According to research by KasperskyLab and B2B International, on average it costs a company $50,000 to $444,000 per incident to eliminate consequences of a DDoS attack depending on a company size.
Long-term cost of DDoS attack is brand reputation and issues resulting from inaccessibility of the company's online resources (e.g. website, landing pages, etc.) by users, partners and other stakeholders.
Speaking about key issues caused by DDoS attacks that significantly increase IT spending:
- 61% of companies polled temporarily lost access to business critical information
- 38% were fully blocked from their routine activity
- 33% lost important business opportunities and contracts
- 29% had issues with their credit rating, and
- 26% of companies had to pay an increased insurance fee
Speaking about cost of DDoS elimination:
- 65% of organizations surveyed admitted hiring 3rd party IT security consultants to help get rid of DDoS and its consequences
- 49% had to modify and enhance their entire IT infrastructure
- 46% paid to lawyers
- 41% paid for external issues management consulting
"A successful DDoS attack can damage your business critical services which in turn results in serious consequences for any business," says Head of Kaspersky DDoS Prevention. "For instance, we've observed cases when DDoS attacks blocked bank online services and ATMs for hours and even days. As such, it's important for companies to consider DDoS prevention as the highest priority area of their corporate IT security strategy besides data fraud prevention and phishing."