Key Takeaways
- Ransomware attacks were responsible for 2.2% of total cyber incident costs in the analyzed dataset in 2023 (cost share metric)
- The average total cost of a data breach was $4.88 million in 2023
- The average cost of a data breach for companies with 1,000+ employees was $5.01 million in 2023
- In IBM’s 2023 study, the average time to identify a breach was 200 days
- In IBM’s 2023 study, the average time to contain a breach was 75 days
- In IBM’s 2023 study, 61% of breaches were identified by people (not systems/tech alone)
- In IBM’s 2023 study, the most common root cause of breaches was human error (accounted for 23% of breaches) based on the study’s root-cause breakdown
- In IBM’s 2023 study, 83% of breaches involved the use of stolen credentials
- In IBM’s 2023 study, 45% of organizations experienced more than one breach in the past two years
- As of 2024, the global cybersecurity spending is projected to exceed $1 trillion cumulatively from 2021-2025 (spend trajectory metric)
- The global information security market size is forecast to reach $183.7 billion in 2023
- Gartner forecasts worldwide information security spending to reach $188.3 billion in 2024
- FinCEN reported that 2023 SARs were filed by approximately 13,000 financial institutions (institutions reporting count metric)
- In 2023, 59% of organizations implemented security awareness training for employees (training adoption share)
- In 2023, 46% of organizations reported using automated incident response playbooks (automation adoption share)
Data breaches cost millions, and regulators and downtime compound losses as cyber crime grows.
Related reading
01 · Category
Cost Analysis15 stats
Cost Analysis Interpretation
02 · Category
Performance Metrics5 stats
Performance Metrics Interpretation
03 · Category
Industry Trends19 stats
Industry Trends Interpretation
More related reading
04 · Category
Market Size16 stats
Market Size Interpretation
05 · Category
User Adoption5 stats
User Adoption Interpretation
Cite This Report
This report is designed to be cited. We maintain stable URLs and versioned verification dates. Copy the format appropriate for your publication below.
Christopher Morgan. (2026, February 13). Scary Financial Statistics. Gitnux. https://gitnux.org/scary-financial-statistics
Christopher Morgan. "Scary Financial Statistics." Gitnux, 13 Feb 2026, https://gitnux.org/scary-financial-statistics.
Christopher Morgan. 2026. "Scary Financial Statistics." Gitnux. https://gitnux.org/scary-financial-statistics.
Sources & references
23 datasets cited across this report · attribution is report-level
+9 additional datasets cited (not shown individually)

