Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    • Blog
      • /
    • Data Breach
      • /
    • Data Breach Costs Increase by $1 Million When Remote Workers Are Involved

    Data Breach Costs Increase by $1 Million When Remote Workers Are Involved

    Stu Sjouwerman | Nov 30, 2021

    Data Breach Costs IncreaseYou already knew remote workers increase the risk of cyberattack. New data spells out exactly what the impact of a remote workforce is on data breaches and the cost to remediate.

    The hybrid workforce is here to stay, so it’s important to understand the ramifications to cybersecurity in order to better assess the risk posed. I’ve written before about how remote workers adopt bad cybersecurity habits while working from home, as well as the increase in security threats because of remote working. But now we have concrete data that shows when a remote workforce is involved in causing a data breach, the results are far worse.

    According to the IBM Security’s 17th Annual Cost of a Data Breach report, the average data breach now costs $4.24 Million – an increase of nearly 10% from last year’s average of $3.86 Million. This latest version of the report takes the time to carve out the impact of having a remote workforce. According to the report:

    • 5% of the data breaches involved remote workers
    • The average cost of a breach was $1.07 million higher in breaches where remote work was a factor in causing it
    • Organizations with more than 50% of their workforce working remotely took 58 days longer to identify and contain breaches (and it should be noted that the average number of days is 287, making this nearly a year’s time!)

    Now, the answer here is not eliminate the remote workforce. Instead, look at what’s causing the breaches and put controls and solutions in place to stop it.

    According to IBM Security, the number one initial attack vector in successful data breaches is compromised credentials – something most phishing emails are after. It’s imperative that organizations address these documented risks in a way that elevates the remote workforce’s security stance, regardless of the location or device they work on. This should include Security Awareness Training to enhance the workforce’s sense of vigilance when interacting with email and the web, reducing the risk of attacks intent on compromising credentials and causing a data breach.

    Topics: Data Breach

    See KnowBe4 Security Awareness Training in Action

    See how you can efficiently safeguard your organization from sophisticated social engineering threats.

    Request a Demo

    Secure the Digital Workforce: Human + AI

    KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15 years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense.

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the Founder and Executive Chairman of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog

    Posts By Topic

    View All