Cyber Insurance

95 Cybersecurity Statistics & Cybercrime Facts

Top 10 Cybersecurity Statistics

  1. 66% of organizations anticipate growth in their cybersecurity budgets from the recent past, with 33% forecasting cyber spending growth to double.
  2. The need for more businesses to go digital, along with rising cybercrime, will increase cybersecurity expenditures to $1.75 trillion from 2021 to 2025.
  3. A 2021 survey found that 40% of respondents thought that hybrid IT and transformation are the hardest parts of managing cybersecurity.
  4. In the third quarter of 2021, Google reported its increasing commitment to boosting cybersecurity, with a plan to invest $10 billion in open-source security, software supply chains, and zero-trust applications.
  5. In mid-2022, the HAC disclosed cybersecurity spending to be $15.6 billion.
  6. Based on data obtained from Fortune Magazine, the worldwide cyber insurance industry will increase with a compound annual growth rate of 25.3% from 2021 to 2028. It's anticipated to climb to $38.85 billion by the same end period.
  7. As reports indicate from IT experts, just 4% of companies paying ransomware hackers get back all the data that was stolen.
  8. A recent report shows an increase in different cyberattacks from 2020 to 2021, with 33% related to zero-day exploits.
  9. From 2020 to 2021, data breaches on average costs increased by 10%, totaling $4.24 million, the fastest growth rate in almost a decade.
  10. In 2020, losses due to identity fraud totaled $56 billion, $13 billion of which disappeared from traditional fraud methods and $43 billion taken through scams.

Influential Cybersecurity Statistics & Trends

Influential Cybersecurity Statistics & Trends
  • 1 in 3 homes with computers are infected with malicious software.
  • Human error accounts for 95% of all breaches related to cybersecurity.
  • The global information security industry is predicted to be $386.1 billion in value by 2028.
  • 46% of cyberattacks in 2020 targeted the United States, twice as much as all other nations.
  • 68% of company heads feel that cybersecurity threats are on the rise.
  • The average company has only 5% of their computer's folders properly encrypted.
  • 54% of businesses consider their IT departments not fully prepared to deal with cyberattacks of an advanced nature.
  • 42% of businesses are impacted by cyber fatigue, an inability to properly fend off cyber attacks.
  • 43% of cyber breaches are from people with insider information to businesses, such as current and former employees.
  • In 2021, 22 billion records were made vulnerable due to cyber breaches.
  • In 2021, 70% of cyber breaches were financially motivated, with 4% relating to espionage.
  • 40% of breaches in 2021 were done by phishing, with 11% involving malware of some kind, and hacking at 22%.
  • 1,862 data breaches occurred in 2021, more than the previous record of 1,506 set in 2017.
  • The biggest email formats for hackers installing malware were .dot and .doc, with 37%, and .exe with 19.5%.
  • 300 billion passwords are used by both humans and bots globally.
  • 40% of the world's population isn't connected to the internet, creating a vulnerability for them taken advantage of by cybercriminals when they are connected.
  • 65% of Americans who went online received at least one online scam offer.
online scam offers

