The Covid-19 pandemic has been a boon for hackers. As broad swathes of the economy were suddenly forced to move online, cybercrime flourished. No less than 30 billion data records were stolen in 2020, according to a recent report1 by Canalys, a technology industry analysis company. This is more than in the previous 15 years put together.
Meanwhile, another report published late last year from the Center for Strategic and International Studies (CSIS), a US-based think tank, and McAfee, a computer security firm, estimated that worldwide monetary losses from cybercrime rose sharply last year, to approximately USD 945 billion (see Figure 1).2
On top of this, global spending on cybersecurity was estimated to have exceeded USD 145 billion, bringing the overall cost of cybercrime to almost USD 1.1 trillion globally, or 1.3% of the world’s gross domestic product (GDP). This new estimate implied a more than 50% increase relative to the previous one provided by the CSIS and McAfee for the year 2018.
Authors of the report acknowledged that better reporting explained some of this increase. However, they also indicated that, even with these qualifications, it is clear that cybercrime continues to grow rapidly. “Cybercrime is increasing because it pays, it can be easy, and the risk to cybercriminals can be low,” they argued.
The Covid-19 crisis dramatically increased our reliance on the cyberspace. And this unlikely to revert, even as the pandemic recedes, and people go back to some of their old habits. This means companies will need to keep investing in cybersecurity infrastructure, in particular the financial services industry.
In a report published last August, Interpol warned about the alarming rate of cyberattacks seen during the first four months of 2020, as countries around the world imposed strict lockdowns. Most importantly, Interpol also predicted that a further increase in cybercrime is highly likely in the near future, as structural trends such as the rise of ecommerce and remote working continue to unfold.
In this context, cybersecurity budgets seem bound to remain on their upward trajectory. Although business continuity and workforce productivity took precedence over security during the pandemic, cybersecurity investments still outperformed other segments of the IT industry in 2020, growing 10% to USD 53 billion, according to Canalys.
The technology industry analysis company considers the current trend will continue in the near future. More specifically, cybersecurity investments are expected to grow by 6.6.% to 10% in 2021, with web and email security technologies as the most dynamic areas.
For investors, soaring cybercrime is obviously a threat to the businesses they own. But it is also an opportunity to invest in companies that provide solutions to address this growing challenge. This is especially relevant for the financial industry, as cybercriminals tend to be naturally attracted to this sector. Not getting cybersecurity right in the financial world simply means going out of business.
Growing interest for cybersecurity investments is already visible in equity venture capital funding flows. Cybersecurity funding hit an all-time high in 2020, garnering USD 11.4 billion – a near 50% increase from 2018, according to CB Insights, a research and analysis firm. Fast-developing cybercrime and accelerated adoption of cloud computing were key driving forces behind this rise.
Growing demand for cybersecurity solutions is one of the developments we closely follow as part of our FinTech and New World Financials equity strategies. Admittedly, finding cybersecurity companies that are both relevant for the financial sector and attractive from an investor’s standpoint is not easy. For one, the opportunity set remains relatively limited.
Moreover, business growth and stock price momentum do not always go hand in hand, therefore looking at (relative) valuations is extremely important. Yet we believe the potential rewards are worth the effort. As a result, listed companies offering services such as payment protection, for example, are now a firm part of our investable universe.
1 Canalys, March 2021, “now and next for the cybersecurity industry”, Special report.
2 Lewis, J. A., Malekos Smith, Z. and Lostri, E., December 2020, “The Hidden Costs of Cybercrime”, CSIS-McAfee report.
Please read this important information before proceeding further. It contains legal and regulatory notices relevant to the information contained on this website.
The information contained in the Website is NOT FOR RETAIL CLIENTS - The information contained in the Website is solely intended for professional investors, defined as investors which (1) qualify as professional clients within the meaning of the Markets in Financial Instruments Directive (MiFID), (2) have requested to be treated as professional clients within the meaning of the MiFID or (3) are authorized to receive such information under any other applicable laws. The value of the investments may fluctuate. Past performance is no guarantee of future results. Investors may not get back the amount originally invested. Neither Robeco Institutional Asset Management B.V. nor any of its affiliates guarantees the performance or the future returns of any investments. If the currency in which the past performance is displayed differs from the currency of the country in which you reside, then you should be aware that due to exchange rate fluctuations the performance shown may increase or decrease if converted into your local currency.
In the UK, Robeco Institutional Asset Management B.V. (“ROBECO”) only markets its funds to institutional clients and professional investors. Private investors seeking information about ROBECO should visit our corporate website www.robeco.com or contact their financial adviser. ROBECO will not be liable for any damages or losses suffered by private investors accessing these areas.
In the UK, ROBECO Funds has marketing approval for the funds listed on this website, all of which are UCITS funds. ROBECO is authorized by the AFM and subject to limited regulation by the Financial Conduct Authority. Details about the extent of our regulation by the Financial Conduct Authority are available from us on request.
Many of the protections provided by the United Kingdom regulatory framework may not apply to investments in ROBECO Funds, including access to the Financial Services Compensation Scheme and the Financial Ombudsman Service. No representation, warranty or undertaking is given as to the accuracy or completeness of the information on this website.
If you are not an institutional client or professional investor you should therefore not proceed. By proceeding please note that we will be treating you as a professional client for regulatory purposes and you agree to be bound by our terms and conditions.