Companies are spending close to $70 billion a year on cybersecurity tools but are still not convinced their data is truly secure, a new study has revealed.
According to RAND Corporation, a California-based nonprofit global policy think tank, several chief information security officers believe that attackers are gaining on their defences.
Despite this, the worldwide spending on cybersecurity is growing at 10 to 15 percent annually because they believe hackers may gain the upper hand two to five years from now so they need to pull up the socks.
"Despite the pessimism in the field, we found that companies are paying a lot more attention to cybersecurity than they were even five years ago," said Martin Libicki, co-lead author of the study and senior management scientist at RAND.
Companies that did not even have a chief information security officer five years ago have one now and the CEOs are more likely to listen to them.
"Core software is improving and new cybersecurity products continue to appear, which is likely to make a hacker's job more difficult and more expensive," Libicki said.
Charting the future of cybersecurity is difficult because so much is shrouded in secrecy.
No one is entirely certain of all the methods malicious hackers use to infiltrate systems and businesses do not want to disclose their safety measures, according to the report.
The RAND study draws on interviews with 18 chief information security officers and details the burgeoning world of cybersecurity products.
It also reviews the relationship between software quality and the processes used to discover software vulnerabilities.
"Companies know what they spend on cybersecurity, but quantifying what they save by preventing malicious attacks is much harder to tally," added Lillian Ablon, co-lead author of the report.
In addition, malicious hackers can be extremely sophisticated, so costly measures to improve security beget countermeasures from hackers.
Cybersecurity is a continual cycle of trying to eliminate weaknesses and out-think an attacker.
"Currently, the best that defenders can do is to make it expensive for the attackers in terms of money, time, resources and research," the authors said.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →
Smart Quarterly
₹900
3 Months
₹300/Month
Smart Essential
₹2,700
1 Year
₹225/Month
Super Saver
₹3,900
2 Years
₹162/Month
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app