In 2024, the number of data compromises in the United States stood at 3,158 cases. Meanwhile, over 1.35 billion individuals were affected in the same year by data compromises, including data breaches, leakage, and exposure. While these are three different events, they have one thing in common. As a result of all three incidents, the sensitive data is accessed by an unauthorized threat actor. Industries most vulnerable to data breaches Some industry sectors usually see more significant cases of private data violations than others. This is determined by the type and volume of the personal information organizations of these sectors store. In 2024 the financial services, healthcare, and professional services were the three industry sectors that recorded most data breaches. Overall, the number of healthcare data breaches in some industry sectors in the United States has gradually increased within the past few years. However, some sectors saw decrease. Largest data exposures worldwide In 2020, an adult streaming website, CAM4, experienced a leakage of nearly 11 billion records. This, by far, is the most extensive reported data leakage. This case, though, is unique because cyber security researchers found the vulnerability before the cyber criminals. The second-largest data breach is the Yahoo data breach, dating back to 2013. The company first reported about one billion exposed records, then later, in 2017, came up with an updated number of leaked records, which was three billion. In March 2018, the third biggest data breach happened, involving India’s national identification database Aadhaar. As a result of this incident, over 1.1 billion records were exposed.

As of June 2025, the most significant data breach incident in the United States was the Yahoo data breach that dates back to 2013-2016. Impacting over three billion online users, this incident still remains one of the most significant data breaches worldwide. The second-biggest case was the January 2021 data breach at Microsoft, involving about 30 thousand companies in the United States and around 60 thousand companies around the world.

It started with a strange email. The kind you usually ignore. But for one midsize healthcare firm in Ohio, clicking that link changed everything. Within hours, sensitive patient records were encrypted, and hackers demanded payment in cryptocurrency. By the time IT figured out the breach, over 1.4 million records were...

The largest reported data leakage as of January 2025 was the Cam4 data breach in March 2020, which exposed more than 10 billion data records. The second-largest data breach in history so far, the Yahoo data breach, occurred in 2013. The company initially reported about one billion exposed data records, but after an investigation, the company updated the number, revealing that three billion accounts were affected. The National Public Data Breach was announced in August 2024. The incident became public when personally identifiable information of individuals became available for sale on the dark web. Overall, the security professionals estimate the leakage of nearly three billion personal records. The next significant data leakage was the March 2018 security breach of India's national ID database, Aadhaar, with over 1.1 billion records exposed. This included biometric information such as identification numbers and fingerprint scans, which could be used to open bank accounts and receive financial aid, among other government services.

Cybercrime - the dark side of digitalization As the world continues its journey into the digital age, corporations and governments across the globe have been increasing their reliance on technology to collect, analyze and store personal data. This, in turn, has led to a rise in the number of cyber crimes, ranging from minor breaches to global-scale attacks impacting billions of users – such as in the case of Yahoo. Within the U.S. alone, 1802 cases of data compromise were reported in 2022. This was a marked increase from the 447 cases reported a decade prior. The high price of data protection As of 2022, the average cost of a single data breach across all industries worldwide stood at around 4.35 million U.S. dollars. This was found to be most costly in the healthcare sector, with each leak reported to have cost the affected party a hefty 10.1 million U.S. dollars. The financial segment followed closely behind. Here, each breach resulted in a loss of approximately 6 million U.S. dollars - 1.5 million more than the global average.

Introduction

Data Breaches Statistics: In recent years, data breaches have emerged as a major threat to both businesses and individuals. As the digital world grows, the frequency, scale, and impact of these breaches have surged, resulting in significant financial, reputational, and legal repercussions for organizations. The number of data breaches hit record highs, compromising millions of sensitive records.

This increase can be attributed to several factors, including rising cybercrime, inadequate data security practices, and the growing sophistication of hacking techniques. Data from cybersecurity experts reveal a notable rise in breaches within the healthcare, financial, and retail industries.

As the fallout from these breaches intensifies, it has become increasingly important for both businesses and consumers to understand the trends and scope of these incidents. This introduction will explore the latest statistics and developments, offering insights into the evolving landscape of data breaches and their wide-reaching effects.

As of January 2025, the most significant data privacy violation fine worldwide was for social media giant Meta. In May 2023, the Data Protection Commission (DPC) of Ireland decided to fine the company with 1.2 billion euros or 1.3 billion U.S. dollars. The Chinese vehicle-for rent company Didi Global ranked second. In July 2022, China's data privacy regulator fined the company 8.026 billion Chinese yuan, or 1.19 billion U.S. dollars. The 2021 Amazon fine issued by Luxembourg's data privacy regulation authorities was 877 million U.S. dollars and was the third-biggest data breach fine as of the measured month. The 2019 fine of 575 million U.S. dollars to Equifax followed. In this incident, because of unpatched vulnerabilities, nearly 150 million people were affected, which caused the American consumer credit reporting agency to pay at least 575 million U.S. dollars.

Pay attention to the following cybersecurity statistics to learn how to protect yourself from attacks.

Between March 2024 and February 2025, the highest average cost of a data breach, nearly **** million U.S. dollars, was detected in the healthcare industry. The financial sector ranked second, with **** million U.S. dollars on average per breach. The global average data breach cost in the measured period was **** million U.S. dollars. Data breaches in the public sector cost relatively lower, an average of **** million U.S. dollars during the measured period.

Washington law requires entities impacted by a data breach to notify the Attorney General’s Office (AGO) when more than 500 Washingtonians personal information was compromised as a result of the breach. This dataset is a collection of various statistics that have been derived from these notices, and is the source of data used to produce the AGO’s Annual Data Breach Report.

