1.888.900.DRIZ (3749)
The Driz Group
  • Managed Services
    • SME CyberShield
    • Web Application Security >
      • Schedule WAF Demo
    • Virtual CISO
    • Compliance >
      • SOC1 & SOC2
      • GDPR
    • Third-Party Risk Management
    • Vulnerability Assessment >
      • Free Vulnerability Assessment
  • About us
    • Testimonials
    • Meet The Team
    • Resources
    • In the news
    • Careers
    • Subsidiaries
  • Contact
    • Newsletter
  • How WAF Works
  • Blog
  • Managed Services
    • SME CyberShield
    • Web Application Security >
      • Schedule WAF Demo
    • Virtual CISO
    • Compliance >
      • SOC1 & SOC2
      • GDPR
    • Third-Party Risk Management
    • Vulnerability Assessment >
      • Free Vulnerability Assessment
  • About us
    • Testimonials
    • Meet The Team
    • Resources
    • In the news
    • Careers
    • Subsidiaries
  • Contact
    • Newsletter
  • How WAF Works
  • Blog

Cybersecurity Blog

Thought leadership. Threat analysis. Cybersecurity news and alerts.

5/21/2019

0 Comments

How Much Does Cybercrime Cost Canadian Companies?

 
cybercrime cost canada

How Much Does Cybercrime Cost Canadian Companies?

Cybercrime continues to pose a real risk to businesses of all sizes, across all industries. Attackers have ever-more-sophisticated tools and techniques at their disposal, empowering them to launch bold hacks — with potentially devastating results.

We all want to believe we’ve taken the necessary steps to build a safe, secure business that’s strong enough to resist cyber-attacks. We all want to trust our team is informed and educated enough to avoid opening the doors for viruses to simply walk into our systems. But, sadly, that’s not always the case.

Businesses worldwide have a shared responsibility — to their clients and employees — to take precautions against cybercrime. When personal and financial details are leaked by attackers, people and businesses alike can suffer. Research reveals the average price paid by Canadian firms in 2018 amounts to a staggering US$9.25 millionper business.

This is an astonishing sum of money for any company, even those operating at an international or global level. Let’s take a closer look at which types of attacks were most common, what the biggest vulnerabilities are and more.

The Most Common Cybersecurity Risks Facing Canadian Businesses

Cybercrime comes in many forms, but the most prevalent throughout 2018 was the malware-based attack. Individual companies in Canada lost over US$2 million on average to these, and the number of malware-based attacks actually grew by 11 percent from the previous year.

That’s sobering news for any company taking a lax approach to its cybersecurity. Malware can infect your system and cause major disruptions with surprising ease: all it takes is one unaware employee downloading a suspicious attachment from an unsecure website or email. Your entire business could be affected for days or weeks, costing you valuable time and money.

As well as malware-based cybercrimes, ransomware became even more of a danger to Canadian companies in 2018, growing by 15 percent. This is a particularly unnerving type of attack, essentially locking certain key aspects of your business’s system until you agree to pay the amount of money (typically, a cryptocurrency) demanded.

The risk of ransomware

Ransomware may bring your working processes to a halt or, to a lesser extent, cause severe delays. Clients may become frustrated and concerned by your system’s vulnerabilities, choosing to take their business elsewhere. They could spread the word of your security flaws to acquaintances, relating their own stories either privately or publicly.

This can affect your reputation enough to leave prospective new clients wondering how safe their data will be in your hands. Winning their trust and demonstrating how you plan to handle any similar incidents in the future would be a sizeable challenge, particularly when you’re in a competitive industry.

Around 70 percent of ransomware attacks of 2018 were launched against small businesses, while the average sum of money demanded was more than $110,000 — a huge amount for any small firm. But that’s not the highest price asked for: one ransomware attack saw the victim faced with a charge of over $8 million. And one client actually paid just under $1 million to regain access to their entire system.

Some of these figures are mind-boggling, especially when even the biggest brands have so many overheads to consider. While global companies may appear to have millions of dollars to sacrifice when struck by a ransomware attack, they have many people depending on them — employee salaries, products, services and more all must be taken into account.

Enough of a powerful hit may have a domino effect, causing significant ripples to occur for a long time after. Sadly, though, one of the areas most commonly hit by ransomware attacks was healthcare. Loss of data and resources here could mean the difference between life and death in some cases.

Phishing scams

Another form of cybercrime increasing in popularity during 2018 was phishing, with a 16 percent riseon 2017’s numbers. These involve cybercriminals posing as businesses or reliable individuals to fool victims into sharing critical information like passwords, credit card details and similar.

