IDEAS home Printed from https://ideas.repec.org/p/bdi/opques/qef_373_17.html
   My bibliography  Save this paper

Cyber attacks: preliminary evidence from the Bank of Italy's business surveys

Author

Listed:
  • Claudia Biancotti

    (Bank of Italy)

Abstract

This paper presents preliminary evidence on cyber risk in the Italian private sector based on the Bank of Italy�s annual surveys of Italian industrial and service firms. The information collected, albeit only covering the incidence of cyber attacks and some aspects of security governance, is the first of its kind for Italy. The results are striking: even though a mere 1.5 per cent of businesses do not deploy any cybersecurity measures, 30.3 per cent � corresponding to 35.6 per cent of total employees � report at least some damage from a cyber attack between September 2015 and September 2016. Once data are corrected to account for unwillingness to report or inability to detect attacks on the part of some respondents, these figures climb to 45.2 and 56 per cent respectively, with large, high-tech and internationally exposed businesses faring worse than average. The economy-wide risk level is likely to be higher still; the financial sector, healthcare, education and social care are excluded from the sample, but they are known from other sources to be particularly appealing to attackers. Further research is needed on the correlation between firm-level vulnerability and investment in cyber defence, and on the cost of cyber breaches.

Suggested Citation

  • Claudia Biancotti, 2017. "Cyber attacks: preliminary evidence from the Bank of Italy's business surveys," Questioni di Economia e Finanza (Occasional Papers) 373, Bank of Italy, Economic Research and International Relations Area.
    • Handle: RePEc:bdi:opques:qef_373_17
    as

    Download full text from publisher

    File URL: https://www.bancaditalia.it/pubblicazioni/qef/2017-0373/QEF_373.pdf
    Download Restriction: no
    ---><---

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Antonino Fazio & Fabio Zuffranieri, 2018. "Interbank payment system architecture from a cyber security perspective," Questioni di Economia e Finanza (Occasional Papers) 418, Bank of Italy, Economic Research and International Relations Area.
    2. Davor Maček & Ivan Magdalenić & Nina Begičević Ređep, 2021. "A Model for the Evaluation of Critical IT Systems Using Multicriteria Decision-Making with Elements for Risk Assessment," Mathematics, MDPI, vol. 9(9), pages 1-24, May.

    More about this item

    Keywords

    cyber attacks; cybersecurity; cyber risk;
    All these keywords.

    JEL classification:

    • F50 - International Economics - - International Relations, National Security, and International Political Economy - - - General
    • L60 - Industrial Organization - - Industry Studies: Manufacturing - - - General
    • L80 - Industrial Organization - - Industry Studies: Services - - - General
    • C83 - Mathematical and Quantitative Methods - - Data Collection and Data Estimation Methodology; Computer Programs - - - Survey Methods; Sampling Methods

    NEP fields

    This paper has been announced in the following NEP Reports:

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:bdi:opques:qef_373_17. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: the person in charge (email available below). General contact details of provider: https://edirc.repec.org/data/bdigvit.html .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.