Cyber Security Statistics

If the internet is just a combination of cat videos, some nude pics, and a few other things, how harmful can it be? Very, is the answer to that question. Phishing and malware attacks can cost thousands and even millions of dollars to individuals and organizations. They can take months, or even years, to recover from, and they are frighteningly common.

That’s why we’ve prepared some cyber security statistics not just to entertain the readers, but to also educate them about the risks of surfing the internet.

Read on to learn more about some of the dangers lurking on the world wide web.

Cyber Security Statistics (Editor’s Choice)

  • Cyber-attacks occur 2,244 times per day.
  • 92% of malware is delivered using email.
  • By 2023, the global cybersecurity market will be worth $248.26 billion.
  • 71% of breaches are financially motivated.
  • 43% of all data breaches involve small businesses.
  • 95% of data breaches come from 3 industries.
  • 64% of Americans have never checked whether they have suffered a breach.

General Cyber Security Stats & Facts

1. 4.1 billion records were exposed due to data breaches in the first 6 months of 2019.

During the first half of 2019, around 3,800 cyber attacks that led to a data breach were reported. The majority of the 4.1 billion exposed records, or around 3.2 billion, were exposed in just 8 of these events. Emails were exposed in 70% of the cases, while passwords were leaked in 65% of the breaches.


2. 52% of data breaches involve hacking.

Cyber security attacks statistics show that 32-33% of all attacks include phishing or social engineering, while 28% involve malware. Additionally, 21% of all data breaches are caused by an error, while 15% have an authorized user’s mistake as the culprit. The majority of data invasions, however, involve some form of hacking.


3. Cyber attacks occur 2,244 times per day.

According to a study by the University of Maryland, a cyber attack occurs once every 39 seconds. Cyber attack statistics derived from the study indicate that the most commonly attempted username was “admin”. The most commonly attempted password was the same word, and it was used in 43% of all hacking attempts.

(University of Maryland)

4. 92% of malware is delivered using email.

Email and phishing attacks are still how most cybercrimes take place. 56% of 1,300 surveyed IT security experts agree that phishing prevention is their top priority. Data breach statistics suggest that, with 92% of malware delivered over email, it might be the time to consider some of the top email spam filtering companies on the market.


5. 37% of malicious email attachments are .doc and .dot files.

One of the cyber security facts that haven’t changed over the years is that attachments remain one of the most commonly used ways of getting into the targets’ system. More than a third of all malicious email attachments are hidden behind a .doc or .dot file. The next most common type, present in 19.5% of the cases, are .exe files. Teaching those with access to sensitive files to not open suspicious emails and attachments is key for data breach prevention, whereas email encryption software can add an additional layer of security.


Cyber Security Industry Trends

6. Global cybersecurity spending is expected to reach $133.7 billion by 2022.

Cyber threats are a growing concern in the digital world. Globally, we’re spending 141% more now on cybersecurity than we did in 2010. A couple of years from now, the amount that companies spend to keep their users’ data safe will climb to $133.7 billion, cyber security trends indicate.


7. By 2023, the global cybersecurity market will be worth $248.26 billion.

Cybersecurity is definitely one of today’s most lucrative industries. With the increase of global spending, the number of companies that operate in this field is poised to increase. You can take a look at the best cyber security firms that have already made a name for themselves in this business.


8. The European cybersecurity market was worth $36.02 billion in 2019.

Emerging trends in cyber security indicate that Europe is expected to be the region with the highest Compound Annual Growth Rate in the next 5 years when it comes to this particular industry. By 2025, the European cybersecurity market is expected to exceed $65 billion in value.

(Fortune Business Insights)

9. 68% of business leaders believe their cybersecurity risks are increasing.

Recent cyber crime statistics should be a cause for concern for businesses around the world. Close to 80% of businesses are implementing new digital technologies into their operations much faster than they’re able to secure those technologies against attacks.


10. 95% of data breaches come from 3 industries.

While all industries are susceptible to cyber security breaches, there are 3 sectors that account for the majority of all breaches — government, retail, and technology. These industries are commonly targeted because their databases are the most likely to contain personal information.


11. 45% of organizations encrypt the data on-premise prior to sending it to the cloud.

According to the NCipher study, the main driver for data encryption is to protect customer personal information. Nearly half of the organizations use keys they generate and manage to perform encryption. On the other hand, 36% of the organization performs encryption in the cloud with keys generated by the cloud provider.

More Facts about Cyber Security

12. 71% of breaches are financially motivated.

The reasons behind these attacks can be numerous. However, the majority of them are driven by financial motives. The second most common reason is espionage, accounting for 25% of data breaches.


13. 43% of all data breaches involve small businesses.

Small business owners who feel they are not likely to be affected by cyber security incidents would be horribly wrong. Small business cyber security statistics show that 43% of all data breaches involve small businesses.


14. It took an average of 206 days to detect a breach in 2019.

Discovering a data breach can be more difficult than remedying the effects of one. In 2019, the average time it took businesses to detect a data breach was close to 7 months. Organizations meanwhile needed an average of 73 days to contain a breach.

(All About Security)

15. The average total cost of a data breach is $3.92 million.

During the last 5 years, the cost of the average data breach has increased by more than 12%, cyber security facts show. With the average breach exposing 25,575 records, the cost of repairing the damages can be quite severe. Some organizations, such as Capital One, had data breaches that cost them over $100 million.


16. The global cybercrime economy brings in $1.5 trillion per year.

Why are these attacks so popular? Because they can pay off massively. During 2018, a study came out with this stunning figure: the cybercrime industry brings in $1.5 trillion in yearly profits. Where does that money come from?

