As of June 2025, the most significant data breach incident in the United States was the Yahoo data breach that dates back to 2013-2016. Impacting over three billion online users, this incident still remains one of the most significant data breaches worldwide. The second-biggest case was the January 2021 data breach at Microsoft, involving about 30 thousand companies in the United States and around 60 thousand companies around the world.

It started with a strange email. The kind you usually ignore. But for one midsize healthcare firm in Ohio, clicking that link changed everything. Within hours, sensitive patient records were encrypted, and hackers demanded payment in cryptocurrency. By the time IT figured out the breach, over 1.4 million records were...

As of 2024, the average cost of a data breach in the United States amounted to **** million U.S. dollars, down from **** million U.S. dollars in the previous year. The global average cost per data breach was **** million U.S. dollars in 2024. Cost of a data breach in different countries worldwide Data breaches impose a big threat for organizations globally. The monetary damage caused by data breaches has increased in many markets in the past decade. In 2023, Canada followed the U.S. by data breach costs, with an average of **** million U.S. dollars. Since 2019, the average monetary damage caused by loss of sensitive information in Canada has increased notably. In the United Kingdom, the average cost of a data breach in 2024 amounted to around **** million U.S. dollars, while in Germany it stood at **** million U.S. dollars. The cost of data breach by industry and segment Data breach costs vary depending on the industry and segment. For the fourth consecutive year, the global healthcare sector registered the highest costs of data breach, which in 2024 amounted to about **** million U.S. dollars. Financial institutions ranked second, with an average cost of *** million U.S. dollars for a data breach. Detection and escalation was the costliest segment in data breaches worldwide, with **** U.S. dollars on average. The cost for lost business ranked second, while response following a breach came across as the third-costliest segment.

As of February 2025, the United States ranked first by the average cost of a data breach, ***** million U.S. dollars. The average cost of data breaches in the Middle East was **** million U.S. dollars. Benelux followed in the ranking, with **** million U.S. dollars. In the measured period, the global average data breach cost was **** million U.S. dollars. Phishing scams in the U.S. Breached data often ends up in the hands of threat actors who use it for malicious purposes, including online scams. Phishing continues to be a major threat in North America, particularly on smartphones. In the second quarter of 2023, the region recorded the highest number of phishing and malicious attack attempts globally. The United States was particularly affected, with ** percent of U.S. citizens reporting being targeted by scam texts, e-mails, and calls on a daily basis. Additionally, phishing and spoofing were the most common types of cybercrime, impacting *** thousand individuals in 2023. These attacks led to financial losses, with U.S. victims reporting nearly ** billion U.S. dollars in damages throughout the year. U.S. users and data privacy Despite only ** percent of internet users in the United States being highly knowledgeable about data privacy and cybersecurity, a significant portion of users demonstrated caution and awareness in protecting their information. In fact, over half of surveyed U.S. users reported being somewhat confident in knowing the right steps to take in the event of a cyberattack. Furthermore, ** percent of U.S. users actively decline cookies on websites, reflecting their increasing concern for data protection. Many respondents also take additional steps to safeguard their digital privacy, such as limiting or avoiding clicking on ads as well as not answering phone calls due to cybersecurity risks.

Pay attention to the following cybersecurity statistics to learn how to protect yourself from attacks.

Introduction

Data Breaches Statistics: In recent years, data breaches have emerged as a major threat to both businesses and individuals. As the digital world grows, the frequency, scale, and impact of these breaches have surged, resulting in significant financial, reputational, and legal repercussions for organizations. The number of data breaches hit record highs, compromising millions of sensitive records.

This increase can be attributed to several factors, including rising cybercrime, inadequate data security practices, and the growing sophistication of hacking techniques. Data from cybersecurity experts reveal a notable rise in breaches within the healthcare, financial, and retail industries.

As the fallout from these breaches intensifies, it has become increasingly important for both businesses and consumers to understand the trends and scope of these incidents. This introduction will explore the latest statistics and developments, offering insights into the evolving landscape of data breaches and their wide-reaching effects.

According to a 2024 survey, 63 percent of companies worldwide planned to increase their cybersecurity investment following a data breach. This represents a 12-percent increase from the previous year.

