According to a 2024 survey of Chief Information Security Officers (CISO) worldwide, Ransomware attacks were a leading cybersecurity risk, with roughly ** percent naming it as one of the three major cybersecurity threats. A further share of ** percent of the respondents found malware to be a significant risk to their organizations' cybersecurity. Email fraud compromise and DDoS attacks followed closely, with ** percent.

The average cyber attack takes 280 days to identify and contain and it costs an average of about $3.86 million to deal with properly.

Phishing, ransomware, and business malware have been the most widespread types of cyberattacks in the United States, resulting in data compromises. In 2024, 455 cases of phishing and its variations were detected. Ransomware followed in the second place, with 188 attacks.

Introduction

Cyber Security Statistics: Cybersecurity has become a top priority for organizations worldwide, driven by the escalating volume and complexity of cyber threats. As businesses increasingly adopt digital technologies, the risk of cyberattacks, such as data breaches, ransomware, and phishing, has risen, creating significant challenges for data privacy and security.

The increasing frequency of high-profile cyber incidents has exposed vulnerabilities in various sectors, prompting governments and organizations to enhance their cybersecurity measures. In response, emerging technologies such as artificial intelligence and machine learning are being integrated to enhance threat detection and response capabilities.

The following statistics offer a comprehensive overview of the cybersecurity landscape, shedding light on the trends, risks, and developments that are shaping this critical field.

These cybersecurity statistics will help you understand the state of online security and give you a better idea of what it takes to protect yourself.

The European Repository of Cyber Incidents (EuRepoC) is releasing the Global Dataset of Cyber Incidents in Version 1.3 as an extract of our backend database. This official release contains fully consolidated cyber incident data reviewed by our interdisciplinary experts in the fields of politics, law and technology across all 60 variables covered by the European Repository. Version 1.3 covers the years 2000 – 2024 entirely. The Global Dataset is meant for reliable, evidence-based analysis. If you require real-time data, please refer to the download option in our TableView or contact us for special requirements (including API access).

The dataset now contains data on 3416 cyber incidents which started between 01.01.2000 and 31.12.2024. The European Repository of Cyber Incidents (EuRepoC) gathers, codes, and analyses publicly available information from over 220 sources and 600 Twitter accounts daily to report on dynamic trends in the global, and particularly the European, cyber threat environment.

For more information on the scope and data collection methodology see: https://eurepoc.eu/methodology

Full Codebook available here

Information about each file

please scroll down this page entirely to see all files available. Zenodo only displays the attribution dataset by default.

Global Database (csv or xlsx):
This file includes all variables coded for each incident, organised such that one row corresponds to one incident - our main unit of investigation. Where multiple codes are present for a single variable for a single incident, these are separated with semi-colons within the same cell.

Receiver Dataset (csv or xlsx):
In this file, the data of affected entities and individuals (receivers) is restructured to facilitate analysis. Each cell contains only a single code, with the data "unpacked" across multiple rows. Thus, a single incident can span several rows, identifiable through the unique identifier assigned to each incident (incident_id).

Attribution Dataset (csv or xlsx):
This file follows a similar approach to the receiver dataset. The attribution data is "unpacked" over several rows, allowing each cell to contain only one code. Here too, a single incident may occupy several rows, with the unique identifier enabling easy tracking of each incident (incident_id). In addition, some attributions may also have multiple possible codes for one variable, these are also "unpacked" over several rows, with the attribution_id enabling to track each attribution.

Dyadic Dataset (csv or xlsx):
The dyadic dataset puts state dyads in the focus. Each row in the dataset represents one cyber incident in a specific dyad. Because incidents may affect multiple receivers, single incidents can be duplicated in this format, when they affected multiple countries.

According to a 2024 survey on cybersecurity readiness, ************** the surveyed senior business, tech, and security executives in India stated that cloud-related threats would be the leading risk to their organization's cybersecurity over the next 12 months. This aligned with the global perspective. Cyber budgets among Indian organizations were expected to be higher than the global average.

Did the COVID-19 pandemic really affect cybersecurity? Short answer – Yes. Cybercrime is up 600% due to COVID-19.

