In 2005, the BJS has also conducted the National Computer Security Survey (NCSS) to estimate the impact of cybercrime on the U.S. business. This is what their results were:

Summary Findings

In 2005, among 7,818 businesses –

67% detected at least one cybercrime.
Nearly 60% detected one or more types of cyber attack.
11% detected cyber theft.
24% detected other computer security incidents.
Most businesses did not report cyber attacks to law enforcement authorities.
The majority of victimized businesses (86%) detected multiple incidents, with half of these (43%) detecting 10 or more incidents during the year.
Approximately 68% of the victims of cyber theft sustained monetary loss of $10,000 or more. By comparison, 34% of the businesses detecting cyber attacks and 31% of businesses detecting other computer security incidents lost more than $10,000.
System downtime lasted between 1 and 24 hours for half of the businesses and more than 24 hours for a third of businesses detecting cyber attacks or other computer security incidents.
Bureau of Justice Statistics (BJS) - Cybercrime