The True Cost of a Cyber Attack

05 Nov 2015

The True Cost of a Cyber Attack

Cyber Attacks can be immensely costly to a breached business. As-well-as a tarnished reputation, the financial cost to an organisation can be massive and be an issue long after a attack has taken place.

A string of high profile cyber-attacks took place in October with the cyber-attack against internet provider TalkTalk being the most publicised. British Gas and Vodafone also suffered from negative headlines, further highlighting the need for companies to have robust cyber security measures in place. The headlines in the media will have no doubt knocked the confidence of customers signed up with those companies and will likely result in financial losses too, either from customers leaving or in the cost of implementing damage control measures.

One incident that highlights just how costly a cyber-attack can be to an organisation was the cyber-attack against Target. The American retail company suffered a cyber security breach in 2013 and has been paying the price ever since.

The company was breached in November 2013 after someone installed malware in its security and payments system. The malware was designed to steal the details of every credit card used at Target’s 1,797 US stores. Whenever a customer went to pay for anything by card the malware captured the card number and stored it onto a Target server that had been taken over by the hacker(s).

The breach resulted in the theft of 40 million credit card numbers and 70 million addresses, phone numbers, and other pieces of personal information.

The cyberattack cost Target $162 million, but that cost is likely to continue to rise after a Federal Judge rejected Target’s bid to halt a lawsuit by banks seeking to recoup the money they spent on reimbursing fraudulent charges. The cost of issuing new credit and debit cards was also huge for the banks. The final cost of the breach could reach into the billions of Dollars.

A more recent example of just how costly a cyber security breach can be was Morrisons. Last year, a disgruntled former employee breached the company’s cyber defences and leaked the personal details of thousands of Morrisons employees. The leak saw bank, salary and National Insurance details being sent to data sharing websites and news outlets.

As a result, more than 2,000 of the company’s employees are suing it in what is believed to be the biggest ever claim in relation to a data breach in the UK.  The incident has harmed the company’s reputation and has harmed its share value.

The true cost of a cyber-attack is often far greater than the costs we see in the media. As in Target’s case the financial implications of an attack can spread to other organisations, not to mention the cost to customers that become victims and suffer monetary losses of their own. The money that then has to be spent on introducing new cyber security measures, training of staff and the overhaul to company policies all adds up.

With 90% of companies reporting security breaches of some kind over the past year an organisation has to take cyber security seriously. Investing in staff training and tougher security measures is a part of the process to protect an organisation, but that means little if there is no plan to deal with the aftermath of an attack. By having stringent policies in place a company can limit the impact and be able to respond to a cyber security breach.

It is inevitable that there will be other attacks like those carried out against TalkTalk, Target and many others. Now is the time to take action and put a robust cyber security plan in place.

Don’t become a target, invest in protection and seek the advice of the professionals at PGI Cyber.

For more information on the services and training offered by PGI give us a call on 0207 887 2699or email us at

For the latest PGI updates like our pages on LinkedIn – PGI,  PGICyber  Facebook– PGI,  PGI Cyber  and  Twitter

Share this article


Your free global geopolitical
risk dashboard

PGI’s Risk Portal tool provides daily intelligence feeds, country threat assessments and analytical insights, enabling clients to track, understand and navigate geopolitical threats.

The Risk Portal gives users up-to-date information and analysis on global affairs.

The Risk Portal allows users to visualise information in a unique and instantly understandable way. Mapping filters enable the visualisation of incidents by threat category, time period, perpetrator and target type.

Risk Portal users can upgrade their accounts to include the Report Builder and Country Profile Generator features. The Report Builder allows users to select information, data and images from the Risk Portal and create bespoke reports and emails.

Subscribers to PGI’s Bespoke services receive tailored analysis on specific sectors and geographies of interest, delivered at a frequency they determine.

Visit the Risk Portal

Subscribe to our Cyber Bytes Newsletter

Keep yourself in the loop with PGI by signing up to our Monthly Cyber Bytes email. You will receive updates, tips and narrative around what has been happening in the world of information security.

Get in touch today

For more information on how we can help you or your business, please contact us via:

Related News

CISMP, CISSP and CISM - what's in an acronym?

20 Mar 2017

There is a wide range of different security courses available, and a mind-boggling array of certific...

Read news article

International Womens Day - Pioneering Women in Tec...

08 Mar 2017

Pioneering Women in Technology – Katherine JohnsonThe Oscar season has been and gone. The...

Read news article

Law Firms and why they need cyber security

06 Mar 2017

Suffering a data breach can be devastating for any company but for law firms the impacts can be part...

Read news article
Back to the News Hub

Follow us

+44 (0)207 887 2699
©2017 PGI - Protection Group International Ltd. All rights reserved.
PGI - Protection Group International Ltd is registered in England & Wales, reg. no. 07967865
Registered address: Cascades 1, 1190 Park Avenue, Aztec W, Almondsbury, Bristol BS32 4FP