Cybercrime Statistics By Attack Type

lost money and time due to online crime
  • Worldwide, consumers lost $358 + 21 hours on average per year dealing with online crime.
  • Ransomware payments increased in 2021 to $570,000 on average.
  • In 2020, malware installations rose by 358%, with Ransomware attacks increasing by 435% from 2019 to 2020.
  • Over 300,000 users of the Android operating system downloaded the trojan horses Google Play Store app.
  • 10,573 mobile applications in 2018 were blocked every day.
  • About 26% of web traffic is non-human and generated by bots.
  • The applications most taken advantage of are Microsoft Office documents, with attacks increasing by 112% since 2015.
  • Email delivery accounts for 94% of all malware sent to over computers and servers.
  • $2 million is the average cost for ransomware recovery.
  • 8% of companies paying ransomware to hackers get back all of the stolen data.
  • Microsoft Office accounts for 48% of infected email attachments.
  • 60% of malicious web domains are closely attached to spamming.
  • Every 11 seconds, a company becomes the victim of a ransomware attack.
  • 20% of malicious domains are new or only a week old before registration.
  • 57% of businesses have phishing attempts occur every day.
  • Phishing rose in 2020 to 1 out of every 4,200 emails.
  • 65% of organized cybercriminals rely on spear-phishing to find vulnerable targets.
  • Every 60 seconds, $17,700 is stolen due to phishing.
  • 2023 is forecasted to have 15.4 million Direct Denial-of-Service, or DDoS, attacks around the world.
  • Attacks on IoT devices, such as cameras, motion sensors, and related smart devices, progressively increased by nearly 200% in 2019.
  • 30% of all data breaches are related to insider threats.
  • 5,200 attacks are directed at IoT devices every month.
  • Cryptocurrency mining accounts for 90% of remote code execution attacks.
  • There are 69% of businesses believe their antivirus applications aren't useful.
  • 1 of every 36 smartphones has apps that are malicious or vulnerable.
  • 47% of American adults have had their personal information exposed by cyber criminals.
cybersecurity and cybercrime statistics

Millennials Cybercrime Statistics

44% of millennials have been victims of crime online in the last year.

rates of online crime

31% of millennials share passwords, the most of any age group.

83% of millennials agree that cybersecurity awareness programs in school and at work is important.

cybersecurity awareness programs is important

Cybersecurity Compliance And Government Statistics

  • 66% of organizations believe that compliance mandates are responsible for spending increases.
  • 78% of businesses anticipate yearly rises in requirements related to regulatory compliance.
  • $10,000 per worker is the cost of compliance for major firms.
  • Businesses in 2018 spent $1.3 million on average to meet compliance demands, with $1.8 million in added expenses.
  • 11 million files are the average number that an employee has access to.
  • 15% of businesses are responsible for over 1 million files being open for every worker.
  • Employers have access to 17% of their employer's sensitive files.
  • 60% of organizations possess over 500 accounts without a password expiry.
  • Over 77% of businesses have no plan for incident response in place.
  • 212 General Data Protection Regulation fines were issued by Spain in 2021, more than three times the rate of any other country.
  • Businesses spent $9 billion in preparation for GDPR.
  • UK FTSE 350 organizations spent 40% of their GDPR budgets in 2018 totaling $2.4 million in costs.
  • 88% of businesses spent over $1 million in preparation for the GDPR.

Security Spending And Cost Stats

  • Insurance costs related to cybersecurity increased 96% in the third quarter of 2021, a 204% year-over-year rise.
  • The average cost for every branch is $1.07 million more when remote employment is factored in the event of a data breach.
  • The majority of cost mitigations in data breaches are from artificial intelligence, lowering costs per breach to businesses by $3.81 million.
  • Companies with a zero trust plan had $1.76 million less spending than businesses without it.
  • Cybersecurity budgets in 2020 consisted of 50% of security services.
  • $2.6 million is the cost for every malware attack targeting an organization.
  • $1.59 million in lost business is the average cost for a company that has a data breach.
  • Data breach costs are the highest for healthcare organizations, totaling $7.13 million in spending.
  • Cybercrime costs rose for all companies between 2017 and 2018 from $11.7 million to $13 million.
  • Security spending for every employee rose from $2,337 to $2,691 from 2019 to 2020.
  • Information loss, averaging $5.9 million in spending, is the costliest effect of a cyberattack.
  • $146 is the average cost for every stolen or lost record per person.
  • The cost of a data breach shrunk from $2.74 million to $2.35 million between 2019 and 2020.
  • For large companies, the cost of a data breach lowered from $5.11 million to $4.25 million between 2019 and 2020.
  • 50% of large corporations spend at least $1 million a year on cybersecurity, though 43% spend $250,000 to $1 million. Less than $250,000 was spent by 7% of companies.
  • Scandinavia had the biggest increase in spending costs for data breaches, a 12% rise, with South Africa showing a 7.4 decrease for the least.
  • The US has the highest costs for data breaches at $8.64 million. Second, to this is the Middle East region with $6.52 million in spending.
  • $40.8 billion was the total spending amount done in the cybersecurity industry for 2019.
  • Globally, cybercrime costs in 2025 are expected to reach $10.5 trillion.
  • 70% of security firms think their fiscal budgets will lower due to the COVID pandemic.

