Key Takeaways
- 68% of organizations experienced a cyber incident in the past 12 months
- 45% of breaches involved the use of stolen credentials
- 19% of breaches involved the use of compromised credentials
- $4.88 million average total cost of a data breach (global average)
- $1.76 million average cost of data breach due to business interruption
- $1.49 million average cost due to stolen data and IP loss
- 41% of organizations identified breaches within days (median time to detect measured in days varies by environment)
- 277 days average time to identify a data breach
- 84 days average time to contain a data breach
- 29% of organizations use a formal vulnerability management program
- 66% of organizations use a SIEM
Most organizations faced cyber incidents, often driven by human error, stolen credentials, and ransomware.
Related reading
01 · Category
Industry Trends30 stats
Industry Trends Interpretation
02 · Category
Cost Analysis15 stats
Cost Analysis Interpretation
More related reading
03 · Category
Performance Metrics5 stats
Performance Metrics Interpretation
04 · Category
User Adoption2 stats
User Adoption Interpretation
Cite This Report
This report is designed to be cited. We maintain stable URLs and versioned verification dates. Copy the format appropriate for your publication below.
Julian Richter. (2026, February 13). Cyber Risk Statistics. Gitnux. https://gitnux.org/cyber-risk-statistics
Julian Richter. "Cyber Risk Statistics." Gitnux, 13 Feb 2026, https://gitnux.org/cyber-risk-statistics.
Julian Richter. 2026. "Cyber Risk Statistics." Gitnux. https://gitnux.org/cyber-risk-statistics.
Sources & references
7 datasets cited across this report · attribution is report-level

