18% of middle market organisations experienced a data breach in the last year.

Reported middle market breaches fell significantly after reaching a record-high of 28% in the 2024 survey.

Larger middle market companies were twice as likely than smaller middle market companies to suffer a breach in the past year.

81.9% of phishing victims had their emails leaked in previous breaches.

68% of executives across financial and professional services who expect an increase in financial crime risk cite cybersecurity threats and data breaches as the top risk factor.

43% of healthcare email breaches were tied to Microsoft 365.

98.9% of breached organizations lacked MTA-STS protections.

Solara Medical Supplies' $9.76 million settlement was due to a phishing-related breach affecting 114,000 patient records.

According to the United Kingdom’s Department of Science Innovation and Technology 2024 Cybersecurity Breaches Survey, 43% of higher education institutions in the UK reported experiencing a breach or cyberattack at least once a week.

Of confirmed data breaches examined by Verizon, 1,780 incidents (17%) were attacks against the education system, with 1,537 (14%) confirmed data disclosure.

The Toronto District School Board data breach in September 2024 compromised data from 235,000 students across 582 schools.

API-related data breaches tripled in 2024.

There was an average of three API-related breaches per month in 2024, with some months seeing as many as five to seven.

31.1 million breached passwords were over 16 characters in length.

83% of compromised passwords satisfied the length and complexity requirements of regulatory password standards.

42% of respondents indicated a data breach/leakage was a common privacy failure.

Over 31 million of the breached passwords were over 16 characters in length.

$500,000 is the average financial impact of a data breach within the utilities sector.

123456 was the most common compromised password found in a new list of breached cloud application credentials.