The ITRC has released its H1 2025 Data Breach Report, which shows that the first half of 2025 data breach trends are up over 2024!

Yesterday, the Identity Theft Resource Center (ITRC) released its H1 2025 Data Breach Report, which shows that there were 1,732 publicly reported data compromises in H1. This means the first half of 2025 is ~five percent ahead of 2024’s pace at this point in the year. The ITRC could track a record number of compromises in 2025 if the current data breach trend continues through Q3 and Q4.

The number of victim notices in H1 2025 (165,745,452) represents only 12 percent of the victim notices issued by mid-year 2024. The decrease is due in part to fewer people being impacted by the small handful of mega breaches in 2025 compared to 2024. Cyberattacks were the primary cause of data breaches where personal information was stolen (1,348 incidents reported, leading to 114,582,621 victim notices).

The number of data breach notices without information about the root cause of the attack jumped from 65 percent in H1 2024 to 69 percent in the first six months of 2025, a data breach trend that has continued for nearly the last five years. The financial services and healthcare industries continue to be the most targeted sectors, with 387 and 283 compromises, respectively. While the number of compromises in financial services is slightly down from H1 2024, the healthcare sector saw an increase in breach events.

The 9-page PDF H1 2025 Data Breach Report & Analysis provides these and more key cyber-stats. Check it out here!

So, what do you think? Are you surprised that the numbers are that high, or that they aren’t worse? Please share any comments you might have or if you’d like to know more about a particular topic.

Image created using GPT-4’s Image Creator Powered by DALL-E, using the term “robots finding out their data has been breached”.

Disclaimer: The views represented herein are exclusively the views of the author, and do not necessarily represent the views held by my employer, my partners or my clients. eDiscovery Today is made available solely for educational purposes to provide general information about general eDiscovery principles and not to provide specific legal advice applicable to any particular circumstance. eDiscovery Today should not be used as a substitute for competent legal advice from a lawyer you have retained and who has agreed to represent you.