In 2025, the number of data compromises in the United States stood at 3,322 cases. Meanwhile, over 278.83 million individuals were affected in the same year by data compromises, including data breaches, leakage, and exposure. While these are three different events, they have one thing in common. As a result of all three incidents, the sensitive data is accessed by an unauthorized threat actor. Industries most vulnerable to data breaches Some industry sectors usually see more significant cases of private data violations than others. This is determined by the type and volume of the personal information organizations of these sectors store. Financial services, healthcare, and professional services were the industry sectors that recorded the most data breaches. Overall, the number of healthcare data breaches in some industry sectors in the United States has gradually increased within the past few years. However, some sectors saw a decrease.

The average cyber attack takes 280 days to identify and contain and it costs an average of about $3.86 million to deal with properly.

During the third quarter of 2025, data breaches exposed more than ** million records worldwide. Since the first quarter of 2020, the highest number of data records were exposed in the third quarter of ****, more than **** billion data sets. Data breaches remain among the biggest concerns of company leaders worldwide. The most common causes of sensitive information loss were operating system vulnerabilities on endpoint devices. Which industries see the most data breaches? Meanwhile, certain conditions make some industry sectors more prone to data breaches than others. According to the latest observations, the public administration experienced the highest number of data breaches between 2021 and 2022. The industry saw *** reported data breach incidents with confirmed data loss. The second were financial institutions, with *** data breach cases, followed by healthcare providers. Data breach cost Data breach incidents have various consequences, the most common impact being financial losses and business disruptions. As of 2023, the average data breach cost across businesses worldwide was **** million U.S. dollars. Meanwhile, a leaked data record cost about *** U.S. dollars. The United States saw the highest average breach cost globally, at **** million U.S. dollars.

Explore key data breach statistics, including incident frequency, affected industries, compromised records, causes, and financial impact!

These cybersecurity statistics will help you understand the state of online security and give you a better idea of what it takes to protect yourself.

The largest reported data leakage as of December 2025 was the ***************************** data breach in ************, which exposed ** billion data records. The second-largest data breach in history so far, the ****************, occurred in **********. The National Public Data (NPD) Breach, listed ****** was disclosed in April 2024. The incident became public when personally identifiable information of individuals became available for sale on the dark web. Overall, the security professionals estimate the leakage of nearly ***** billion personal records. Another significant data leakage was the March 2018 security breach of India's national ID database, Aadhaar, with over *** billion records exposed. This included biometric information such as identification numbers and fingerprint scans, which could be used to open bank accounts and receive financial aid, among other government services.

Cybercrime: the dark side of digitalization As the world continues its journey into the digital age, corporations and governments across the globe have been increasing their reliance on technology to collect, analyze, and store personal data. This, in turn, has led to a rise in the number of cyber crimes, ranging from minor breaches to global-scale attacks impacting billions of users, such as in the case of Yahoo. Within the U.S. alone, ***** cases of data compromise were reported in 2022. This was a marked increase from the *** cases reported a decade prior. The high price of data protection In 2024, the average cost of a single data breach across all industries worldwide stood at **** million U.S. dollars. This was found to be most costly in the healthcare sector, with each leak reported to have cost the affected party a hefty **** million U.S. dollars. The financial segment followed closely behind. Here, each breach resulted in a loss of **** million U.S. dollars.

Did the COVID-19 pandemic really affect cybersecurity? Short answer – Yes. Cybercrime is up 600% due to COVID-19.

Data breaches cost companies and businesses a lot of money. The average cost of a data breach is $3.86 million.

As of 2025, the average cost of a data breach in the United States amounted to ***** million U.S. dollars, up from **** million U.S. dollars in the previous year. The global average cost per data breach stood at **** million U.S. dollars. Cost of a data breach in different countries worldwide Data breaches impose a big threat for organizations globally. The monetary damage caused by data breaches has increased in many markets in the past decade. In 2023, Canada followed the U.S. by data breach costs, with an average of **** million U.S. dollars. Since 2019, the average monetary damage caused by the loss of sensitive information in Canada has increased notably. In the United Kingdom, the average cost of a data breach in 2024 amounted to around **** million U.S. dollars, while in Germany it stood at **** million U.S. dollars. The cost of data breach by industry and segment Data breach costs vary depending on the industry and segment. For the fourth consecutive year, the global healthcare sector registered the highest costs of data breaches, which in 2024 amounted to about **** million U.S. dollars. Financial institutions ranked second, with an average cost of *** million U.S. dollars for a data breach. Detection and escalation was the costliest segment in data breaches worldwide, with **** U.S. dollars on average. The cost for lost business ranked second, while response following a breach came across as the third-costliest segment.

As of January 2025, the most significant data privacy violation fine worldwide was for social media giant Meta. In May 2023, the Data Protection Commission (DPC) of Ireland decided to fine the company with 1.2 billion euros or 1.3 billion U.S. dollars. The Chinese vehicle-for rent company Didi Global ranked second. In July 2022, China's data privacy regulator fined the company 8.026 billion Chinese yuan, or 1.19 billion U.S. dollars. The 2021 Amazon fine issued by Luxembourg's data privacy regulation authorities was 877 million U.S. dollars and was the third-biggest data breach fine as of the measured month. The 2019 fine of 575 million U.S. dollars to Equifax followed. In this incident, because of unpatched vulnerabilities, nearly 150 million people were affected, which caused the American consumer credit reporting agency to pay at least 575 million U.S. dollars.

As of 2025, the global average cost per data breach amounted to **** million U.S. dollars, a decrease from **** million U.S. dollars in the previous year. The average cost of a data breach varied across sectors, with the highest average cost in the healthcare industry.

Pay attention to the following cybersecurity statistics to learn how to protect yourself from attacks.

Between the last quarter of 2024 and the first quarter of 2025, the number of data compromise cases in the United States saw a decrease. The highest number of data compromises over the observed period was recorded in the fourth quarter of 2023, at 1,087 events. The number of individuals affected by data compromise incidents reached around 95.6 million between January and March 2025.

Over 95% of cybersecurity breaches occur as a result of human error.

Comprehensive data breach analytics including records exposed, industry impact, data exfiltration trends, and severity patterns tracked by Rankiteo.

As of June 2025, the most significant data breach incident in the United States was the Yahoo data breach that dates back to 2013-2016. Impacting over three billion online users, this incident still remains one of the most significant data breaches worldwide. The second-biggest case was the January 2021 data breach at Microsoft, involving about 30 thousand companies in the United States and around 60 thousand companies around the world.

Some industries are affected by cyber attacks more than others. These next cybersecurity statistics detail specifically who is affected by cyber-attacks and why they are.

As of 2025, the mean number of days to identify the data breaches was *** days, six days faster than in the previous year. The mean time companies needed to contain the breaches in the measured year was ** days. In comparison, in 2021, it took organizations *** days to identify and ** days to address the data breaches.

As of October 2023, the human element was involved in 68 percent of data breaches worldwide. Ransomware or extortion accounted for 32 percent, while errors contributed to 28 percent of incidents. Third-party factors, including software vulnerabilities, were involved in 15 percent of breaches.