{"id":1065,"date":"2024-12-04T09:30:00","date_gmt":"2024-12-04T09:30:00","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=1065"},"modified":"2024-12-04T09:30:00","modified_gmt":"2024-12-04T09:30:00","slug":"63-of-companies-plan-to-pass-data-breach-costs-to-customers","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=1065","title":{"rendered":"63% of companies plan to pass data breach costs to customers"},"content":{"rendered":"
\n
\n
\n
\n
<\/div>\n

Consumers may be more on the hook for paying for the rising costs of data breaches<\/a> than they realize, as companies increasingly turn to price hikes as part of their post-breach cost-recovery strategies. \u00a0<\/p>\n

According to a report from IBM earlier this year<\/a>, nearly two-thirds of companies plan to pass along data breach costs directly to their customers \u2014 a practice that is sharply increasing, IBM said.\u00a0<\/p>\n

\u201cWhen organizations find themselves saddled with multimillion-dollar costs, they may look to recoup those costs elsewhere. One option is to pass them along to their own customers in the form of price hikes, which is an increasing trend. Raising prices can be risky in a market already facing pricing pressure,\u201d IBM\u2019s researchers wrote. \u201cMost organizations said they planned to increase prices of goods and services following a data breach, passing costs along to customers. The share of organizations that planned to do so increased to 63% this year from 57% last year, representing a 10.5% increase.\u201d<\/p>\n

The survey did not detail the percentage of costs companies plan to recoup from customers. And, depending on a company\u2019s customer base and pricing, it\u2019s not clear whether the increase would be noticed by most customers, but Nabil Hannan, field CISO for NetSPI, argued that any pass-along costs absolutely cannot be hidden from customers.<\/p>\n

\u201cThere may be legitimate reasons why you have to pass these costs to the customer, but you must do it with transparency,\u201d Hannan said.\u00a0<\/p>\n

In today\u2019s social media environment, he explained, the risk of a customer calculating their bill and discovering the increase are too severe.\u00a0\u201cYou need just one [customer] \u2014 the right one \u2014 to figure it out and then it gets blasted in the media,\u201d he said.<\/p>\n

But, Hannan argued, there may be a silver lining for CISOs. A lot of the traditional cybersecurity budget arguments \u2014 brand reputation, compliance costs, privacy issues, data leakage, and so on \u2014 are starting to wear thin<\/a> with their CFO and CEO audiences.\u00a0<\/p>\n

Not so with cost increases, which can undermine the enterprise\u2019s competitive position. Data-breach cost pass-alongs could potentially impact market share \u2014 the kind of thing that grabs CFO, CEO, and even board attention. That might, Hannan said, give senior management reason to rethink CISO budget requests.<\/p>\n

\u201cThe potential for increased prices and diluted competitiveness provides CISOs with a compelling argument to secure appropriate funding for cybersecurity initiatives,\u201d Hannan said. \u201cIt demonstrates that the cost of inaction \u2014 both in financial terms and in reputational damage \u2014 far outweighs the cost of robust security programs.\u201d<\/p>\n

IDC research VP Chris Kissel underscored the danger for enterprises of passing along data breach costs to customers.\u00a0<\/p>\n

\u201cIf they overplay their hand, they may lose the contract the next time,\u201d Kissel said. \u201cCertain [higher-margin] business are able to pass more of these costs to customers. eBay or Amazon, for example, will never pass along data breach costs. Passing along data breach costs to your customers should be a very last-case scenario.\u201d<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"

Consumers may be more on the hook for paying for the rising costs of data breaches than they realize, as companies increasingly turn to price hikes as part of their post-breach cost-recovery strategies. \u00a0 According to a report from IBM earlier this year, nearly two-thirds of companies plan to pass along data breach costs directly […]<\/p>\n","protected":false},"author":0,"featured_media":1066,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-1065","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/1065"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1065"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/1065\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/1066"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1065"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1065"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1065"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}