Sixty five percent of organizations use security logging and monitoring to detect misuse and misconfigurations. Reports often cite automation adoption and market growth without checking whether those steps reduce incidents such as ransomware attacks. Fifty four percent of organizations identify ransomware as their most costly threat while 38 percent of breaches trace to phishing or email attachments.
Key Takeaways
- 57% of organizations reported deploying security automation to reduce the time to respond to threats (IBM 2024 report summary).
- 48% of organizations reported using identity governance and administration (IGA) capabilities to reduce account misuse (SailPoint 2024 survey).
- 65% of organizations said they use security logging/monitoring (SIEM/SOAR) to detect misuse and misconfigurations (Gartner, 2024 security monitoring).
- 54% of organizations said ransomware was the most financially impactful threat they experienced (2024 survey).
- In 2023, 38% of breaches involved malware spread through phishing or email attachments (Verizon DBIR 2024).
- $2.98 billion total reported losses from cybercrime in the US in 2023 (FBI IC3 2023 report).
- In 2023, malware accounted for 35% of breaches involving cyber-physical systems (ENISA threat landscape 2024, ICS).
- The global cloud access security broker (CASB) market was $1.2 billion in 2024 and forecast to reach $4.1 billion by 2030 (MarketsandMarkets, 2024).
- The global security orchestration, automation, and response (SOAR) market was valued at $2.7 billion in 2023 (Fortune Business Insights, 2024).
- The global security information and event management (SIEM) market was projected to be $35.6 billion in 2024 (Gartner market numbers summarized by vendor research).
- $1.95 million was the median cost of a data breach involving malicious or criminal conduct in 2023
- NIST SP 800-63B recommends that verifiers use MFA to mitigate account takeover and credential misuse, including phishing-resistant options
- NIST SP 800-171 requires access control policies and procedures and mandates audit logs for controlled access to protect against unauthorized use
From phishing to ransomware, most breaches and losses spur faster automation, stronger monitoring, and MFA to curb account misuse.
Related reading
01 · Category
Mitigation Adoption3 stats
01
57% of organizations reported deploying security automation to reduce the time to respond to threats (IBM 2024 report summary).
02
48% of organizations reported using identity governance and administration (IGA) capabilities to reduce account misuse (SailPoint 2024 survey).
03
65% of organizations said they use security logging/monitoring (SIEM/SOAR) to detect misuse and misconfigurations (Gartner, 2024 security monitoring).
Interpretation
Mitigation Adoption Interpretation
Under the Mitigation Adoption lens, nearly two thirds of organizations using security logging and monitoring alongside 57% deploying security automation indicates that most are increasingly equipping themselves to curb misuse in practice rather than relying solely on prevention.
02 · Category
Threat Landscape1 stats
01
54% of organizations said ransomware was the most financially impactful threat they experienced (2024 survey).
Interpretation
Threat Landscape Interpretation
In the Threat Landscape, 54% of organizations say ransomware is the most financially impactful threat they face, underscoring how dominant and costly it has become in recent cybersecurity experiences.
03 · Category
Industry Trends6 stats
01
In 2023, 38% of breaches involved malware spread through phishing or email attachments (Verizon DBIR 2024).
02
$2.98 billion total reported losses from cybercrime in the US in 2023 (FBI IC3 2023 report).
03
In 2023, malware accounted for 35% of breaches involving cyber-physical systems (ENISA threat landscape 2024, ICS).
04
$10.1 billion total losses were reported to IC3 in 2022 (FBI IC3 2022 report).
05
OpenSSL had 1,000,000+ downloads after high-impact vulnerability disclosures (industry tracking of CVE-2022-0778).
06
1.3 million phishing sites were blocked daily on average by Google Safe Browsing in 2023 (average)
Interpretation
Industry Trends Interpretation
Across industry trends, attackers are increasingly leveraging email and malware at scale, with 38% of 2023 breaches using phishing or email attachments and malware tied to 35% of cyber-physical system incidents, while the US also reported $2.98 billion in cybercrime losses in 2023.
