At the RSA conference, the Ponemon Institute unveiled new research that found the cost of malicious data breaches is significantly higher than that of non-malicious breaches. Malicious breaches cost organizations $840,000 in overall impact, vs. $470,000 for non-malicious data loss. The report also found that the average malicious breach took 80 days to detect and more than 4 months to resolve. (http://www.infosecurity-magazine.com/view/30935/rsa-2013-malicious-data-breaches-result-in-significantly-higher-costs/)
Takeaway: The cost of data breaches is one of the most important reasons for a thoughtful security investment; the time to detect and resolve, however, may be even more significant, given the hit to availability and the potential for ongoing malicious activity due to undetected compromise.