Skip to main content
HomeTopicsData Theft

Data Theft

Cybersecurity statistics about data theft

Showing 1-16 of 16 results

49% of organizations did not detect the threat until after data is stolen, up from 31% the previous year.

ExtraHop6/28/2026
Detection

In September 2025, Qilin's compromise of a single South Korean MSP affected 32 financial institutions and resulted in over 2 terabytes of stolen data.

Black Kite6/6/2026
RansomwareQilin

When identity breaches impact business, the primary consequences are data theft (49%), ransomware (48%), and financial theft (47%).

Sophos5/27/2026
RansomwareFinancial Theft

46% of security decision makers identify ransomware attacks as a leading concern, 44% identify cloud environment breaches, 37% identify email compromise, 37% identify data theft, and 35% identify supply chain compromise.

Sygnia5/27/2026
RansomwareSupply Chain Compromise

Ransomware attacks involving data theft cost more than twice as much as ransomware attacks without data theft.

Coalition5/27/2026
RansomwareRansomware Cost

45% of intrusions resulted in data theft without immediate extortion attempts at the time of the engagement

Google Cloud5/27/2026

28% of intrusions investigated resulted in data theft that bore indications of extortion.

Google Cloud5/27/2026
Extortion

In the second half of 2025, more than two-thirds of ransomware attacks leveraged data theft instead of encryption.

Resilience5/27/2026
RansomwareEncryption

Data theft-only attacks account for 57% of all attacks in 2025.

Resilience5/27/2026
RansomwareCyber Claims

Extortion demands to suppress stolen data comprise 49% of extortion claims in the first half of 2025 and 65% of extortion claims in the second half of 2025.

Resilience5/27/2026
ExtortionRansomware

92% of ransomware cases in Europe involved file encryption and data theft in 2025

CrowdStrike11/9/2025
RansomwareEurope

Manufacturing organisations experienced 24% of attacks involving data theft.

IBM 4/17/2025
ManufacturingData theft

Data theft was observed in 18% of incidents.

IBM 4/17/2025

Credentials or data were stolen in nearly half of all cyberattacks.

IBM 4/17/2025
CredentialsCredential theft

Ransomware and data theft attempts accounted for nearly 30 percent of all Sophos Managed Detection and Response (MDR) tracked incidents (in which malicious activity of any sort was detected) for small and midsized businesses.

Sophos4/16/2025
RansomwareData theft

One in three CEOs cite cyber espionage and loss of sensitive information/intellectual property (IP) theft as their top concern.

World Economic Forum1/1/2025
EspionageData loss