Banking Exchange Magazine Logo

Global survey uncovers business attitudes toward cybercrime

Businesses generally count on banks to bear the brunt of losses

Global survey uncovers business attitudes toward cybercrime

A wide-ranging, global survey of businesses of all sizes reinforces the notion that they will shift relationships away from financial institutions that suffer data breaches or somehow lose the trust of their clients.

However, it also indicates that businesses other than financial institutions are more likely to be lax in security preparedness.

The survey, by Kaspersky Laboratory, notes that financial institutions are more likely than ecommerce and online retail organizations to adopt technologies that would further secure online financial transactions. A total of 3,900 respondents from 27 countries and from companies of all sizes took part in this survey. Kaspersky Lab, based in Woburn, Mass., is a privately held vendor of endpoint protection solutions, and operates in about 200 countries.

[Note: According to the Identity Theft Resource Center, of the 533 U.S. breaches recorded so far in 2014, 23, or 4%, occurred at financial institutions. The rest occurred at businesses, educational institutions, government agencies, and medical/healthcare facilities. According to ABA, In 2013, banks stopped $13 billion in fraud attempts. ]

The main findings from Kaspersky Lab’s survey include:

• Businesses place high importance on guarding financial/transaction information—34% of businesses claim that the protection of sensitive information, including financial information, is a top priority of their IT department. Forty-five percent of businesses feel they need to take improved measures to protect financial transactions. Ecommerce and online retail organizations were the least likely to keep their existing antifraud measures up to date. They also reported only a slightly above-average interest in taking improved measures to protect financial transactions.

• Businesses take a pragmatic view toward losses incurred by cybercrime—Roughly one out of every four businesses—27%--is willing to suffer losses incurred by cybercrime because they believe the cost of protection will outweigh the cost of dealing with the losses. Moreover, 52% of financial service businesses have a policy of reimbursing customers’ losses caused by cybercrime without investigation. Survey indications put the true cost of financial data lost at between $66,000 and $938,000, depending on the size of the company.

• Financial companies are not immune to cyber threats—48% of ecommerce/online retail businesses and 41% of financial services organizations have reported losing some type of finance-related information to cybercriminal activities within the past 12 months.

• The security reputation of financial institutions plays a critical part in businesses’ propensity to do business with them—82% would consider leaving an institution that suffered a breach Moreover, businesses are more open to the idea of investing in premium software solutions to protect financial transactions; 53% prefer to pay more for the best security solution for transaction protection.

• Businesses do have a relatively broad view about who is ultimately responsible for the risks of financial transactions—Only 35% of survey respondents think banks are primarily responsible, whereas financial institutions in this survey believe 85% of the burden is being placed on them. Smaller businesses rely more heavily on financial institutions to take responsibility for the safeguarding of their transactions and data. However, even among larger businesses, only one in five feels it is the responsibility of their security department.

• Online services providers have room to adopt more sophisticated security measures for their clients—4% of businesses operating some kind of online service admitted they took no specific measures to protect their customers/clients from online financial fraud.

John Ginovsky

John Ginovsky is a contributing editor of Banking Exchange and editor of the publication’s Tech Exchange e-newsletter. For more than two decades he’s written about the commercial banking industry, specializing in its technological side and how it relates to the actual business of banking. In addition to his weekly blogs—"Making Sense of It All"—he contributes fresh, original stories to each Tech Exchange issue based on personal interviews or exclusive contributed pieces. He previously was senior editor for Community Banker magazine (which merged into ABA Banking Journal) and for ABA Banking Journal and was managing editor and staff reporter for ABA’s Bankers News. Email him at [email protected]

back to top


About Us

Connect With Us



Belt and Suspenders

Date/Time: October 19, 2:00 CT / 3:00 ET

How Multiple Layers of Defenses Work Together to Keep Your Bank Covered

Cyber threats and attack vectors are ever-changing, especially due to the current geopolitical climate and distribution of data. Financial institutions remain attractive targets for cyber criminals due to the amount of sensitive data they hold. Join CSI’s Director of Product Strategy, Sean Martin, for his insight into why and how institutions should embrace a holistic cybersecurity approach to strengthen their defenses against these evolving threats. You’ll learn: 


This webinar is brought to you by:
OneSpan logo