Effects of Data Breaches Can Linger for Years, Lawyer Warns
Data breaches can “haunt businesses for years,” they're "rarely one-and-done,” said Bricker Graydon lawyer Nancy Magoteaux in a blog post Thursday.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
“Breached data can resurface months, or even years later,” as well as be “sold on the dark web, used in phishing attacks, or exploited for identity fraud,” she said. Other long-term effects include loss of consumer trust and disruption to business operations. Magoteaux also noted an IBM report put the average global cost of a data breach in 2025 at $4.4 million.
Companies can even be repeat victims if they fail “to patch outdated systems,” don't encrypt sensitive data, retain too much data for long periods or poorly train employees, Magoteaux added.
The “antidote” is “strong, proactive data governance” that includes encryption, regular risk assessments, data minimization principles and training staff.
“In the digital age, data is currency, and leaks are blood in the water for cybercriminals,” Magoteaux said. “The effects of a breach never stay buried,” and “in cybersecurity, the scariest threats are the ones you thought were already gone.”