Our website uses cookies

Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing Infosecurity Magazine, you agree to our use of cookies.

Okay, I understand Learn more

Lax Online Security Can Destroy Your Brand Overnight

Managing your brand in the 21st Century can be a tremendous challenge. Many factors impact your reputation, which is a growing concern for most entrepreneurs. A recent study from the Ponemon Institute found that businesses are even more concerned about their reputation than security breaches.

Brand damage can, of course, come from cybersecurity breaches, but it can also come from lost intellectual property and bad market news.

Companies are making a grave mistake if they think these issues should be treated separately. Security breaches can irreparably damage their brand image.

Customers weigh many factors when valuing a brand. A company may offer impeccable services, but its reputation will still collapse if it fails customers in other ways.

During the dawn of the digital era, executives didn’t see a connection between security breaches and their brand image. Customers may have placed the blame on the perpetrators behind the attack and viewed the company as an inculpable victim. In more recent years, the blame is being shifted to the breached brand.

60% of small businesses collapse within six months of a security breachUS National Cyber Security Alliance

Early last year, CSO and OnePoll conducted a study to understand the impact poor security had on a company’s brand image. They found that over 86% of customers were “not at all likely” or “not very likely” to conduct business with a company that suffered a security breach involving customer financial information.

Companies can no longer rely on their own status as victims to shirk responsibility. Their negligent security standards harm their customers, so they will face serious repercussions for security breaches.

Target’s sales plummeted 46% in the fourth-quarter immediately after their historic security breach. Customers felt Target responded inappropriately to the breach.

SMEs Must Take Even More Stringent Precautions 

Brand damage to larger organizations is often temporary and minimal. Customers may be more willing to view it as a short-term blunder, provided the company responds appropriately. 

This said, it could be argued that big, established companies are confident they can ride on past the fines and fees, and keep hold of their customers. The UK’s TalkTalk even locked some customers into contracts – albeit with improved packages - on that basis.

To add to this, there is a theory that stocks eventually recover, a view backed up by Sean Mason, director of threat management at Cisco security services, a man who previously claimed to have “debunked the myth that breaches materially impact stock price.”

He’s got a point. For example, Home Depot’s data breach, which saw the compromise of 65 million customer credit and debit card accounts, saw breach-related costs come in at around $62 million. The company’s stock price decreased minimally one week after the announcement but in the third quarter of 2014, Home Depot showed a 21% increase in earnings per share.

A 2016 study from KPMG found that 89% of small businesses that their reputation suffered after a security breach. Around the same time, the U.S’ National Cyber Security Alliance released an even more alarming report, showing that 60% of small businesses collapse within six months of a security breach. 

However, only 23% of small businesses rated cybersecurity as one of their top concerns, suggesting many companies fail to take adequate precautions until it is too late. The authors advised companies to take all necessary precautions to minimize these risks.  “Companies failing to adequately protect their data from cyber breaches don’t just put a few documents at risk. Losing valuable data can have a lasting and devastating impact on a company’s finances, customer base, ability to grow – and ultimately its reputation. Adequate cyber security does not need to be time consuming or complex. Businesses should follow these three simple steps: use three random words to create a strong password, install security software on all devices and always download the latest software updates.”

Implementing cybersecurity solutions can be challenging even with the right infrastructure. A survey of growing SMEs found that 65% struggled to develop an effective cybersecurity strategy in the cloud. Migrating to a more secure environment or installing the right tools isn’t enough. Brands must develop a carefully thought-out IT security plan and enforce it consistently.

Too many companies wait too long to implement necessary cybersecurity solutions. They need to make it a top priority before a security breach occurs. Small businesses that fail to prevent a security breach are likely to face bankruptcy. 


Rehan Jiaz is an entrepreneur, business graduate, content strategist and editor overseeing contributed content at SmartdataCollective.com. He is passionate about writing stuff for startups. His areas of interest include digital business strategy and strategic decision making. 


What’s Hot on Infosecurity Magazine?