in Retail sector;
  • hacking crypto projects are going to turn into a new hot topic.

Speaking about the characteristics of attacks, the ERPScan research team analyzed each incident according to its type or threat – Espionage, Sabotage or Fraud, and attack techniques. It was possible to estimate average losses if the information on this was publically available. Aside from average data breach costs, analysts estimated Espionage attacks, with 14 million user accounts affected in an average, and a common Sabotage that led to some two-day downtime.

For better risk assessment, every victim company was analyzed according to country, size, and staffing level. ERPScan also decided whether the company belonged to Financial, Manufacture, Healthcare or another sector among the chosen ones. In some cases, it was also possible to divide companies into different sub-spheres.

Among the affected companies this year were such world-known leaders as HBO, Equifax, Honda, Apple, McDonald’s, etc. It means that organizations that seem to have enough power and finances to protect themselves are actually vulnerable to cyberattacks.

As for takeaways, we shouldn’t underestimate the attention of the hackers to such topics as cryptocurrency and Machine Learning. They are supposed to continue being at risk. What is more, we assume that the number of target attacks on companies with the use of industry systems and specific business applications like ERP, EMR, and CRM, will also grow in the future. So now is the best time to think of cybersecurity.

Alice Jossan, Cybersecurity Analyst at ERPScan

Everyone who wants to learn more about cyber-risks peculiarities in various industries is invited to the webinar.