Key Takeaways
- 1.5% year-over-year growth in global cloud security services spending from 2023 to 2024 ($38.1B in 2024)
- $4.6B global market size for email security in 2021
- $23.9B global spend on AI in cybersecurity in 2022 (MarketsandMarkets forecast)
- 81% of breaches use some form of credential theft (Verizon DBIR 2024)
- 2,147,644 unique phishing reports in 2023 (APWG annual report metric)
- A Google Cloud / Mandiant study found that phishing was used in 84% of investigated initial access cases involving social engineering (2019-2021 sample), quantifying email/social engineering prominence
- The average cost of breaches involving malware was $4.55M in 2023 (IBM Cost of a Data Breach Report)
- In the FBI IC3 2023 report, BEC accounted for the largest share of total losses among cybercrime categories at $2.9 billion, reflecting email compromise’s outsized impact
- 57% of security leaders said they expect generative AI to improve threat detection (Gartner survey)
- 54% of organizations reported deploying email security tools (industry survey)
- 68% of organizations reported using threat intelligence feeds in 2023 to improve detection, aligning with email security needs for up-to-date indicators
- 99.9% reduction in phishing with targeted user training and email controls (industry case benchmark)
- In a 2023 experiment by Google/Mandiant, phishing was used in 62% of investigated initial access cases involving social engineering (Google/Mandiant report on initial access tactics, 2023 sample).
- Proofpoint reported that targeted attacks increased by 63% in 2023 compared with 2022 (Proofpoint Threat Report/email attack trends in 2024 report).
Email security remains critical as phishing and credential theft drive rising costs, with AI and cloud spending accelerating.
Related reading
01 · Category
Market Size9 stats
Market Size Interpretation
02 · Category
Industry Trends6 stats
Industry Trends Interpretation
03 · Category
Cost Analysis2 stats
Cost Analysis Interpretation
More related reading
04 · Category
User Adoption4 stats
User Adoption Interpretation
05 · Category
Performance Metrics3 stats
Performance Metrics Interpretation
Phishing remains a key initial-access tactic in email/social engineering
Across multiple studies and reports, phishing is frequently observed in initial access and phishing campaigns commonly rely on brand impersonation.
Cite This Report
This report is designed to be cited. We maintain stable URLs and versioned verification dates. Copy the format appropriate for your publication below.
Sophie Moreland. (2026, February 13). AI Email Security Industry Statistics. Gitnux. https://gitnux.org/ai-email-security-industry-statistics
Sophie Moreland. "AI Email Security Industry Statistics." Gitnux, 13 Feb 2026, https://gitnux.org/ai-email-security-industry-statistics.
Sophie Moreland. 2026. "AI Email Security Industry Statistics." Gitnux. https://gitnux.org/ai-email-security-industry-statistics.
Sources & references
24 datasets cited across this report · attribution is report-level
+4 additional datasets cited (not shown individually)

