Sun. Oct 1st, 2023

Content Assessment: The Paradox of Cybersecurity Investment? IBM's Recent Findings on Data Breach Costs

Information - 93%
Insight - 94%
Relevance - 93%
Objectivity - 94%
Authority - 95%



A short percentage-based assessment of the qualitative benefit of the recent announcement by IBM Security of its annual Cost of a Data Breach Report.

Editor’s Note: In IBM’s latest annual report on the cost of data breaches, startling statistics reveal the alarming consequences of insufficient investments in cybersecurity. The report shines a light on an unanticipated paradox – the hesitation to bolster security spending in the face of mounting breach costs. Key findings include a pronounced reduction in breach lifecycles with AI and automation, higher costs for ransomware victims who opt not to involve law enforcement, and the revelation that only one-third of breaches were detected by internal security teams. This article provides a detailed analysis of these critical insights, underscoring their importance to cybersecurity, information governance, and eDiscovery professionals in building robust, resilient defenses in an increasingly perilous digital landscape.

Industry Report Summary

Cost of a Data Breach Report 2023 (IBM)

ComplexDiscovery Staff

The recent release of IBM’s annual Cost of a Data Breach Report offers a sobering glimpse into the current state of cybersecurity, revealing a surprising lack of investment in security measures even as the costs associated with data breaches skyrocket. The 2023 report uncovers key insights from real-world data breaches experienced by 553 global organizations between March 2022 and March 2023.

The global average data breach cost reached an unprecedented $4.45 million in 2023, marking a 15% increase over the last three years. Worryingly, detection and escalation costs witnessed a 42% hike in the same timeframe, reflecting a shift towards more intricate breach investigations. While an overwhelming 95% of the surveyed organizations had suffered more than one breach, breached organizations were more likely to transfer incident costs to consumers (57%) than to ramp up security investments (51%).

Advancements in AI and automation have significantly impacted the speed of breach identification and containment. Organizations leveraging these technologies extensively experienced a data breach lifecycle 108 days shorter than those without these implementations (214 days versus 322 days). This translated into an average data breach cost savings of nearly $1.8 million, marking the largest cost-saver identified in the report. Despite this, almost 40% of the studied organizations have yet to deploy security AI and automation, presenting a considerable opportunity to accelerate detection and response rates.

The report also scrutinizes the costly consequences of not involving law enforcement in ransomware attacks. Ransomware victims that avoided law enforcement incurred an extra $470,000 in average breach costs compared to those that did. Despite potential savings, 37% of ransomware victims chose not to involve law enforcement. This hesitance and the fact that 47% of ransomware victims reportedly paid the ransom raises concern.

Interestingly, only a third of the studied breaches were detected by an organization’s own security team, with 27% disclosed by an attacker. Breaches identified by the organization cost nearly $1 million less on average than those disclosed by an attacker. They also had a lifecycle nearly 80 days shorter, underscoring the critical importance of early detection and robust internal threat detection mechanisms.

Additional findings include a 53% increase in healthcare breach costs since 2020, a nearly $1.7 million lower breach cost for organizations with a high level of DevSecOps, and a 4.5% jump in average breach costs for critical infrastructure organizations.

These insights provide a clear call to action for organizations. The significant cost and time savings associated with early detection, involvement of law enforcement in ransomware attacks, and extensive deployment of AI and automation underscore the urgent need for a strategic shift in organizational approach to cybersecurity. In the face of rising breach costs, the imperative to boost investments in robust, resilient, and proactive security measures has never been more critical.

Report Call to Action: Reinforcing Security, Governance, and Discovery Measures

In light of the IBM 2023 Cost of a Data Breach Report, it’s abundantly clear that cybersecurity, information governance, and eDiscovery professionals face an increasingly demanding and complex landscape. It is time for organizations to reassess their priorities and strategies. To conclude:

  1. Invest Strategically in Cybersecurity: Despite the steep financial impact of data breaches, organizations continue to show reluctance in bolstering their cybersecurity defenses. This report underscores the need for an urgent revaluation of this approach. An investment in cybersecurity, particularly in AI and automation technologies, is not merely a line item expense but a strategic initiative that can deliver significant cost savings and enhanced breach response times.

  2. Rethink Information Governance Policies: The fact that many breaches resulted in the loss of data across multiple environments highlights the importance of robust information governance. Organizations need to ensure their policies are not only strong but adequately flexible to secure data across all environments – be it public cloud, private cloud, or on-premises. A governance framework that can adapt to evolving data landscapes is key to maintaining data integrity and security.

  3. Augment eDiscovery with AI and Automation: The role of eDiscovery in detecting and managing breaches can’t be understated. With only one-third of breaches detected by an organization’s security team, it’s evident that there’s much room for improvement. By incorporating AI and automation into eDiscovery processes, organizations can accelerate the detection of breaches, shorten the breach lifecycle, and significantly reduce associated costs.

  4. Embrace Collaboration with Law Enforcement: The report reveals that involving law enforcement in ransomware attacks could result in considerable cost savings. Organizations need to overcome any hesitations and seek to build collaborative relationships with relevant law enforcement bodies.

The report’s findings represent a clarion call for organizations to act. It’s time to turn the paradox of cybersecurity investment on its head, embracing the value of proactive, strategic, and long-term commitments to cybersecurity, information governance, and eDiscovery. Ultimately, such investments will not only protect an organization’s data and systems but will also shield its reputation and bottom line. Time is the new currency in cybersecurity, and every second counts.

Cite: Cost of a Data Breach 2023 (2023) IBM. Available at: (Accessed: 27 July 2023).

Assisted by GAI and LLM Technologies

Additional Reading

Source: ComplexDiscovery


Generative Artificial Intelligence and Large Language Model Use

ComplexDiscovery OÜ recognizes the value of GAI and LLM tools in streamlining content creation processes and enhancing the overall quality of its research, writing, and editing efforts. To this end, ComplexDiscovery OÜ regularly employs GAI tools, including ChatGPT, Claude 2, Midjourney, and DALL-E2, to assist, augment, and accelerate the development and publication of both new and revised content in posts and pages published (initiated in late 2022).

ComplexDiscovery also provides a ChatGPT-powered AI article assistant for its users. This feature leverages LLM capabilities to generate relevant and valuable insights related to specific page and post content published on By offering this AI-driven service, ComplexDiscovery OÜ aims to create a more interactive and engaging experience for its users, while highlighting the importance of responsible and ethical use of GAI and LLM technologies.


Have a Request?

If you have information or offering requests that you would like to ask us about, please let us know and we will make our response to you a priority.

ComplexDiscovery is a premier online publication renowned for providing essential insights and intelligence in the realms of cybersecurity, information governance, and legal discovery to professionals navigating these fields. As a leading source of information, the publication expertly combines original research with aggregated news to cater to a highly specialized audience. Committed to enhancing readers’ understanding of relevant topics, ComplexDiscovery stands as an impartial and comprehensive resource for exploring trends, technologies, and services associated with electronically stored information.

The driving force behind this influential publication is ComplexDiscovery OÜ, a technology marketing firm that excels in strategic planning and tactical execution for organizations operating within these sectors. Registered as a private limited company in Estonia, a global leader in digital advancements, ComplexDiscovery OÜ dedicates its primary focus to supporting the publication. The company capitalizes on its virtual presence to provide marketing consulting and services to a diverse array of clients around the world, further solidifying its reputation as a leading voice in the eDiscovery ecosystem.