GITNUXREPORT 2026

Cybersecurity Breach Statistics

Recent record-breaking global cyberattacks highlight escalating threats across all sectors.

Alexander Schmidt

Alexander Schmidt

Research Analyst specializing in technology and digital transformation trends.

First published: Feb 13, 2026

Our Commitment to Accuracy

Rigorous fact-checking · Reputable sources · Regular updatesLearn more

Key Statistics

Statistic 1

Phishing avg cost $4.91 million per incident IBM 2023

Statistic 2

Ransomware responsible for 23% of breaches Verizon 2024

Statistic 3

Stolen credentials 49% of breaches web apps Verizon

Statistic 4

Supply chain compromise 15% incidents Verizon DBIR

Statistic 5

Vulnerability exploitation 29% of breaches 2023

Statistic 6

DDoS attacks up 200% in 2023 Cloudflare

Statistic 7

Malware involved in 83% ransomware Sophos 2023

Statistic 8

Phishing emails 300% rise in 2023 Proofpoint

Statistic 9

BEC scams $2.9 billion losses FBI 2023

Statistic 10

Zero-day exploits 25% of intrusions Mandiant 2024

Statistic 11

Insider threats 19% of breaches Verizon

Statistic 12

SQL injection 8% web app breaches OWASP

Statistic 13

Man-in-the-middle 5% incidents IBM

Statistic 14

IoT attacks doubled to 2,200/day 2023 Kaspersky

Statistic 15

Cloud misconfig 19% breaches Palo Alto 2023

Statistic 16

API vulnerabilities exploited in 12% breaches Salt 2023

Statistic 17

Social engineering 74% initial access Verizon

Statistic 18

Remote services 62% breach vector COVID era

Statistic 19

Cryptojacking 65% rise Check Point 2023

Statistic 20

Fileless malware 77% detections CrowdStrike

Statistic 21

In 2023, global cybersecurity breaches affected over 3.5 billion personal records according to the Identity Theft Resource Center

Statistic 22

The Verizon 2024 DBIR reported 5,199 confirmed data breaches analyzed, with a 17% increase from 2022

Statistic 23

Ponemon Institute found 83% of organizations experienced more than one breach in 2023

