33 Cybersecurity Stats for 2023

Table of Contents

  1. The Importance of Cybersecurity

  2. 33 Cybersecurity Statistics in 2023

  3. Big Takeaways


The Importance of Cybersecurity 

Cybersecurity has become an increasingly bigger problem for large and small businesses alike. Although everyday we learn more about how to defend ourselves from these attacks, the industry still has a long way to catch up with current threats in the cyber world. That’s why it is important to get a picture of the current cybersecurity industry in order to gain awareness and form practices to protect your home and business.


      1. Global cyber crime-related costs will reach 6 trillion

A report by Cybersecurity Ventures predicts that 6 trillion will be lost due to cybercrime, up from 3 trillion in 2015. Cybercrime costs include damage and destruction of data, stolen money, lost productivity, theft of personal and financial data, forensic investigations, and much more. 

      1. An attacker can spend 146 days in a network undetected

As the cybersecurity industry struggles to keep up with current cybercrime threats, networks are left extremely vulnerable to attacks.

      1. The average cost of a data breach is $8.19 million in the U.S.

A data breach happens when sensitive information is leaked to an untrusted environment. The resulting damage can include disclosure of company and personal data.

Attackers keenly target small businesses due to the decreased likelihood of being caught. As larger businesses become more capable of defending themselves, smaller businesses become a prime target.

      1. 54% of small businesses don’t have a plan in place for reacting to cyber attacks

Just as when any other disaster strikes it is imperative that you have a plan to react to the situation. However the majority of small businesses report not having one.

      1. 94% of malware is delivered via email

Within emails, 45% of detected malware was sent through an Office document file to small businesses, while 26% were sent through a Windows App file

      1. It can take 6 months for companies to notice a data breach

With the time between the attack and detection spanning around half a year, there is a huge amount of information able to be obtained by the hacker.

      1. A business will fall victim to a ransomware attack every 11 seconds

Ransomware is a form of malware that threatens malicious intent to a victim’s data unless a ransom is paid. The U.S. Department of Justice has described ransomware as a new method of cyber attacks and an emerging threat to businesses.

      1. Ransomware damages are now predicted to cost the world $20 billion

This is 57x more than it was in 2015, making ransomware the fastest growing type of cybercrime.

      1.  A recent survey shows 10% of breached small businesses shut down

Many unsuspecting small businesses are caught off guard by attackers and sometimes, the damage is so great that they are forced to shut down entirely.

      1. 41% of companies have over 1,000 sensitive files open to everyone

Sensitive files contain credit card information, health records, or personal information subject to regulations like GDPR, HIPAA and PCI. A large portion of these files are easily obtainable by cybercriminals.

      1. 1 in 5 SMBs report that they’ve been targeted with a ransom attack

Ransomware is the #1 threat to SMBs with about 20% of them reporting having fallen victim to a ransom attack. Also, SMBs who don’t outsource their IT services are bigger targets for attackers.

      1. On average, every 39 seconds there is a hacker attack

The study was conducted by Michel Cukier, Clark School assistant professor of mechanical engineering. The researchers discovered which usernames and passwords are tried most often, and what hackers do when they gain access to a computer.

      1.  Over 75% of the entire healthcare industry has been infected with malware over the last year

A comprehensive analysis done by SecurityScorecard exposed alarming cybersecurity vulnerabilities across 700 healthcare organizations. Among all industries, Healthcare ranks 15th out of 18 in Social Engineering attacks, revealing a pervasive security awareness problem among healthcare professionals, putting millions of patients at risk.

      1. 65% of attacker groups used spear phishing as a primary attack

Spear phishing is the act of disguising oneself as a trustworthy individual in order to trick victims into leaking sensitive information. The majority of hackers will attempt this, making proper awareness and training crucial to deflecting these attacks.

      1. 63% of confirmed data breaches involved weak, default or stolen passwords

One of the simple things you can do to improve your security is to use strong passwords. Over half of confirmed data breaches could have been stopped if a more secure password was used.

      1. 94% of malware was delivered via email

With nearly all malware making its way into your network through a malicious email, it is imperative to teach employees to spot and deal with social engineering and phishing attacks.

      1.  Over 300 billion passwords will be in use by 2023

Data shows that 300 billion passwords will be used around the world in 2020. This suggests a huge cybersecurity risk stemming from hacked or compromised used accounts. 

