Some Critical Data Breach Statistics And Facts For People To Be Well Prepared To Fight Against Cybercrime

Barry Elad

Updated · Sep 15, 2022

Some Critical Data Breach Statistics And Facts For People To Be Well Prepared To Fight Against Cybercrime

Data Breach Statistics: The issue of data breaches has become more prevalent nowadays. It affects internet users and almost all types of businesses more now than ever. The average cost of data breaches as well is increasing as cybercriminals are becoming more tech-savvy. Many businesses and individuals face more significant ramifications as a result of compromised data due to cybercrime attacks. Data breaches affect a wide range of industries such as finance, healthcare, education, and retail. Considering the frequency of data breaches these days, it seems none of our personal details is safe as we might think. Here we will discuss the most alarming data breach statistics and trends to show how the issue of compromised data is becoming an increasingly grave threat for all of us.

Key Data Breach Statistics (Editor’s Choice)

  • Nearly 68 records are compromised per second.
  • Around 71% of data breaches are monetarily motivated.
  • The average time to find out about a data breach in a firm is 206 days.
  • The average time to recuperate from a data breach incident can go up to 70 days.
  • Nearly 76% of firms around the world faced a phishing attack in the past year.
  • The global average cost of a data breach has reached $4.35 million in 2022.
  • The median cost per lost record is $150.
  • Nearly 75% of firms have said that they have faced material disruption in business processes due to a data breach.
  • About 21% of all folders in a standard firm are accessible to everyone.
  • The worldwide spending on information security was estimated to be $150.4 billion in 2021.
  • Around 6.4 billion fake emails are exchanged every day around the world.
  • Small businesses fall prey to 43% of data breaches.

Global Data Breach Statistics

#1. Around 45% of firms in the US suffer a data breach

The 2021 Thales Data Threat Report showed that almost half of companies in the United States deal with a data breach. However, experts say that the figure might be higher than this as many data breaches remain undetected for a long time.

#2. The global average cost of a data breach touched $4.35 million in 2022

The mean cost of a data breach has seen an increase of 2.6% with $4.35 million in 2022 as compared to $4.24 million in 2021.


#3. The United States experiences the majority of data breaches

Data breach statistics reveal that the US is most affected by data breach incidents. The country faces most data breaches. In 2021, around 212.4 million users suffered data breaches. Around 156.1 million users in Iran were affected by data breaches. The US contributes to over 57% of data breaches and 97% of the total compromised records.

#4. 60% of surveyed firms have said that they have suffered a data breach at some point in time

A comprehensive survey of firms around the world has revealed that nearly 3 out of 5 firms have faced a data breach at some point. Around 30% of surveyed firms have said that they have suffered at least one data breach in the past year.

#5. Around 68 documents are lost every second

Some parts of these records are stolen due to human error in an organization. Other records are infected due to the increasing number of cyber attacks each day.

#6. It takes around 206 days on average to find out about a data breach

A study of 500 firms across 13 countries has shown that the average time to recognize a data breach has increased by nine days since 2018.

#7. Extensive use of IoT devices and smartphones has attributed to the growing trend of data breaches

The growing number of IoT devices, the use of mobile devices, increased migration to the cloud, and compliance failures are contributing to the growing number of data breach incidents.

#8. One of the first data leaks in 2020 affected around 250 million records

Microsoft suffered a major data breach attack in 2020 that compromised more than 250 million valuable records of customers.

#9. At least 4 incidents of the data breach in 2020 affected more than a billion records

A data breach incident at CAM4 with 10.88 billion compromised data, another leak at Advanced Info Service with 8.3 billion infected data, and a data breach at Keepnet Labs with 5 billion compromised records were among the major data breaches that took place in 2020.

#10. The worldwide spending on data security was estimated to be $150.4 billion in 2021

Worldwide spending on data security has been increasing since 2017. The projected global spending on data security was $150.4 billion in 2021; it indicated a 12.4% increase from 2020.

#11. Nearly 82% of data breaches have had a human element

The 2022 data breach statistics show that nearly 82% of data breaches have contained a human element including those incidents where employees have directly compromised confidential records.

