With hackers continuously looking for new ways to attack, companies are left trailing behind. Ernest Hilbert, former FBI agent and head of cyber investigations for EMEA at risk consultancy Kroll, thinks companies should be proactive in order to counter hackers.
"If your stuff is stolen, go and get it back. Because if you don't go after them in the media, and go and sue them, then what is the downside risk for the criminals?," Hilbert told CNBC in a phone interview. "You can track the people down, put their finances on hold, and companies should do it."
Is personal data safe?
Customers' personal information is one of the tastiest pieces of data for hackers to target, as credit card details, addresses and emails can potentially be accessed.
Facebook admitted it was hacked last year in what it called a "sophisticated attack" and Sony's PlayStation Network suffered a security breach in 2011 putting the data of 70 million subscribers at risk.
"The risk to which we are exposed every day, having our personal data in the database in a company which we do business with, and the fact that those companies are not always ready to protect our personal data, is a risk far higher than anything to citizens all around the world," Paolo Balboni, scientific director at the European Privacy Association, said in a phone interview.
(Read more: The Snowden effect? Whistleblowing sees sharp rise)
As companies grapple to strengthen their security, individual users who transfer data everyday must also be responsible, one expert said.
"People think that only smart hackers can protect a system. This idea spreads like the flu. But in the same way people understand that they cannot spread flu, they need to keep a high level of hygiene on their computers and make it harder for criminals to take advantage of the systems," Tim Watson, director of the Cyber Security Centre at the U.K.'s De Montfort University, told CNBC.
"We don't need the internet army to prevent this, we need a group of health professionals," he added.