Between the second quarter of 2022 and the third quarter of 2024, the number of records exposed to account breaches in Thailand fluctuated significantly. Over ******* datasets were reported as having been leaked in the third quarter of 2024, compared to around ******* during the same quarter of the previous year.

Introduction

Data Loss Statistics: Data loss has become an increasingly urgent concern for both businesses and individuals in today's interconnected world. As the amount of sensitive information stored and exchanged across various platforms continues to grow, so too does the risk of data loss. The statistics surrounding this issue highlight its seriousness, shedding light on the prevalence of cyberattacks, system failures, and human mistakes that contribute to data breaches and loss.

These incidents can result in significant financial and reputational damage, emphasizing the critical need for strong data protection strategies. In this regard, comprehending the scale and consequences of data loss is crucial for implementing preventive measures and ensuring long-term organizational resilience.

As of 2024, the average cost of a data breach in the United States amounted to **** million U.S. dollars, down from **** million U.S. dollars in the previous year. The global average cost per data breach was **** million U.S. dollars in 2024. Cost of a data breach in different countries worldwide Data breaches impose a big threat for organizations globally. The monetary damage caused by data breaches has increased in many markets in the past decade. In 2023, Canada followed the U.S. by data breach costs, with an average of **** million U.S. dollars. Since 2019, the average monetary damage caused by loss of sensitive information in Canada has increased notably. In the United Kingdom, the average cost of a data breach in 2024 amounted to around **** million U.S. dollars, while in Germany it stood at **** million U.S. dollars. The cost of data breach by industry and segment Data breach costs vary depending on the industry and segment. For the fourth consecutive year, the global healthcare sector registered the highest costs of data breach, which in 2024 amounted to about **** million U.S. dollars. Financial institutions ranked second, with an average cost of *** million U.S. dollars for a data breach. Detection and escalation was the costliest segment in data breaches worldwide, with **** U.S. dollars on average. The cost for lost business ranked second, while response following a breach came across as the third-costliest segment.

Introduction

Data Privacy Statistics: As the digital landscape continues to evolve, data privacy has become a paramount concern for individuals, organizations, and governments alike. The increase in cyber threats, coupled with the growing volume of personal and sensitive data being generated, has made safeguarding this information more critical than ever.

Data privacy statistics are essential for gaining a deeper understanding of current privacy practices, consumer perceptions, and the regulatory environment. These figures provide important insights into how businesses are addressing data protection challenges, the effectiveness of privacy regulations such as GDPR, and the public's view on data security.

With incidents of data breaches and privacy violations on the rise, organizations face mounting pressure to implement robust security measures. By examining the latest data privacy statistics, we can better evaluate the risks, the advancements being made in data protection, and the influence of emerging technologies like AI and big data on privacy standards.

Introduction

Workplace Data Privacy Statistics: In our digital era, workplace data privacy is an important concern for organisations globally. The 2025 Data Privacy Benchmark Study from Cisco shows that 94% of organisations consider privacy a business imperative, and that two-thirds of organisations (98%) said that they report privacy metrics in their board meetings, indicating a global level of maturity around data protection at the board and management levels that we have not always seen in corporate governance.

But while organisations may be focused on data protection, breaches, increasingly internal breaches from employees, and system misconfiguration, etc, are still very real, formidable threats. The 2024 Cost of a Data Breach Report indicates that the global average total cost of a data breach is now $4.88 million, a 10% increase from the previous year and the highest amount of total cost ever recorded by IBM.

This data tells us that data privacy in the workplace has become critical to safeguard our personal, professional, and organisational information, and to foster loyalty and trust.

Introduction

Cyber Security Statistics: Cybersecurity has become a top priority for organizations worldwide, driven by the escalating volume and complexity of cyber threats. As businesses increasingly adopt digital technologies, the risk of cyberattacks, such as data breaches, ransomware, and phishing, has risen, creating significant challenges for data privacy and security.

The increasing frequency of high-profile cyber incidents has exposed vulnerabilities in various sectors, prompting governments and organizations to enhance their cybersecurity measures. In response, emerging technologies such as artificial intelligence and machine learning are being integrated to enhance threat detection and response capabilities.

The following statistics offer a comprehensive overview of the cybersecurity landscape, shedding light on the trends, risks, and developments that are shaping this critical field.

The statistic shows the number of data breaches in the United States from 2013 to 2019, by industry. In the last measured period, the majority of the 1,473 annual data breaches affected business and medical or healthcare organizations, with 644 and 525 data breaches respectively.

Introduction

Identity Theft Statistics: Identity theft stands as one of the most prevalent and harmful cybercrimes in today’s technology-driven world. It refers to the unlawful use of someone’s personal or financial details to carry out fraudulent activities. With the expansion of digital transactions and cloud-based platforms, the likelihood of such crimes is steadily increasing.

Cybercriminals rely on methods like phishing, data leaks, impersonation, and social engineering to steal sensitive information. In India, the swift uptake of digital services has made individuals more susceptible to identity-related scams. These scams often involve fraudulent KYC processes and unauthorized access to mobile financial applications.

To counter this rising threat, there is a critical need for stronger cybersecurity protocols, greater public awareness, and robust regulatory enforcement.

Between January and September 2024, healthcare organizations in the United States saw 491 large-scale data breaches, resulting in the loss of over 500 records. This figure has increased significantly in the last decade. To date, the highest number of large-scale data breaches in the U.S. healthcare sector was recorded in 2023, with a reported 745 cases.