Key Cybersecurity Stats for IT Professionals in 2023

Cyberattacks constantly threaten individuals, companies, and governmental entities. According to research from the University of Maryland, every 39 seconds, someone is the victim of a data breach, phishing attack, or another form of cybercrime, amounting to more than 2,200 cyberattacks daily. 

Identification of vulnerable groups, security risks, the severity and volume of attacks are the most challenging task for any cybersecurity team. Statistics can help companies mitigate vulnerabilities, secure their networks, and prepare for incidents. This article highlights key industry stats for IT professionals in 2023. 

Ransomware 

In recent years, ransomware has become a major cyber threat to companies and governmental agencies. In 2031, the cost of ransomware will exceed $265 billion, or about 13 times that of ransomware worldwide since 2021, when that number was around $20 billion. Statistics show that in 2022, the average ransom paid for a cyber-attack had risen to $925,162. 

Important statistics 

• During the third quarter of 2022, the number of ransomware attacks decreased by about 8% compared to the same period the year before 
• The global cost of ransomware in 2023 is estimated to reach $30 billion 
• Every 14 seconds, a new business becomes a victim of ransomware 
• In the wake of a ransomware attack, 42% of businesses said their cyber insurance did not cover everything they lost 

Phishing 

Phishing attacks use deceptive methods through the emails or text messages to trick workers into giving up sensitive information. They are particularly pervasive because humans are the weakest link in any cybersecurity system. The most effective method for preventing data breaches is rising employee's awareness and provision of cybersecurity training, as 91% of cyberattacks begin with phishing emails. 

Important statistics 

• Each day, hackers compromise about 30,000 websites 
• About 1.5 million new phishing sites are created each month by cybercriminals 
• Each minute of phishing activity costs businesses an average of $17,000. 
• 47% of all social media phishing attacks originate from messages sent through LinkedIn 
• Phishing attacks are the root cause of 90% all data breaches 

Malware 

Since 2012, the number of malware attacks has risen by about 87%. About 87% of malware is spread via email, and cybercriminals have access to 678 million different malware types. 

Important statistics 

• In April 2020, Google blocked 18 million COVID-19-related phishing and malware emails per day 
• Malware attacks typically cost businesses over $2 million 
• Malware attacks account for 17%  of all security incidents 
• 80% of all malware attacks occur in North America 

IoT, DDoS, and Zero Day Exploits 

The adoption of IoT has many benefits for companies, as IoT devices are valuable resources for streamlining routine tasks and decreasing human error. On the other hand, cybercriminals frequently aim their attacks at these devices, and distributed denial-of-service(DDoS) attacks and zero-day vulnerability are two examples. 

Important statistics 

• During the first half of 2021, cybercriminals launched over 1.5 million Internet of Things (IoT) breaches 
• More than 1.5 million DDoS attacks are predicted to occur in 2023 

• Kaspersky's DDoS Intelligence system identified 60,000 attacks in the third quarter of 2022 
• The percentage of ransomware DDoS attacks has risen to 1 in 5 
• Half of all zero-day attacks have occurred in the last decade, demonstrating a rising trend 
• Nearly 50% of all zero-day attacks in 2022 were variations on flaws that had already been patched 

Small Business Attacks 

Only about 15% of small businesses are ready for a cyber-attack, making them a prime target for cybercriminals. Forbes reports that the most common types of cyberattacks involve phishing, compromised devices, and stolen credentials. 60% of business owners believe their company is not a target for cybercriminals, which is a major contributing factor to the prevalence of these attacks. 

Healthcare 

Over 300 cyberattacks in 35 countries targeted the healthcare sector between June 2020 and December 2021, with 165 confirmed ransomware attacks and another 98 suspected. Furthermore, over 90% of healthcare companies and organizations have reported at least one security breach in the last few years, with Hospitals accounting for a third of all major data breaches. Additionally, Forbes reported that 53% of businesses in the pharmaceutical and biotech sectors had experienced hacking. 

Financial Services  

Because of the high stakes involved, cybercriminals have shown an upward trend of about 238% in their cyber-attacks in the first few months of 2021, specifically targeting the financial sector. Additionally, 75%  of banks and insurance companies have seen an increase in cybercrime since the pandemic began. 

Conclusion 

Cybersecurity threats are constant danger for big and small companies and individuals. Therefore, it is important to keep up with the latest cybersecurity statistics so that appropriate investments can be made in personnel, technology, and education to keep sensitive data safe.