#12. Firms that face a data breach perform less by more than 15% in the market after three years of the data breach

A survey has found that 14 business days after the data breach, around 34 surveyed firms have seen a 3.5% drop in their share prices on average. In long term, these companies have not been able to keep up with the NASDAQ average.

#13. Nearly 75% of firms have said that a data breach has resulted in material damage to their business processes

Around three-quarters of surveyed firms have said that data breaches are enough to cause serious material damage to business processes.

#14. Astray business cost is the highest element of the total expenditure of a data breach

There are four modules of a data breach such as detection and escalation, notification, ex-post response, and lost business cost. As per data breach statistics, firms attribute nearly 37.5% to the lost business cost.

#15. Around 62% of firms in the US faced a data breach last year

A KPMG survey of senior risk executives that has been done in 2022 has found that nearly 62% of firms in the United States have suffered a data breach in 2021. These companies have also suffered a financial loss due to the cyber incident in the same year.

#16. 65% of firms have said that a data breach has left a negative material effect on their reputation

Data breach statistics show that a data breach negatively affects a company’s marketplace image, brand, and reputation. In the modern-day business landscape, where consumers have become more aware, it is hard to maintain a reputation.

#17. 50% of firms only invested 6 to 15% of their security budget on data breaches in 2020

The latest study of the security budget shows that global spending on data security shot up by 17.5% from 2020 to 2021. It shows that companies consider a data breach a more serious threat.

#18. The highest average time to find out about a data breach and contain it is in the entertainment industry

In the meantime recognizing a data breach and containing it differs across industries. Entertainment, healthcare, and media industries take the highest mean time to identify and resolve a data breach.

#19. Geographically, the highest average time to find out about a data breach and control takes place in the Middle East and the lowest average time occurs in Germany

The mean data breach response time also differs across locations. Firms located in the Middle East, Turkey, and Brazil appear to take the highest time to find out and control a data breach. While Germany, the US, Canada, South Africa, and the UK take the lowest average, time to respond to a data breach.

#20. As per 2021 data breach stats, 28% of data breach incidents impacted small firms

A report based on an analysis of nearly 79000 security mishaps with 5200 confirmed data breaches revealed that stolen credentials were used in more than 60% of security incidents.


#21. The average time to recuperate from a data breach can be as higher as 70 days

The recovery process to pull through a data breach as well takes time. The latest data breach statistics show that a specialized data recovery system or team in a company can reduce the average recovery time by half.

#22. Nearly 65% of IT professionals think that the severity of data breaches has gone up

Hackers are using the most contemporary tools to attack the security systems of firms; it makes it quite hard to defy such security attacks.

#23. Organized crime groups are liable for 80% of data breaches

A report shows that more than 75% of security breaches are led by organized crime groups. While fewer than 5% of data breaches involve internal staff or outsiders.


#24. About 22% of data breaches involve phishing hits

More than one-third of data breaches entail phishing, 25% of data breaches involve hacking, and 17% of them are led by other malicious hacking like a ransomware attack.

#25. Around 8000 websites are hacked with form jacking code per quarter

In form jacking, cybercriminals use JavaScript code to seize website payment forms. Formjacking is also known as digital card skimming, which is utilized to steal credit card details and other confidential data.

#26. The discovery time of 60% of data breaches can go up to weeks or longer

More than half of organizations spend weeks discovering a data breach.

#27. Enterprise ransomware assaults are increasing rapidly

Ransomware attacks pose a great threat to the data security of many companies.

#28. In the underground economy, the average price for a stolen payment card is around $13

As per a survey done in 2022, the average cost of a British payment card is nearly $15, which is higher than the world’s average price.

#29. Only 53% of firms share details about data breaches and incident response with authorities and industry counterparts

It shows that there might many security incidents that are not reported.

#30. Gmail account records are worth an average of $156

Many people around the world link their other accounts to their Google accounts. It shows that access to Gmail can help hackers reset passwords of any other linked accounts.

Cause And Ways To Prevent A Data Breach

#31. The frequency of data breaches has been on the rise in recent years

As per the 2021 data breach statistics, around more than 68% of data breaches took place in corporations.