More related reading
04 · Category
Market Size11 stats
01
The global cloud access security broker (CASB) market was $1.2 billion in 2024 and forecast to reach $4.1 billion by 2030 (MarketsandMarkets, 2024).
02
The global security orchestration, automation, and response (SOAR) market was valued at $2.7 billion in 2023 (Fortune Business Insights, 2024).
03
The global security information and event management (SIEM) market was projected to be $35.6 billion in 2024 (Gartner market numbers summarized by vendor research).
04
The identity and access management (IAM) market is projected to reach $30.7 billion by 2027 (Fortune Business Insights, 2024).
05
The global endpoint detection and response (EDR) market is forecast to grow from $6.9 billion in 2023 to $20.9 billion by 2030 (Fortune Business Insights, 2024).
06
The cloud security market is expected to grow from $8.7 billion in 2022 to $22.4 billion by 2026 (MarketsandMarkets, 2023 forecast).
07
Worldwide spending on security services is projected to total $156.4 billion in 2024 (Gartner forecast, press release dated 2024-04-17).
08
Worldwide end-user spending on cybersecurity products and services is forecast to reach $219.0 billion in 2024 (Gartner 2024 press release).
09
The global unified endpoint management (UEM) market was valued at $2.2 billion in 2023 and projected to reach $8.0 billion by 2030 (IMARC, 2024).
10
The market for cloud security posture management (CSPM) is forecast to reach $4.6 billion by 2027 (Global Market Insights, 2024).
11
The privileged access management (PAM) market was estimated at $5.4 billion in 2023 and forecast to grow to $16.0 billion by 2030 (MarketsandMarkets, 2024).
Interpretation
Market Size Interpretation
The Market Size data shows that demand for security solutions is rapidly expanding, with the cloud access security broker market rising from $1.2 billion in 2024 to a forecast $4.1 billion by 2030, reflecting broad growth across the security ecosystem.
05 · Category
Cost Analysis1 stats
01
$1.95 million was the median cost of a data breach involving malicious or criminal conduct in 2023
Interpretation
Cost Analysis Interpretation
In the cost analysis of breaches tied to malicious or criminal conduct, the median impact in 2023 was $1.95 million, underscoring how significant these incidents are financially.
06 · Category
Governance & Controls2 stats
01
NIST SP 800-63B recommends that verifiers use MFA to mitigate account takeover and credential misuse, including phishing-resistant options
02
NIST SP 800-171 requires access control policies and procedures and mandates audit logs for controlled access to protect against unauthorized use
Interpretation
Governance & Controls Interpretation
Under Governance and Controls, the guidance trends toward stronger misuse prevention by requiring verifiers to use MFA, including phishing resistant options as emphasized in NIST SP 800-63B, alongside access control policies with mandatory audit logs for controlled access under NIST SP 800-171.
report visual · Projection
Security measures vs. organization-reported effectiveness (2023–2024)
Reported adoption of key security controls is mixed: security logging/monitoring and security automation are more common than identity governance, while breach data highlight ongoing malware/phishing involvement.
38 percent
Start
0%
CAGR · 1y
38 percent
Projected
20232024
source-verifiedverizon.com · gartner.com · ibm.com · sailpoint.com2024
Reference
Cite This Report
This report is designed to be cited. We maintain stable URLs and versioned verification dates. Copy the format appropriate for your publication below.
APA
James Okoro. (2026, February 13). Misusing Statistics. Gitnux. https://gitnux.org/misusing-statistics
MLA
James Okoro. "Misusing Statistics." Gitnux, 13 Feb 2026, https://gitnux.org/misusing-statistics.
Chicago
James Okoro. 2026. "Misusing Statistics." Gitnux. https://gitnux.org/misusing-statistics.
Sources & references
24 datasets cited across this report · attribution is report-level
+9 additional datasets cited (not shown individually)