Cybersecurity Statistics By Industry

  • The UK spent over $100 million to undo the damage caused by a ransomware attack.
  • In 2020, $21 billion was lost by the healthcare sector to ransomware attacks.
  • Between 2017 and 2020, over 93% of healthcare businesses had a data breach.
  • 2021 experienced 712 healthcare data breaches, 11% more than in 2020.
  • 449,855 sensitive files are kept by different financial services, with 36,004 accessible to all employees.
  • 70% of files deemed classified as sensitive are vulnerable to hackers
  • The average worker in the services industry can access 11 million files, even on the first day of their employment. Yet for the biggest organizations, 20 million files are accessible.
  • 233 days is the average time that it takes for a data breach to be detected.
  • $5.85 million is the price of a data breach in the financial services industry.
  • In 2018, the financial sector spent $18.3 million on cybersecurity.
  • 25% of ransomware attacks target manufacturing organizations, then professional services make up 17% of targets. Government entities account for 13%.
  • Russia carries out 58% of all cyberattacks stemming from a nation's government.
  • Government cyberattacks seek vulnerabilities in foreign agencies 79% of the time.
  • 1 out of 323 small businesses has the highest rate of malicious emails.
  • 15% of malicious applications fall under the lifestyle category, with 7% under entertainment.
  • In 2021, cyberattacks targeting supply chains increased 100% from the year before.
  • 600,000 Facebook accounts are hacked every single day.
number of facebook accounts hacked everyday

COVID-19 Cybersecurity Statistics

  • Internet traffic rose by 50% during COVID-19 lockdowns.
  • 2019 had 500,000 complaints regarding cybercrime, with 800,000 compared to 2020.
  • Healthcare businesses and financial institutions represent 27% of cyberattacks carried out in 2020, a 238% increase from 2019.
  • Data breaches confirmed to be cyberattacks grew to 58% during lockdown measures.
  • Data security breaches affected 33,000 people applying for unemployment.
  • $97.39 million was stolen from Americans due to scams relating to stimulus checks.
  • In early 2020, Google successfully 18 million phishing and malware emails using information related to the pandemic.
  • Cyber vulnerabilities targeting remote workers concern 52% of people in the legal and compliance field.
  • Distractions are the most likely reason that 47% of remote workers are scammed during a phishing attempt.
  • The job duties of 81% of IT professionals shifted as the pandemic grew.
  • In early 2020, 500,000 users of the application Zoom had their accounts hacked and bargained on the deep web.
  • 20% of companies had security breaches stemming from remote workers in 2020.


How many cybersecurity attacks are there per day?

Every day, hackers carry out 26,000 attacks consistently.

How frequent are cyberattacks?

Every 3 seconds, a cyberattack is done, amounting to 20 cyberattacks in a minute and 1,200 attacks every hour.

What are the types of cyberattacks?

  • Phishing is a type of cyberattack where a hacker sends malicious code to obtain personal information from a would-be victim, or through the use of deception to obtain account passwords, credit card numbers, bank numbers, or other confidential data.
  • Trojan horse attacks are misleading applications hiding their true purpose, used by cybercriminals to gain personal data and even control another computer remotely. They may contain rootkits and dangerous spyware to achieve this purpose.
  • Ransomware is malware used by criminals to seize control of computers with the intent of extortion or blackmail, threatening to disclose personal data or prevent access until a specific amount of money is paid.



To see how Worth can reduce your risk.

Get a Free Quote