#32. Stolen credentials have led to the majority of data breaches

A study done by IBM has shown that compromised records have led to 20% of data breaches at a mean cost of $4.37 million.

#33. Remote working style due to the COVID19 pandemic led to an increase in the cost of the data breach

The average cost was $1.07 million greater in data breaches during the pandemic where remote work was responsible for causing the incident.

#34. Security artificial intelligence (AI) has the highest cost-mitigating impact

If deployed properly Security AI and automation can offer the highest cost reduction up to $3.86 million less as compared to firms that do not have these tools deployed.

#35. Cloud migration affects the cost and containment of the data breach

IBM research has shown that firms that have opted for a Cloud modernization strategy have been able to contain and recover from a data breach 77 days faster on average than those firms that have just started a Cloud modernization strategy.

#36. A ‘Zero-trust’ approach is beneficial for cost mitigation

With a mature ‘Zero-trust’ strategy, the average cost of a data breach can be $1.76 million less at firms.

#37.Public administration is most at risk from social engineering attacks

Social engineering attack is a type of cybercrime where cybercriminals trick the target via impersonation. Social engineering attacks account for 69% of all data breaches in public administration.

#38. Nearly two-thirds of firms have more than 1000 sensitive files unprotected

The latest data breach statistics show that large numbers of sensitive files containing information like credit card details, and health records are available openly. A study has found that in 64% of financial corporations each employee has access to more than 1000 sensitive records.

#39. Staff members at big corporations have access to nearly 20 million files

Employees working at large firms can access around 20 million files.

Exposure By Company Size

Financial Service company size Avg. # of files Avg. # of files open to everyone Avg. % of files open to everyone
Large 134,368,022 20,427,920 15%
Medium 75,085,577 10,254,062 13%
Small 6,800,969 570,284 11%
Industry average 74,309,255 10,774,940 13%

(Source: Varonis)

#40. Customer Personally Identifiable Information (Customer PII) is the most regular and costly form of stolen record

In 2021, Customer PII accounted for 44% of data breaches and the average cost per Customer PII had been $180.

#41. Cyber attacks and data scams are considered some of the major global risks

Cyber attacks and data fraud have been placed in the third position in terms of the most worrying risks for companies.

(Source: WEC)

#42. The Healthcare sector has been the most vulnerable industry to data breaches in the first quarter of 2022

A report from the first quarter of 2022 on data breaches has shown that the healthcare industry and health sciences have faced the highest number of data breaches accounting for 26% of 65 data breaches.

(Source: IT Governance)

#43. 58% of firms do not accept data breach disclosures

Security researchers keep tracking the internet for potential data breaches and then provide disclosures to concerned companies. However, more than half of firms do not respond to a breach disclosure. Only 23% of companies respond to breach disclosures within a day.

#44. Nearly 93% of cyber attacks effectively penetrate through a business network

A study has revealed a shocking fact that in 93% of incidents, an external hacker can successfully break a corporate network.

#45. Cyber attack has been the most regular type of security breach in 2022

A report put together by IT Governance has shown that in the first quarter of 2022, cyber attack has been the most standard form of data breach. Cyber attacks have accounted for 61% of all publically disclosed events.

#46. There was a 50% increase in the number of cyber attacks in 2021

As per data breach statistics, there had been a 50% increase in the frequency of cyber-attacks in 2021. These cyber-attacks involved phishing attempts, command and control attempts, malicious file downloads, malicious website access, and exploiting vulnerabilities.


Considering the digital age, we live in, there is no doubt that data security and defense system is highly important for all types of industry and companies. Executives should keep assessing cybersecurity risks before implementing any company-wide changes. A data breach can hamper a company’s market image and brand along with causing hefty monetary loss. These data breach statistics reveal how vital it is for firms to keep updating their security systems to protect their businesses from facing a data breach.

Barry Elad
Barry Elad

Barry is a lover of everything technology. Figuring out how the software works and creating content to shed more light on the value it offers users is his favorite pastime. When not evaluating apps or programs, he's busy trying out new healthy recipes, doing yoga, meditating, or taking nature walks with his little one.

More Posts By Barry Elad