20.5k unique visitors in the last 3 days

Do Data Breaches Hurt Share Prices?

An analysis of stock market data by Comparitech shows there is no simple equation for reputation damage, but telecoms has more to lose than other sectors.

Risk managers need to assess risk impacts that are difficult to evaluate, such as the cost of reputation damage. But how do you put a value on the impact of an IT security failing that results in the breach of customer data? One way is to look at the company’s share price. The stock market valuation of a company will be influenced by many factors but it is generally believed that privacy breaches erode customer confidence, with the result that the company becomes less attractive to investors, who would then choose to invest their money elsewhere. A comprehensive study by Comparitech reviewed the impact of 40 major privacy breaches on the share price of listed US companies since 2017 and found the situation was more complicated than you might suppose.

Companies that suffered breaches did slightly worse overall, but results were mixed. Using the NASDAQ index as a baseline, the breached companies underperformed the NASDAQ by 3.5 percent. However, many of the underperforming businesses were already lagging the stock market before their breaches occurred. Comparing movements in share prices before and after the breach suggested that many of the firms actually did better than would have been predicted from share prices before their breach became public.

Telco risk managers cannot relax yet. The extent of the reputation damage caused by a privacy breach appears to vary by business sector. Shares of social media firms were not hurt by the negative publicity surrounding a privacy breach whilst technology and telecoms companies were knocked most of all, with their shares performing significantly worse in the half-year following the breach than in the half-year beforehand. One possible explanation is that customers place more trust in businesses like Sony and T-Mobile and are hence more upset when they fail to protect the customer’s privacy.

You can read Comparitech’s analysis here.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email