Statistic 24

In the US, there were 3,205 data breaches reported in 2023 per HHS

Statistic 25

ENISA Threat Landscape 2023 noted 1,200+ significant incidents in EU

Statistic 26

CrowdStrike 2024 Global Threat Report identified 1.6 million adversary actions

Statistic 27

IBM reported average time to identify a breach at 204 days in 2023

Statistic 28

UpGuard listed 4,084 breaches in 2023 exposing 3.8 billion records

Statistic 29

Statista recorded 2,839 US breaches in H1 2023

Statistic 30

CISA reported 1,200+ cyber incidents in US federal agencies in 2023

Statistic 31

Microsoft Digital Defense Report 2023 logged 300 million daily threats

Statistic 32

Sophos State of Ransomware 2023 surveyed 2,843 attacks on orgs

Statistic 33

Mandiant M-Trends 2024 median dwell time 16 days for breaches

Statistic 34

Proofpoint 2023 report 84% orgs hit by phishing leading to breach

Statistic 35

Rapid7 2023 report 1,199 vulnerabilities exploited in breaches

Statistic 36

Okta 2023 report 6,515 security incidents across customers

Statistic 37

Cisco Annual Cybersecurity Report 2023 99.4% emails malicious

Statistic 38

Zscaler 2023 15 billion daily threats mitigated

Statistic 39

FireEye/Mandiant 2023 1,803 intrusions analyzed

Statistic 40

Recorded Future 2023 500+ state-sponsored breaches

Statistic 41

Darktrace 2023 detected 1 million novel threats daily

Statistic 42

KnowBe4 2023 90% breaches from phishing

Statistic 43

Kaspersky 2023 419 million unique threats detected

Statistic 44

Trend Micro 2023 79 billion threats stopped

Statistic 45

McAfee 2023 1.5 million attacks daily on endpoints

Statistic 46

Symantec 2023 400 million identities compromised yearly

Statistic 47

Norton 2023 11% rise in breaches affecting consumers

Statistic 48

Aura 2023 2,600 daily breaches worldwide

Statistic 49

Surfshark 2023 140 daily breaches per minute globally

Statistic 50

MOVEit breach in 2023 exposed 62 million records across 2,000 orgs

Statistic 51

Change Healthcare breach 2024 impacted 1/3 of Americans, 100 million records

Statistic 52

Equifax 2017 breach exposed 147 million SSNs and PII

Statistic 53

Yahoo 2013-2014 breaches totaled 3 billion accounts

Statistic 54

Marriott 2018-2020 breach 500 million guest records

Statistic 55

Capital One 2019 breach 100 million customer applications

Statistic 56

SolarWinds 2020 supply chain breach affected 18,000 orgs

Statistic 57

Colonial Pipeline 2021 ransomware exposed operational data

Statistic 58

Optus 2022 breach 10 million customer records

Statistic 59

Uber 2022 breach 77 million users' PII and passwords

Statistic 60

Twilio 2022 breach 163,000 customers SMS logs

Statistic 61

LastPass 2022 breach 30 million users vault data

Statistic 62

Snowflake 2024 breach 165 orgs, millions of records via stolen creds

Statistic 63

AT&T 2024 breach 73 million current/former customers PII

Statistic 64

National Public Data 2024 breach 2.9 billion records

Statistic 65

Oracle 2022-2023 6.3 million records from healthcare clients

Statistic 66

Saks Fifth Avenue 2024 4 million credit cards

Statistic 67

Hughes Network 2022 357k employee records

Statistic 68

T-Mobile 2023 37 million customer records

Statistic 69

23andMe 2023 6.9 million DNA profiles

Statistic 70

MGM Resorts 2023 10.3 million guest records

Statistic 71

Caesars Entertainment 2023 10 million loyalty program records

Statistic 72

Clorox 2023 supply chain data exposure

Statistic 73

Microsoft Exchange 2021 Hafnium breach 250k servers

Statistic 74

Log4Shell exploited in 2021 affecting millions of apps

Statistic 75

IBM 2023 Cost of Data Breach avg $4.88 million globally

Statistic 76

Ponemon/IBM 2023 US avg breach cost $9.44 million

Statistic 77

Verizon DBIR 2024 stolen creds avg cost $150k per breach

Statistic 78

Ponemon ransomware avg $4.54 million downtime cost 2023

Statistic 79

Accenture 2023 avg global breach $5.13 million

Statistic 80

Statista 2023 healthcare breach avg $10.93 million

Statistic 81

Deloitte 2023 financial services avg $5.9 million per breach

Statistic 82

EY 2023 avg ransomware payment $1.54 million

Statistic 83

Chainalysis 2024 crypto theft $3.8 billion from breaches

Statistic 84

Coveware 2023 avg ransom $1.2 million paid

Statistic 85

Sophos 2023 ransomware recovery avg $1.82 million

Statistic 86

Emsisoft 2023 US ransomware losses $1.1 billion

Statistic 87

Cybereason 2023 avg downtime 23 days costing $8.9 million

Statistic 88

NetDiligence 2023 cyber insurance claims $1.4 billion

Statistic 89

Woodruff Sawyer 2023 avg claim $4.5 million

Statistic 90

Risk Management Society 2023 breach notification $250k avg

Statistic 91

PwC 2023 global cyber spend $188 billion annually

Statistic 92

Gartner 2023 worldwide security spending $188.3 billion

Statistic 93

McKinsey 2023 cyber risk insurance premiums up 50%

Statistic 94

Boston Consulting Group 2023 avg breach $5.72 million APAC

Statistic 95

KPMG 2023 UK avg breach £10.4 million

Statistic 96

Orange Cyberdefense 2023 EU avg €4.5 million

Statistic 97

Healthcare 20% of breaches IBM 2023 costliest

Statistic 98

Financial services 15% incidents Verizon 2024

Statistic 99

Retail 11% breaches high PII exposure

Statistic 100

Government 10% targeted by nation-states Mandiant

Statistic 101

Manufacturing 24% ransomware Sophos 2023

Statistic 102

Education 9% breaches avg $4.41M IBM

Statistic 103

Energy 7% critical infra attacks CISA

Statistic 104

Tech 18% supply chain breaches Verizon

Statistic 105

Healthcare 54 days median detection IBM

Statistic 106

Finance fastest response 28 days IBM 2023

Statistic 107

Retail 71% cloud breaches Palo Alto

Statistic 108

Pharma 13% data theft Mandiant

Statistic 109

Telecom 8% SIM swap attacks FTC

Statistic 110

Hospitality 6% POS breaches Verizon

Statistic 111

Transportation 5% ransomware Emsisoft

Statistic 112

Professional services 12% IBM avg $5.08M

Statistic 113

Entertainment gaming 4% DDoS Cloudflare

Statistic 114

Non-profits 3% underreported breaches

Statistic 115

Construction 7% rising OT attacks Dragos

Sources
Trusted by 500+ publications
Harvard Business ReviewThe GuardianFortune+497
With staggering statistics revealing that over 3.5 billion personal records were compromised globally in 2023 alone, it’s clear that cybersecurity breaches have escalated from an occasional headline to a relentless, daily crisis impacting every sector and individual.

