Come clean on funny money
> The average attack caused a Blighty SMB between £35,000 and £65,000 worth of damage
Now, we all know that doesn't mean that the SMBs in question had to get thirty five grand of cash out of their respective wads and spend that money on goods or services outside the company.
No. All it means is they got some of their staff to do a few hours of work at some notional internal cross-charge hourly rate and a whole lot more managers to spend time in meetings, each at a vastly higher notional hourly rate. Now some of those people might, just, have got a bit of overtime or a meal allowance - but in most cases (of personal experience) they were just told to stop what they were working on: projects, facebook updates, chatting to colleagues, long lunches, going home on time - and to sort out whatever breach had been detected.
The reason that large company's breaches cost more was in large part because they had more staff that they could apply to the problem. Work expands to fill the number of departments that can charge for their time.
What would be interesting to know, but will never ever be revealed, is how much actual cash flowed out of a company for each problem that they had to fix. I would suspect that in most cases the real monetary cost was very small indeed.