Direct Costs

Direct costs include money spent on recovering data, receivables that you cannot collect, employee time spent on recovery, down time from business operations, increases in emergency IT spending and any actual ransom payout.

Indirect Costs

These include losing current clients and prospects, losing brand and reputation, lost market cap for public companies, future penalties due missing Service Level Agreement (SLA) commitments and future legal costs and liabilities.

Many of these costs are measurable in lost revenue, delayed receivables collection and higher out of pocket costs. Other have broader, deeper, longer term implications that stem from loss of brand, reputation, and current and future customers.