Quantifying the financial impact of IT security breaches-Reference-Cited by-同舟云学术

Quantifying the financial impact of IT security breaches

Published:2003-05-01 Issue:2 Volume:11 Page:74-83
ISSN:0968-5227
Container-title:Information Management & Computer Security
language:en
Short-container-title:

Author:

Garg Ashish,Curtis Jeffrey,Halper Hilary

Abstract

Internet security is a pervasive concern for all companies. However, developing the business case to support investments in IT security has been particularly challenging because of difficulties in precisely quantifying the economic impact of a breach. Previous studies have attempted to quantify the magnitude of losses resulting from a breach in IT security, but reliance on self‐reported company data has resulted in widely varying estimates of limited credibility. Employing an event study methodology, this study offers an alternative approach and more rigorous evaluation of breaches in IT security. This attempt has revealed several new perspectives concerning the market reaction to IT security breaches. A final component of the study is the extension of the analysis to incorporate eSecurity vendors and a fuller exploration of market reactions before and after the denial of service attacks of February 2000. The key takeaway for corporate IT decision makers is that IT security breaches are extremely costly, and that the stock market has already factored in some level of optimal IT security investment by companies.

Publisher

Emerald

Subject

Library and Information Sciences,Management Science and Operations Research,Business and International Management,Management Information Systems

Reference11 articles.

1. Bosworth, S. and Kabay, M.E. (Eds) (2002), Computer Security Handbook, 4th ed., John Wiley, New York, NY.

2. Cavusoglu, H., Mishra, B. and Raghumathan, R. (2002), The Effect of Internet Security Breach Announcements on Market Value of Breached Firms and Internet Security Developers, Working Paper, The University of Texas at Dallas School of Management, Dallas, TX.

3. Ernst & Young, LLP (2002), Global Information Security Survey.

4. Ettredge, M. and Richardson, V. (2001), Assessing the Risk in E‐Commerce, October, working paper, University of Kansas, Lawrence, KS.

5. Fama, E.F., Fisher, L., Jensen, M. and Roll, R. (1969), “The adjustment of stock prices to new information”, International Economic Review, Vol. 10, pp. 1‐21.

Cited by 159 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Navigating through cyberattacks: The role of tax aggressiveness;Journal of Corporate Finance;2024-10

2. The impact of cryptocurrency-related cyberattacks on return, volatility, and trading volume of cryptocurrencies and traditional financial assets;International Review of Financial Analysis;2024-10

3. The impact of cyber enforcement actions on stock returns;Research in International Business and Finance;2024-08

4. Corporate communication and likelihood of data breaches;International Review of Economics & Finance;2024-07

5. The cybersecurity entrepreneur;The Review of Austrian Economics;2024-05-09