Research reveals an incredible 85 percent of firms questioned have come into contact with this type of cyberattack.

One of 2018’s prominent phishing scams focused on the World Cup. Targets received emails claiming they were the lucky winners of tickets, offering the chance to become part of the excitement in Russia. For dedicated soccer fans with little to no awareness of phishing scams, such a scheme is easy to fall for, leading you to hand over crucial information in the hopes of watching a game.

However, anyone opening attachments, clicking on links or providing their details in exchange for said tickets would be in for a nasty surprise.

Taking Steps to Protect Your Business Against Cybercrime

The prevalence of cybercrime highlights just how important a proper cybersecurity program is for every single company. Simply taking the stance of assuming your business faces no risk because there are bigger targets is impractical, not to say dangerous. Just one powerful attack could cause lasting problems your team is simply unprepared for.

Taking precautions to strengthen your business’s cybersecurity plans and procedures is vital to minimize your risk of falling prey to hackers. Work with professionals to secure your system and safeguard against breaches — this offers valuable peace of mind, leaving you (and your team) free to focus on core responsibilities.

Effective training for each employee with access to any device is paramount too. It only takes one simple mistake to bring a vulnerable system to its knees, and an uninformed worker may well have no idea what constitutes a threat. There are various solutions to protect your business and build a security-savvy team with the skills to identify dangers.

Want to learn more about your cybersecurity options? Please don’t hesitate to get in touchwith The Driz Group’s experts now!

0 Comments

Your comment will be posted after it is approved.


Leave a Reply.

    Author

    Steve E. Driz, I.S.P., ITCP

    Picture
    View my profile on LinkedIn

    Archives

    March 2025
    February 2025
    January 2025
    November 2024
    October 2024
    September 2024
    July 2024
    June 2024
    April 2024
    March 2024
    February 2024
    January 2024
    December 2023
    November 2023
    October 2023
    September 2023
    August 2023
    July 2023
    June 2023
    May 2023
    April 2023
    March 2023
    February 2023
    January 2023
    December 2022
    June 2022
    February 2022
    December 2021
    November 2021
    October 2021
    September 2021
    August 2021
    July 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    December 2019
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017
    July 2017
    June 2017
    May 2017
    April 2017
    March 2017
    February 2017
    January 2017
    December 2016
    October 2016
    August 2016
    May 2016
    March 2016
    January 2016
    November 2015
    October 2015
    August 2015
    June 2015

    Categories

    All
    0-Day
    2FA
    Access Control
    Advanced Persistent Threat
    AI
    AI Security
    Artificial Intelligence
    ATP
    Awareness Training
    Blockchain
    Botnet
    Bots
    Brute Force Attack
    CASL
    Cloud Security
    Compliance
    COVID 19
    COVID-19
    Cryptocurrency
    Cyber Attack
    Cyberattack Surface
    Cyber Awareness
    Cybercrime
    Cyber Espionage
    Cyber Insurance
    Cyber Security
    Cybersecurity
    Cybersecurity Audit
    Cyber Security Consulting
    Cyber Security Insurance
    Cyber Security Risk
    Cyber Security Threats
    Cybersecurity Tips
    Data Breach
    Data Governance
    Data Leak
    Data Leak Prevention
    Data Privacy
    DDoS
    Email Security
    Endpoint Protection
    Fraud
    GDPR
    Hacking
    Impersonation Scams
    Incident Management
    Insider Threat
    IoT
    Machine Learning
    Malware
    MFA
    Microsoft Office
    Mobile Security
    Network Security Threats
    Phishing Attack
    Privacy
    Ransomware
    Remote Access
    SaaS Security
    Social Engineering
    Supply Chain Attack
    Supply-Chain Attack
    Third Party Risk
    Third-Party Risk
    VCISO
    Virtual CISO
    Vulnerability
    Vulnerability Assessment
    Web Applcation Security
    Web-applcation-security
    Web Application Firewall
    Web Application Protection
    Web Application Security
    Web Protection
    Windows Security
    Zero Trust

    RSS Feed

Picture

1.888.900.DRIZ (3749)

Managed Services

Picture
SME CyberShield
​Web Application Security
​Virtual CISO
Compliance
​Vulnerability Assessment
Free Vulnerability Assessment
Privacy Policy | CASL

About us

Picture
Testimonials
​Meet the Team
​Subsidiaries
​Contact us
​Blog
​
Jobs

Resources & Tools

Picture
​Incident Management Playbook
Sophos authorized partner logo
Picture
© 2025 Driz Group Inc. All rights reserved.
Photo from GotCredit