Key Takeaways

  • In 2023, global cybersecurity breaches affected over 3.5 billion personal records according to the Identity Theft Resource Center
  • The Verizon 2024 DBIR reported 5,199 confirmed data breaches analyzed, with a 17% increase from 2022
  • Ponemon Institute found 83% of organizations experienced more than one breach in 2023
  • MOVEit breach in 2023 exposed 62 million records across 2,000 orgs
  • Change Healthcare breach 2024 impacted 1/3 of Americans, 100 million records
  • Equifax 2017 breach exposed 147 million SSNs and PII
  • IBM 2023 Cost of Data Breach avg $4.88 million globally
  • Ponemon/IBM 2023 US avg breach cost $9.44 million
  • Verizon DBIR 2024 stolen creds avg cost $150k per breach
  • Phishing avg cost $4.91 million per incident IBM 2023
  • Ransomware responsible for 23% of breaches Verizon 2024
  • Stolen credentials 49% of breaches web apps Verizon
  • Healthcare 20% of breaches IBM 2023 costliest
  • Financial services 15% incidents Verizon 2024
  • Retail 11% breaches high PII exposure

Recent record-breaking global cyberattacks highlight escalating threats across all sectors.

Attack Methods

  • Phishing avg cost $4.91 million per incident IBM 2023
  • Ransomware responsible for 23% of breaches Verizon 2024
  • Stolen credentials 49% of breaches web apps Verizon
  • Supply chain compromise 15% incidents Verizon DBIR
  • Vulnerability exploitation 29% of breaches 2023
  • DDoS attacks up 200% in 2023 Cloudflare
  • Malware involved in 83% ransomware Sophos 2023
  • Phishing emails 300% rise in 2023 Proofpoint
  • BEC scams $2.9 billion losses FBI 2023
  • Zero-day exploits 25% of intrusions Mandiant 2024
  • Insider threats 19% of breaches Verizon
  • SQL injection 8% web app breaches OWASP
  • Man-in-the-middle 5% incidents IBM
  • IoT attacks doubled to 2,200/day 2023 Kaspersky
  • Cloud misconfig 19% breaches Palo Alto 2023
  • API vulnerabilities exploited in 12% breaches Salt 2023
  • Social engineering 74% initial access Verizon
  • Remote services 62% breach vector COVID era
  • Cryptojacking 65% rise Check Point 2023
  • Fileless malware 77% detections CrowdStrike

Attack Methods Interpretation

If we distilled the current cyber threat landscape into a cocktail, it would be a depressingly expensive one mixed from a splash of human gullibility, a double-shot of unpatched vulnerabilities, a bitter rim of stolen credentials, and garnished with a ransomware olive that you’re somehow expected to pay for.

Breach Incidents

  • In 2023, global cybersecurity breaches affected over 3.5 billion personal records according to the Identity Theft Resource Center
  • The Verizon 2024 DBIR reported 5,199 confirmed data breaches analyzed, with a 17% increase from 2022
  • Ponemon Institute found 83% of organizations experienced more than one breach in 2023
  • In the US, there were 3,205 data breaches reported in 2023 per HHS
  • ENISA Threat Landscape 2023 noted 1,200+ significant incidents in EU
  • CrowdStrike 2024 Global Threat Report identified 1.6 million adversary actions
  • IBM reported average time to identify a breach at 204 days in 2023
  • UpGuard listed 4,084 breaches in 2023 exposing 3.8 billion records
  • Statista recorded 2,839 US breaches in H1 2023
  • CISA reported 1,200+ cyber incidents in US federal agencies in 2023
  • Microsoft Digital Defense Report 2023 logged 300 million daily threats
  • Sophos State of Ransomware 2023 surveyed 2,843 attacks on orgs
  • Mandiant M-Trends 2024 median dwell time 16 days for breaches
  • Proofpoint 2023 report 84% orgs hit by phishing leading to breach
  • Rapid7 2023 report 1,199 vulnerabilities exploited in breaches
  • Okta 2023 report 6,515 security incidents across customers
  • Cisco Annual Cybersecurity Report 2023 99.4% emails malicious
  • Zscaler 2023 15 billion daily threats mitigated
  • FireEye/Mandiant 2023 1,803 intrusions analyzed
  • Recorded Future 2023 500+ state-sponsored breaches
  • Darktrace 2023 detected 1 million novel threats daily
  • KnowBe4 2023 90% breaches from phishing
  • Kaspersky 2023 419 million unique threats detected
  • Trend Micro 2023 79 billion threats stopped
  • McAfee 2023 1.5 million attacks daily on endpoints
  • Symantec 2023 400 million identities compromised yearly
  • Norton 2023 11% rise in breaches affecting consumers
  • Aura 2023 2,600 daily breaches worldwide
  • Surfshark 2023 140 daily breaches per minute globally

Breach Incidents Interpretation

Despite the industry's collective noise about artificial intelligence, the only thing multiplying faster than threats is the number of reports telling us we're already drowning in them.

