Today is April Fools Day and (once again) here are 2025 cybersecurity statistics you need to know! All of them are real stats except for one!
These 2025 cybersecurity statistics reflect statistics on data breaches and cybercrime. For the fifth(!) year in a row, I’m testing your knowledge. Can you figure out the one stat where I’m just “fooling”? Answer at the bottom!
I’ve provided links to the stat sources so you could technically “cheat” and figure out the fake stat, but don’t be a fool! Guess first, then check out the sources.
Here are the 2025 cybersecurity statistics you need to know:
- Cybercrime costs are expected to rise to nearly $24 trillion by 2027.
- 97% of companies are reporting breaches or security issues related to the use of GenAI.
- 98% of cyberattackers use social engineering techniques.
- Claims made on cybersecurity insurance are increasing by around 13% year-over-year.
- The average ransom imposed by attackers increased by 500% over a single year, with payments reaching an average of $2 million.
- The healthcare industry reports the most expensive breaches of any industry at an average of $9.8 million – remaining at the top of industry costs for over a decade.
- It takes an average of 258 days for security teams to identify and contain a data breach involving lost or stolen credentials.
- 80% of all phishing campaigns discovered in the wild were generated by AI tools such as ChatGPT.
- US data breaches impacted an estimated 353 million individuals in one year alone.
- 72% of business owners are concerned about future cybersecurity risks arising from hybrid or remote work.
- Worldwide end-user spending on information security is projected to total $212 billion in 2025.
- The cybersecurity industry has a global talent shortage of 4.7 million professionals.
- Companies that used AI in security systems discovered and contained data breaches 108 days sooner than those that didn’t, and the breaches cost these companies $1.76 million less on average.
- Up to 70% of IoT or internet-connected devices are vulnerable to attack.
- There were over 1 billion data breach victims in the second quarter of 2024 alone.
So, what do you think? Do any of these stats surprise you? Please share any comments you might have or if you’d like to know more about a particular topic.
Which stat is the fake one?
The
Answer
Is
This
One:
It’s #7! The average overall is 258 days, but for data breaches involving lost or stolen credentials, it’s 292 days! That means that a credentials related breach that occurred on January 1st this year won’t be fully contained until October 19th! 🤯
Disclaimer: The views represented herein are exclusively the views of the author, and do not necessarily represent the views held by my employer, my partners or my clients. eDiscovery Today is made available solely for educational purposes to provide general information about general eDiscovery principles and not to provide specific legal advice applicable to any particular circumstance. eDiscovery Today should not be used as a substitute for competent legal advice from a lawyer you have retained and who has agreed to represent you.
Discover more from eDiscovery Today by Doug Austin
Subscribe to get the latest posts sent to your email.
[…] many breaches in the healthcare sector highlight the steep costs of missing threats, with the healthcare industry reporting an average breach cost of $9.8 million. Early identification of risks ensures resources are focused where they matter […]
[…] attacks alone surged by 30 percent from 2024 to 2025. The financial impact is staggering, with cybercrime costs expected to rise to nearly $24 trillion by 2027. High-profile breaches have shown how one compromise can ripple across industries. Staying ahead […]