Introduction

Chinese Cyber Attack Statistics: Chinese cyber attacks have become a major global issue over the last 20 years. These attacks target governments, businesses, and important industries around the world. Many of these attacks are supported by the state, and their main goals are spying, stealing intellectual property, and gaining advantages in areas like technology, defence, and telecommunications.

In 2024, the global digital world will continue to face threats from cyberattacks linked to China. Because of this, governments and organisations need to strengthen their cybersecurity measures to protect their assets and data from these harmful activities.

This report reviews the impact of the cyber attack in May 2021 on the Health Service Executive (HSE) and other health bodies. It examines the HSE's cyber attack preparedness, the financial impact of the attack and the status of implementation of PWC's post incident review recommendations.

Introduction

Cybersecurity Statistics: In a world that is increasingly becoming digital, cybersecurity statistics are now more important than ever for enterprises, governments, and individuals. The world has undergone significant changes in terms of online data storage and e-commerce, which have expanded the threat landscape. Cybercriminals have become sophisticated by using advanced methods to compromise security systems, steal private information, and disrupt operations. Cybersecurity statistics result in huge financial losses as well as reputational damages, hence making it one of the most critical elements in modern-day businesses and governance.

The global cybersecurity market has grown tremendously over the past few years due to the increasing number and complexity of cyber threats. In 2023, the cybersecurity industry was estimated to be worth around $217 billion, representing an increase of 15% from 2022. This growth was primarily due to increased awareness regarding cyber risks, coupled with numerous high-profile data breaches affecting both organizations and governments across the globe.

In 2024, the number of data compromises in the United States stood at 3,158 cases. Meanwhile, over 1.35 billion individuals were affected in the same year by data compromises, including data breaches, leakage, and exposure. While these are three different events, they have one thing in common. As a result of all three incidents, the sensitive data is accessed by an unauthorized threat actor. Industries most vulnerable to data breaches Some industry sectors usually see more significant cases of private data violations than others. This is determined by the type and volume of the personal information organizations of these sectors store. In 2024 the financial services, healthcare, and professional services were the three industry sectors that recorded most data breaches. Overall, the number of healthcare data breaches in some industry sectors in the United States has gradually increased within the past few years. However, some sectors saw decrease. Largest data exposures worldwide In 2020, an adult streaming website, CAM4, experienced a leakage of nearly 11 billion records. This, by far, is the most extensive reported data leakage. This case, though, is unique because cyber security researchers found the vulnerability before the cyber criminals. The second-largest data breach is the Yahoo data breach, dating back to 2013. The company first reported about one billion exposed records, then later, in 2017, came up with an updated number of leaked records, which was three billion. In March 2018, the third biggest data breach happened, involving India’s national identification database Aadhaar. As a result of this incident, over 1.1 billion records were exposed.

Pay attention to the following cybersecurity statistics to learn how to protect yourself from attacks.

India Cyber Security Incidents: Total data was reported at 1,592,917.000 Unit in 2023. This records an increase from the previous number of 1,391,457.000 Unit for 2022. India Cyber Security Incidents: Total data is updated yearly, averaging 49,908.500 Unit from Dec 2004 (Median) to 2023, with 20 observations. The data reached an all-time high of 1,592,917.000 Unit in 2023 and a record low of 23.000 Unit in 2004. India Cyber Security Incidents: Total data remains active status in CEIC and is reported by Indian Computer Emergency Response Team. The data is categorized under India Premium Database’s Transportation, Post and Telecom Sector – Table IN.TF010: Information Technology Statistics: Cyber Security Incidents.

Some industries are affected by cyber attacks more than others. These next cybersecurity statistics detail specifically who is affected by cyber-attacks and why they are.

The largest reported data leakage as of January 2025 was the Cam4 data breach in March 2020, which exposed more than 10 billion data records. The second-largest data breach in history so far, the Yahoo data breach, occurred in 2013. The company initially reported about one billion exposed data records, but after an investigation, the company updated the number, revealing that three billion accounts were affected. The National Public Data Breach was announced in August 2024. The incident became public when personally identifiable information of individuals became available for sale on the dark web. Overall, the security professionals estimate the leakage of nearly three billion personal records. The next significant data leakage was the March 2018 security breach of India's national ID database, Aadhaar, with over 1.1 billion records exposed. This included biometric information such as identification numbers and fingerprint scans, which could be used to open bank accounts and receive financial aid, among other government services.