  • $860 billion comes from illegal online markets.
  • $500 billion comes from the theft of trade secrets.
  • $160 billion comes from data trading.
  • $1.6 billion comes from crimeware-as-a-service.
  • $1 billion comes from ransomware.


Hacking Statistics

17. The Yahoo data breach exposed 3 billion accounts in 2013.

In 2013, a major Internet attack took place. Yahoo had all of its users data exposed in this breach, which is, to date, the largest data breach in history. At least among the ones we know about.

(NY Times)

18. The Uber data breach exposed personal info of 57 million users in 2016.

Just 3 years after Yahoo, Uber had a similarly unpleasant experience. Hackers accessed a third-party cloud storage service that the company used and downloaded personal information on 57 million Uber users (names, email addresses, phone numbers). Uber’s cyber security facts released after the event listed that 600,000 of those were drivers, with information including their driver’s license numbers. To keep them quiet about the incident, Uber reportedly paid the hackers $100,000. This damage control tactic, obviously, didn’t work.


19. A FriendFinder data breach exposed 412 million accounts in 2017.

During the 20 years it was on the market, FriendFinder Networks Inc. managed to spread out into various fields such as online dating, sex-chat, and pornography, gathering the data on hundreds of millions of individuals. When 5 of their websites were hacked in 2017, data from over 412 million users was stolen, cyber security breach statistics show.

(The Wall Street Journal)

20. An Equifax data breach exposed the details of 147.9 million users.

One of the most notorious hackings also took place in 2017. Equifax, the now infamous credit bureau, got hacked and the data of 147.9 million of their users was stolen. What made this breach so well-known is how much it cost the company; estimates show that Equifax has lost around $4 billion so far due to this unfortunate event.


21. 64% of Americans have never checked whether they have suffered a breach.

Even though it takes around 3 minutes to do so, cyber security statistics find that more than two-thirds of Americans have never bothered to check whether they have been affected by a data breach. The percentage of those who wouldn’t know what to do after being exposed to a data breach is the same, at 64%. Even after discovering a recent data breach, 56% of Americans wouldn’t know what to do.


Interesting Facts about Cyber Security

22. 1 in 36 mobile devices has high-security risk apps.

Being mindful of what we download and access is also important when we’re on our phones. while 1 in 36 devices with potentially harmful apps installed doesn’t sound too bad, we should keep in mind that 10,553 malicious mobile apps are blocked every day.


23. The average ransomware attack costs businesses $133,000.

Cyber security facts and figures show that businesses that fell a victim of a ransom attack in the past lost an average of $133,000 due to the event. This figure includes the ransom, along with other losses that the business suffered as a result of the attack.


24. 1 in 13 web searches leads to malware.

Every 13th web request takes Internet users to a malicious website. Cyber security threats statistics show that 60% of these websites are related to spam campaigns, while 20% are new and used for around a week.


25. 53% of organizations have more than 1,000 sensitive files open for all employees.

Keeping in mind that 34% of data breaches involve insiders, granting access to sensitive information to all employees might be a bad idea. To make things even worse, around 22% of all folders that an average company keeps are open to all employees. The average employee has access to 17 million files.


26. 82% of employers find that there is a shortage of qualified cybersecurity workers.

Cyber security jobs statistics show that there is a shortage of skilled workers in this field. There are currently 1 million unfilled positions in cybersecurity, and no available workers. The situation isn’t likely to improve before 2021, when 100% of large organizations are expected to open positions in this field. For those wondering what field to get into, cybersecurity, with its 0% unemployment rate, might be the answer.



1. What are the 4 types of cyber attacks?

The list of the most commonly applied techniques in cyberattacks hasn’t changed in years. Hackers still use email phishing as the most common method. Malware use is the next, followed by ransomware. Watering hole attacks are the 4th type of attack that cybercriminals commonly utilize. You can learn more about these techniques here.

2. What percentage of cyberattacks are phishing?

Around 91% of all cyberattacks involve some form of phishing. Spear phishing, or targeting individuals with personal, non-random, emails that mention their name, position, or other specific info, contain malicious files in 94% of the cases, while 6% rely on other methods, such as using malicious links. The percentage of hackers using phishing as their attack method is going up; it was 89% in 2016.

3. What is the most common cyber crime?

Identity theft remains the top cybercrime, as it offers the most benefits to those in the business of stealing data; they can use the data to commit fraud, activate services in your name, phish your contacts, and more. Social engineering, botnets, flood attacks, and cyberstalking follow. Monetary gain remains the top priority for cybercriminals around the world, with 71% of these offenses driven by financial motives.

4. How many cyber attacks per day are there?

In order to discover how many cyber attacks occur every day, the University of Maryland graduate students set up 4 computers with Internet access that were intentionally set up with weak security and monitored this activity. The study showed that 2,244 attacks occur during an average day. This means that a cyber attack takes place every 39 seconds.

5. How big is the cybersecurity market?

In 2018, the global cybersecurity market was valued at just under $119 billion. By 2023, its value is expected to more than double, jumping to over $248 billion. Europe boasts the highest yearly growth when it comes to cybersecurity.


With up to 50 billion devices connected to the Internet, cybersecurity is quickly becoming one of the main concerns of the modern age. As these cyber security statistics show, cyber security threats are everywhere, and the only thing that can help organizations, as well as individuals, deal with them is educating Internet users about the dangers out there.

Be the first to comment!