rising Downtime Costs force Businesses to Embrace Proactive Cybersecurity

The escalating threat of cyberattacks and resulting unplanned downtime is costing Global 2000 companies an average of $200 million annually, with far-reaching consequences beyond financial losses. Recent high-profile incidents demonstrate a critical need for businesses to shift from reactive security measures to a proactive, intelligence-driven approach.

Ransomware Attacks Surge, Impacting Critical Infrastructure

2024 has already witnessed important disruptions caused by ransomware attacks. The breach at Change Healthcare, a subsidiary of UnitedHealth Group, stands as the largest health and medical data breach in U.S.history, exposing the personal data of approximately 190 million individuals and causing weeks of operational outages for medical groups nationwide. Concurrently, a separate attack on CDK Global, a software provider serving nearly 15,000 auto dealerships across North America, resulted in an estimated $1 billion in losses due to a three-week disruption.

These incidents highlight the vulnerability of critical infrastructure and the devastating financial repercussions of prosperous cyberattacks. Beyond immediate financial costs, downtime erodes customer trust and loyalty, diminishes productivity, and can even trigger legal and privacy violations.

The Expanding Threat Landscape

Managing risk and mitigating downtime is becoming increasingly complex. The interconnected nature of modern organizations, coupled with the rapid adoption of emerging technologies like artificial intelligence (AI), is expanding the attack surface and creating new vulnerabilities for malicious actors to exploit.

Cyberattacks are also becoming more sophisticated,fueled by the availability of AI-driven malware and “malware-as-a-service” platforms. These tools empower attackers to launch more damaging and effective campaigns.

A shift Towards Proactive Resilience

Experts emphasize the need for a basic shift in cybersecurity strategy. “We’ve had a traditional way of doing things that’s actually worked pretty well for maybe 15 to 20 years,but it’s been based on detecting an incident after the event,” explained a global cyber resilience technical expert at Hitachi Vantara. “Now, we’ve got to be more preventative and use intelligence to focus on making the systems and business more resilient.”

This proactive approach requires organizations to move beyond simply reacting to threats and instead focus on anticipating and preventing them. This includes leveraging threat intelligence, strengthening system defenses, and developing robust business continuity plans.

The report, available for download [link to report], offers further insights into building a more resilient cybersecurity posture.

This content was produced by Insights, the custom content arm of MIT Technology Review, and was researched, designed, and written entirely by human writers, editors, analysts, and illustrators, with AI tools used only in secondary production processes subject to thorough human review.