Cybercrime - the dark side of digitalization As the world continues its journey into the digital age, corporations and governments across the globe have been increasing their reliance on technology to collect, analyze and store personal data. This, in turn, has led to a rise in the number of cyber crimes, ranging from minor breaches to global-scale attacks impacting billions of users – such as in the case of Yahoo. Within the U.S. alone, 1802 cases of data compromise were reported in 2022. This was a marked increase from the 447 cases reported a decade prior. The high price of data protection As of 2022, the average cost of a single data breach across all industries worldwide stood at around 4.35 million U.S. dollars. This was found to be most costly in the healthcare sector, with each leak reported to have cost the affected party a hefty 10.1 million U.S. dollars. The financial segment followed closely behind. Here, each breach resulted in a loss of approximately 6 million U.S. dollars - 1.5 million more than the global average.

Cyber Threat Intelligence Market Outlook

The global Cyber Threat Intelligence market size is poised to grow from USD 6.5 billion in 2023 to an estimated USD 22.3 billion by 2032, reflecting a Compound Annual Growth Rate (CAGR) of 14.8% over the forecast period. The growing sophistication of cyber-attacks, along with the increasing adoption of IoT and cloud services, are primary drivers of this market's growth. Organizations across the globe are increasingly recognizing the critical importance of cyber threat intelligence in fortifying their defenses against emerging threats.

One of the primary growth factors for the Cyber Threat Intelligence market is the rising incidence of cyber-attacks and data breaches, which have become more frequent and complex. As a result, organizations are compelled to invest significantly in advanced threat intelligence solutions to preemptively identify and mitigate potential threats. This trend is particularly pronounced in sectors such as BFSI, healthcare, and IT, where the stakes for data security are exceptionally high. The regulatory landscape is also evolving, with stringent data protection regulations like GDPR and CCPA driving the need for more robust threat intelligence solutions.

Another significant driver is the increasing adoption of cloud services and the Internet of Things (IoT). These technologies, while offering numerous business advantages, also introduce new vulnerabilities that can be exploited by cyber adversaries. Consequently, there is a rising demand for comprehensive threat intelligence solutions that can provide real-time insights and proactive defenses against potential cyber threats. Additionally, as more businesses migrate their operations to the cloud, the need for scalable and efficient threat intelligence solutions becomes even more critical.

The growing complexity of the cyber threat landscape itself is also a crucial factor propelling the market. Modern cyber-attacks are often highly targeted and sophisticated, leveraging advanced techniques such as AI and machine learning to bypass traditional security measures. In response, organizations are increasingly turning to advanced threat intelligence solutions that incorporate these same technologies to detect and counteract potential threats. These solutions offer the ability to analyze vast amounts of data and identify patterns and anomalies that could indicate malicious activity.

Regionally, North America holds a significant share of the Cyber Threat Intelligence market, driven by the high adoption rate of advanced security solutions and the presence of numerous key players in the region. Europe and Asia Pacific are also expected to witness substantial growth, fueled by increasing investments in cybersecurity infrastructure and rising awareness about the importance of threat intelligence. In particular, the Asia Pacific region is anticipated to grow at the highest CAGR during the forecast period, owing to the rapid digitization and increasing cyber risks in countries like China and India.

Component Analysis

The Cyber Threat Intelligence market is segmented by component into solutions and services. The solutions segment includes various tools and platforms designed to detect, analyze, and mitigate cyber threats. This segment is expected to account for the largest share of the market due to the increasing need for advanced threat detection and response capabilities. Solutions such as Security Information and Event Management (SIEM), threat intelligence platforms, and advanced threat analytics are gaining traction as organizations seek to enhance their security posture.

The services segment, which includes managed services and professional services, is also poised for significant growth. Managed services, in particular, are becoming increasingly popular as organizations look to outsource their cyber threat intelligence needs to specialized providers. This approach allows businesses to leverage the expertise of cybersecurity professionals and access advanced threat intelligence capabilities without the need for significant in-house investments. Professional services, including consulting, training, and incident response, are also in high demand as organizations seek to build their internal threat intelligence capabilities and respond effectively to cyber incidents.

