The Covid-19 pandemic has been a boon for hackers. As broad swathes of the economy were suddenly forced to move online, cybercrime flourished. No less than 30 billion data records were stolen in 2020, according to a recent report1 by Canalys, a technology industry analysis company. This is more than in the previous 15 years put together.
Meanwhile, another report published late last year from the Center for Strategic and International Studies (CSIS), a US-based think tank, and McAfee, a computer security firm, estimated that worldwide monetary losses from cybercrime rose sharply last year, to approximately USD 945 billion (see Figure 1).2
On top of this, global spending on cybersecurity was estimated to have exceeded USD 145 billion, bringing the overall cost of cybercrime to almost USD 1.1 trillion globally, or 1.3% of the world’s gross domestic product (GDP). This new estimate implied a more than 50% increase relative to the previous one provided by the CSIS and McAfee for the year 2018.
Authors of the report acknowledged that better reporting explained some of this increase. However, they also indicated that, even with these qualifications, it is clear that cybercrime continues to grow rapidly. “Cybercrime is increasing because it pays, it can be easy, and the risk to cybercriminals can be low,” they argued.
The Covid-19 crisis dramatically increased our reliance on the cyberspace. And this unlikely to revert, even as the pandemic recedes, and people go back to some of their old habits. This means companies will need to keep investing in cybersecurity infrastructure, in particular the financial services industry.
In a report published last August, Interpol warned about the alarming rate of cyberattacks seen during the first four months of 2020, as countries around the world imposed strict lockdowns. Most importantly, Interpol also predicted that a further increase in cybercrime is highly likely in the near future, as structural trends such as the rise of ecommerce and remote working continue to unfold.
In this context, cybersecurity budgets seem bound to remain on their upward trajectory. Although business continuity and workforce productivity took precedence over security during the pandemic, cybersecurity investments still outperformed other segments of the IT industry in 2020, growing 10% to USD 53 billion, according to Canalys.
The technology industry analysis company considers the current trend will continue in the near future. More specifically, cybersecurity investments are expected to grow by 6.6.% to 10% in 2021, with web and email security technologies as the most dynamic areas.
For investors, soaring cybercrime is obviously a threat to the businesses they own. But it is also an opportunity to invest in companies that provide solutions to address this growing challenge. This is especially relevant for the financial industry, as cybercriminals tend to be naturally attracted to this sector. Not getting cybersecurity right in the financial world simply means going out of business.
Growing interest for cybersecurity investments is already visible in equity venture capital funding flows. Cybersecurity funding hit an all-time high in 2020, garnering USD 11.4 billion – a near 50% increase from 2018, according to CB Insights, a research and analysis firm. Fast-developing cybercrime and accelerated adoption of cloud computing were key driving forces behind this rise.
Growing demand for cybersecurity solutions is one of the developments we closely follow as part of our FinTech and New World Financials equity strategies. Admittedly, finding cybersecurity companies that are both relevant for the financial sector and attractive from an investor’s standpoint is not easy. For one, the opportunity set remains relatively limited.
Moreover, business growth and stock price momentum do not always go hand in hand, therefore looking at (relative) valuations is extremely important. Yet we believe the potential rewards are worth the effort. As a result, listed companies offering services such as payment protection, for example, are now a firm part of our investable universe.
1 Canalys, March 2021, “now and next for the cybersecurity industry”, Special report.
2 Lewis, J. A., Malekos Smith, Z. and Lostri, E., December 2020, “The Hidden Costs of Cybercrime”, CSIS-McAfee report.
当資料は情報提供を目的として、Robeco Institutional Asset Management B.V.が作成した英文資料、もしくはその英文資料をロベコ・ジャパン株式会社が翻訳したものです。資料中の個別の金融商品の売買の勧誘や推奨等を目的とするものではありません。記載された情報は十分信頼できるものであると考えておりますが、その正確性、完全性を保証するものではありません。意見や見通しはあくまで作成日における弊社の判断に基づくものであり、今後予告なしに変更されることがあります。運用状況、市場動向、意見等は、過去の一時点あるいは過去の一定期間についてのものであり、過去の実績は将来の運用成果を保証または示唆するものではありません。また、記載された投資方針・戦略等は全ての投資家の皆様に適合するとは限りません。当資料は法律、税務、会計面での助言の提供を意図するものではありません。
商号等： ロベコ・ジャパン株式会社 金融商品取引業者 関東財務局長（金商）第２７８０号
加入協会： 一般社団法人 日本投資顧問業協会