Between January and September 2024, healthcare organizations in the United States saw 491 large-scale data breaches, resulting in the loss of over 500 records. This figure has increased significantly in the last decade. To date, the highest number of large-scale data breaches in the U.S. healthcare sector was recorded in 2023, with a reported 745 cases.

Introduction

Cyber Security Statistics: Cybersecurity has become a top priority for organizations worldwide, driven by the escalating volume and complexity of cyber threats. As businesses increasingly adopt digital technologies, the risk of cyberattacks, such as data breaches, ransomware, and phishing, has risen, creating significant challenges for data privacy and security.

The increasing frequency of high-profile cyber incidents has exposed vulnerabilities in various sectors, prompting governments and organizations to enhance their cybersecurity measures. In response, emerging technologies such as artificial intelligence and machine learning are being integrated to enhance threat detection and response capabilities.

The following statistics offer a comprehensive overview of the cybersecurity landscape, shedding light on the trends, risks, and developments that are shaping this critical field.

Washington law requires entities impacted by a data breach to notify the Attorney General’s Office (AGO) when more than 500 Washingtonians personal information was compromised as a result of the breach. This dataset is a collection of various statistics that have been derived from these notices, and is the source of data used to produce the AGO’s Annual Data Breach Report.

In 2024, numerous data breach incidents were disclosed, causing uncertainty among customers. Some of the incidents have refused to disclose the exact number of individuals impacted, so the impact in these cases is only estimated. The largest data breach is believed to have impacted every American, with around ************* records being breached. A UK-based pathology lab, Synnovis, saw a ransomware attack in July 2024, which impacted approximately *** million patients.

Percentage of enterprises impacted by specific types of cyber security incidents by the North American Industry Classification System (NAICS) and size of enterprise.

Introduction

Endpoint Security Statistics: In today’s digital landscape, endpoint security has become a vital component of organizational cybersecurity. As businesses adopt hybrid work arrangements and expand their digital networks, protecting a growing range of connected devices has become increasingly essential. Laptops, smartphones, tablets, and IoT devices have become frequent targets for advanced cyberattacks, including ransomware, phishing, and zero-day exploits.

The increasing complexity of these threats has compelled organizations to enhance their endpoint security measures by adopting advanced technologies, such as AI-driven threat detection, behavioural monitoring, and continuous real-time surveillance. These sophisticated solutions aim to reduce exposure to risks, safeguard critical data, and ensure seamless business operations in the face of constantly evolving cyber threats.

The statistic shows the number of data breaches in the United States from 2013 to 2019, by industry. In the last measured period, the majority of the 1,473 annual data breaches affected business and medical or healthcare organizations, with 644 and 525 data breaches respectively.

Between the first quarter of 2021 and the first quarter of 2024, the number of data compromise cases in the United States increased significantly. The highest number of data compromises was recorded in the fourth quarter of 2023, with 1,089 cases. However, the number of recorded cases fell to 841 in the first quarter of 2024. In the fourth quarter of 2022, more than 253 million individuals were affected by data compromise incidents. By the first quarter of 2024, this number decreased to around 28.5 million.

India Cyber Security Incidents: Total data was reported at 1,592,917.000 Unit in 2023. This records an increase from the previous number of 1,391,457.000 Unit for 2022. India Cyber Security Incidents: Total data is updated yearly, averaging 49,908.500 Unit from Dec 2004 (Median) to 2023, with 20 observations. The data reached an all-time high of 1,592,917.000 Unit in 2023 and a record low of 23.000 Unit in 2004. India Cyber Security Incidents: Total data remains active status in CEIC and is reported by Indian Computer Emergency Response Team. The data is categorized under India Premium Database’s Transportation, Post and Telecom Sector – Table IN.TF010: Information Technology Statistics: Cyber Security Incidents.

As of February 2024, the average cost of a data breach worldwide was about **** million U.S. dollars. Of this total, **** million U.S. dollars were the costs for detection and escalation, **** million U.S. dollars were the costs of lost business, and **** million U.S. dollars were post-breach response costs.