Within the solutions segment, threat intelligence platforms are expected to experience substantial growth. These platforms provide comprehensive threat data collection, analysis, and dissemination capabilities, enabling organizations to gain actionable

As per Cognitive Market Research's latest published report, the Global Cyber Security market size was $154.80 Billion in 2022 and it is forecasted to reach $353.15 Billion by 2030. Cyber Security Industry's Compound Annual Growth Rate will be 10.8% from 2023 to 2030. Market Dynamics of Cyber Security Market:

Increased target based cyber-attacks:

Every year, cybercrime dramatically rises as attackers become more proficient and sophisticated. In target-based cyberattacks, hackers or attackers focus on a single organisation because they have a particular business interest. Putting the attack together could take months so they can figure out the best way to get their exploit into your systems (or users). Because it has been precisely designed to attack your systems, processes, or persons, at the office and often at home, a targeted attack is frequently more harmful than an untargeted one. In addition to having an impact on the organization's and business's finances, cybersecurity also makes businesses more vulnerable and uncertain.

Cyberattacks can potentially harm a company's reputation, especially if private customer information is taken. The established customer trust may suffer as a result of cyberattacks. This breach of trust may be challenging to repair and may have long-term effects on the company. The activities of a company are also disrupted by these attacks, making it difficult or impossible to access vital systems or data. This might cause delays in manufacturing, disrupt customer service, and result in lost income. Businesses may occasionally have to stop operating completely until the attack is stopped, which will have a greater financial impact.

Growing need for automated cybersecurity due to the increased use of IoT devices.

Restraining Factor:

Budget restrictions and a lack of specialists among SME's:

Cybersecurity is crucial prat of any organization as it protects against unwanted access, theft, and damage to critical data and computer systems. Cyber-attacks are growing more prevalent in today's digital environment, and they could have very negative effects. Due to the complexity of technology, many organisations, especially SME's, cannot afford cybersecurity despite its necessity. Cybersecurity can be complicated and calls for knowledge in fields like software development, network security, and cryptography. The cost of acquiring and maintaining this expertise might be high. In addition, considering the consistently evolving cyber threats, the updating of cybersecurity measures is necessary. This requires ongoing investment in technology, personnel, and training. Therefore, budget restrictions coupled with expensive tools and software’s and a lack of specialists in SME's might affect the growth of the cyber security market.

Current Trends on Cyber Security:

Rising e-commerce platforms and online shopping:

Rising disposable income coupled with high penetration of internet and smartphone expected to drive the e-commerce market and online shopping. Online shopping is incredibly convenient for consumers as they can shop from the comfort of their homes or on-the-go using their smartphones or tablets. This is especially true during the COVID-19 pandemic when physical stores are closed or people prefer to avoid crowded places. In addition, online retailers can offer lower prices compared to physical stores due to lower overhead costs. Moreover, E-commerce platforms are open 24/7, which allows customers to shop at any time that is convenient for them. With advances in technology, e-commerce platforms have improved their shipping and delivery options. Overall, rising e-commerce platforms and online shopping provides new opportunities to cyber security market.

Impact of COVID-19 pandemic on Cyber Security Market:

With the widespread shift to remote work and online services, there has been a surge in cyber-attacks, making cyber security more important in COVID-19 pandemic. Organizations are investing in cyber security solutions to safeguard their systems and data as a result of the rise in cyberattacks brought on by the epidemic. The need for cyber security goods and services has increased as a result. Budget restrictions, especially for SME's, have been brought on by the economic burden of the epidemic on many organisations. Cost-effective cyber security solutions are now receiving more attention as a result of this. The CO...

[227+ Pages Report] Global Cyber Security Market size & share projected to hit a record value of USD 398.3 Billion by 2026 at an anticipated CAGR growth rate of 14.9% during the forecast period 2021-2026. Increasing use of technological measures in the sectors of retails, BSFI, information and technology, and manufacturing will boost the footprint of global cyber security market to a larger footprint.