Key Takeaways
- 3.2 million cases of fraud were reported in the UK in 2023 (Action Fraud)—highlighting the scale of fraud that social engineering can amplify through social media.
- 61% of breaches required malware removal or system rebuilding (IBM report)—cost drivers consistent with response after compromise through social engineering.
- 42% of breaches were discovered by security team (Verizon DBIR)—relevant to monitoring and responding to social-channel threats.
- 52% of organizations cited lacking internal security talent as a driver for longer response times (ISC2 workforce research)—affecting handling of social-media security events.
- 45% of organizations reported using social media for customer interaction in 2024—expanding the attack surface for social-media insecurity.
- 91% of data breaches were caused by human error (per IBM Security analysis presented in IBM’s 2024 Cost of a Data Breach materials)—human factors often connect to social media scams and impersonation.
- 2.3 billion fake social-media accounts were removed globally in 2023 by Meta—illustrating ongoing ecosystem insecurity via fake/inauthentic behavior.
- $3.9 billion was lost to impersonation scams in 2023 (FBI IC3)—often distributed through social channels.
- 62% of adults who use social media in the UK report that they never read privacy policies (Ofcom)—implying persistent privacy insecurity exposure.
- 40% of surveyed consumers said they are less likely to share personal information after seeing scam content online—behavioral insecurity affecting social media participation.
- 56% of respondents said they have seen fake profiles impersonating people or organizations on social media (NCSC/UK guidance survey findings published by researchers)—measuring observed insecurity artifacts.
- 81% of security teams use automated blocklists or deny lists (industry survey)—blocking known scam domains and links shared on social media.
- The mean time to respond (MTTR) to security incidents was 9 days in 2023 (IBM Security benchmark), showing how delayed response can worsen the fallout from social-engineering compromises
- 37% of global organizations use AI for threat detection in 2024 (industry survey), increasing automated defenses against social-engineering content and account abuse patterns
- 91% of survey respondents said they can recognize at least one phishing indicator, indicating training and awareness can reduce vulnerability to social engineering delivered via social links
From fraud and impersonation scams to slow response times, social media insecurity is already costing millions.
Related reading
01 · Category
Security Exposure1 stats
Security Exposure Interpretation
02 · Category
Detection & Response3 stats
Detection & Response Interpretation
03 · Category
Attack Surface4 stats
Attack Surface Interpretation
04 · Category
Financial Impact1 stats
Financial Impact Interpretation
05 · Category
User Behavior6 stats
User Behavior Interpretation
More related reading
06 · Category
Controls & Mitigation1 stats
Controls & Mitigation Interpretation
07 · Category
Operational Cost1 stats
Operational Cost Interpretation
08 · Category
Mitigation & Defense3 stats
Mitigation & Defense Interpretation
09 · Category
Regulatory & Governance6 stats
Regulatory & Governance Interpretation
Cite This Report
This report is designed to be cited. We maintain stable URLs and versioned verification dates. Copy the format appropriate for your publication below.
Thomas Lindqvist. (2026, February 13). Social Media Insecurity Statistics. Gitnux. https://gitnux.org/social-media-insecurity-statistics
Thomas Lindqvist. "Social Media Insecurity Statistics." Gitnux, 13 Feb 2026, https://gitnux.org/social-media-insecurity-statistics.
Thomas Lindqvist. 2026. "Social Media Insecurity Statistics." Gitnux. https://gitnux.org/social-media-insecurity-statistics.
Sources & references
26 datasets cited across this report · attribution is report-level
+6 additional datasets cited (not shown individually)