      1. Unfilled cybersecurity jobs are expected to reach 3.5 million globally

Due to the nonstop growth of information technology an extremely wanted career lies in cybersecurity. However, even the number of jobs fails to satisfy the increasing demand. 

      1.  92% of cybersecurity managers say that gamers may have skills suited for cybersecurity

Gamers are more connected to information technology than the average person. 75 percent of these managers would consider hiring a gamer even if that person had no cybersecurity training or experience.

      1. The top 10 percent of cybersecurity analysts make over $117,000 per year, while the median annual salary is $76,000

The salary shows very few industries that will ever see such a strong demand. Especially in the near future, qualified cybersecurity analysts will be in high demand with few to go around.

      1.  28% of adults in the US use the same password for all of their online accounts

This reveals how careless we are with the personal information we leave online. Using a strong mix of letters, numbers, and symbols is the key to keeping your information safe along with using a different password for each account. 

      1.  90% of hackers use encryption in order to cover their tracks

Like other criminals, hackers will attempt to cover up their tracks with encryption, which could lead to difficulty in tracing back their crimes and identity. 

      1.  Cybersecurity spending will exceed $1 trillion from 2017 to 2023

The cybersecurity market is continuing its rapid growth, approaching the 1 trillion mark. The cybersecurity market grew by roughly 35X from 2004 to 2017.

      1. Nearly 70 percent of cryptocurrency transactions will be for illegal activity by 2023

Cryptocrime is becoming a new branch of cybercrime. Around $76 billion of illegal activity per year involves bitcoin, which is close to the scale of the U.S. and European markets for illegal drugs. In fact 98% of ransomware payments are made via Bitcoin, making it hard to track down hackers.

      1.  Global healthcare cybersecurity spending will exceed $65 billion cumulatively 

The healthcare industry is digitizing all of its information, which makes it a target for cybercriminals. This dynamic will be one of many contributors to the growth of the healthcare security market over the next decade.

      1. There will be 350% growth in open cybersecurity positions 

Organizations within all sectors and industries continue to find it difficult to find the security resources they need for the fight against cybercrime.

Robert Herjavec, Founder & CEO of Herjavec Group, says, 

“Until we can rectify the quality of education and training that our new cyber experts receive, we will continue to be outpaced by the Black Hats.”

      1.  30% of survey respondents say their organizations don’t have a separate security budget

KnowBe4’s Security Threats and Trends Report indicates that nearly a third of surveyed organizations don’t separate their security budget from their annual IT capital expenditure budget. With the number of data breaches and ransomware attacks making headlines globally each year, every company should allocate time and money into improving their cybersecurity.

      1. Seniors over age 60 are the preferred victims of cybercrime against individuals

62,085 victims age 60 or older reported $649,227,724 in losses to cybercrime.

An additional 48,642 victims ages 50-59 reported losses of $494,926,300 in the same year, a combined amount of about 1.14 billion.

      1.  The data of 1.3+ billion social networking users has been compromised within the past 5 years

Along with businesses and corporations being breached and user information being compromised, social platforms have also seen similar attacks. According to Bromium, the accounts of more than 1.3 million social media users have been compromised in the past five years

      1. Only 15% of firms report being notified by a third-party vendor notifying them of a breach the vendor caused

Seems that the majority of vendors don’t live up to good business ethics and prefer to keep a data breach they caused a secret from their client. This can lead to completely unnoticed data breaches where hackers can leak sensitive information undetected.

      1.  68% of black hat hackers say multi-factor authentication and encryption are the biggest hacker obstacles

Use two-factor authentication and practice good encryption whenever possible, it could save your home or business.

      1. 73% of black hat hackers said traditional firewall and antivirus security is irrelevant or obsolete

This vulnerability only really applies to targeted attacks, where the hacker is taking time to specifically find an entry point on your site. It happens most often with WordPress sites when the attacker attempts to exploit vulnerabilities in popular plugins.


Big Takeaways


Having an adequate amount of knowledge in the field of cybersecurity is crucial to protecting your home and business. With the rate of cyber attacks increasing steadily with technology, being aware and prepared for a cyber attack is necessary knowledge for current day and the future. Luckily, there are many ways you can protect yourself. Investing a proper budget into cyber defense and educating yourself and employees on how to stay safe online can go a long way in ensuring the safety of your information.