Data Compromised

  • MOVEit breach in 2023 exposed 62 million records across 2,000 orgs
  • Change Healthcare breach 2024 impacted 1/3 of Americans, 100 million records
  • Equifax 2017 breach exposed 147 million SSNs and PII
  • Yahoo 2013-2014 breaches totaled 3 billion accounts
  • Marriott 2018-2020 breach 500 million guest records
  • Capital One 2019 breach 100 million customer applications
  • SolarWinds 2020 supply chain breach affected 18,000 orgs
  • Colonial Pipeline 2021 ransomware exposed operational data
  • Optus 2022 breach 10 million customer records
  • Uber 2022 breach 77 million users' PII and passwords
  • Twilio 2022 breach 163,000 customers SMS logs
  • LastPass 2022 breach 30 million users vault data
  • Snowflake 2024 breach 165 orgs, millions of records via stolen creds
  • AT&T 2024 breach 73 million current/former customers PII
  • National Public Data 2024 breach 2.9 billion records
  • Oracle 2022-2023 6.3 million records from healthcare clients
  • Saks Fifth Avenue 2024 4 million credit cards
  • Hughes Network 2022 357k employee records
  • T-Mobile 2023 37 million customer records
  • 23andMe 2023 6.9 million DNA profiles
  • MGM Resorts 2023 10.3 million guest records
  • Caesars Entertainment 2023 10 million loyalty program records
  • Clorox 2023 supply chain data exposure
  • Microsoft Exchange 2021 Hafnium breach 250k servers
  • Log4Shell exploited in 2021 affecting millions of apps

Data Compromised Interpretation

If this litany of digital carnage teaches us anything, it's that the modern world has perfected the art of creating incredibly valuable data and then scattering it like confetti at a parade for criminals.

Financial Losses

  • IBM 2023 Cost of Data Breach avg $4.88 million globally
  • Ponemon/IBM 2023 US avg breach cost $9.44 million
  • Verizon DBIR 2024 stolen creds avg cost $150k per breach
  • Ponemon ransomware avg $4.54 million downtime cost 2023
  • Accenture 2023 avg global breach $5.13 million
  • Statista 2023 healthcare breach avg $10.93 million
  • Deloitte 2023 financial services avg $5.9 million per breach
  • EY 2023 avg ransomware payment $1.54 million
  • Chainalysis 2024 crypto theft $3.8 billion from breaches
  • Coveware 2023 avg ransom $1.2 million paid
  • Sophos 2023 ransomware recovery avg $1.82 million
  • Emsisoft 2023 US ransomware losses $1.1 billion
  • Cybereason 2023 avg downtime 23 days costing $8.9 million
  • NetDiligence 2023 cyber insurance claims $1.4 billion
  • Woodruff Sawyer 2023 avg claim $4.5 million
  • Risk Management Society 2023 breach notification $250k avg
  • PwC 2023 global cyber spend $188 billion annually
  • Gartner 2023 worldwide security spending $188.3 billion
  • McKinsey 2023 cyber risk insurance premiums up 50%
  • Boston Consulting Group 2023 avg breach $5.72 million APAC
  • KPMG 2023 UK avg breach £10.4 million
  • Orange Cyberdefense 2023 EU avg €4.5 million

Financial Losses Interpretation

If we add up all the expensive lessons from these breach reports, it appears the global economy is funding a lavish, involuntary and highly exclusive subscription service for cybercriminals, with healthcare currently on the most expensive premium plan.

Industry Impacts

  • Healthcare 20% of breaches IBM 2023 costliest
  • Financial services 15% incidents Verizon 2024
  • Retail 11% breaches high PII exposure
  • Government 10% targeted by nation-states Mandiant
  • Manufacturing 24% ransomware Sophos 2023
  • Education 9% breaches avg $4.41M IBM
  • Energy 7% critical infra attacks CISA
  • Tech 18% supply chain breaches Verizon
  • Healthcare 54 days median detection IBM
  • Finance fastest response 28 days IBM 2023
  • Retail 71% cloud breaches Palo Alto
  • Pharma 13% data theft Mandiant
  • Telecom 8% SIM swap attacks FTC
  • Hospitality 6% POS breaches Verizon
  • Transportation 5% ransomware Emsisoft
  • Professional services 12% IBM avg $5.08M
  • Entertainment gaming 4% DDoS Cloudflare
  • Non-profits 3% underreported breaches
  • Construction 7% rising OT attacks Dragos

Industry Impacts Interpretation

While healthcare bears the costly honor of being hackers' favorite punching bag, every sector from finance to factories is engaged in a grim, expensive race between who can patch their digital leaks faster and who can siphon off data and dollars quicker.

Sources & References

Logos provided by Logo.dev