Skip to main content

2022 Cybersecurity Industry Statistics: Account Takeover, Ransomware, Data Breaches, BEC & Fraud


With cybersecurity and fraud studies and reports launching almost weekly, who can keep up with all the stats related to account takeover, ransomware, BEC, fraud, and identity theft? We keep a tally ourselves and thought our readers might want access to help bolster their business case to invest in solutions to combat cybercrime and protect their employees, vendors, and consumers from the ever-evolving tactics of cybercriminals.

Account Takeover (ATO) Statistics:

Ransomware Statistics:

  • There were 623.3 million ransomware attacks globally in 2021, up 105 percent in total year over year. In the US, the number of ransomware attacks increased 98% and in the UK 227%. 2022 Sonicwall Cyber Threat Report
  • In 2021 there was an almost 13% increase in ransomware in breaches, accounting for ransomware being present in 25% of breaches – a jump as big as the last five years combined! Verizon 2022 Data Breach Investigations Report
  • Despite increased investment in tools to fight ransomware, 90% of organizations were affected by ransomware in some capacity over the past 12 months, a striking uptick from last year’s 72.5%. SpyCloud 2022 Ransomware Defense Report
  • The IC3 received 3,729 complaints in 2021 identified as ransomware, reflecting losses of more than $49.2 million. FBI Internet Crime Report 2021 [PDF]
  • The U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported that 14 of 16 critical infrastructure sectors were hit with ransomware in 2021. CISA Alert
  • A survey of more than 400 CISOs found that ransomware is the top cyber threat most concerning to respondents. The CISOs Report: Perspectives, Challenges and Plans for 2022 and Beyond
  • According to IT security leaders, the top three riskiest entry points for ransomware are:
    #1 Unpatched vulnerabilities
    #2 Phishing emails with malicious attachments/links
    #3 Unmanaged devices accessing the network.
    SpyCloud 2022 Ransomware Defense Report
  • 87% of IT security leaders agree that reports of credential-stealing malware such as RedLine Stealer have elevated their organization’s concern of unmonitored personal devices as a potential entry point for ransomware. SpyCloud 2022 Ransomware Defense Report

Data Breach Statistics:

Business Email Compromise Statistics:

Fraud & Identity Theft Statistics:

About SpyCloud: We transform recaptured data to protect businesses from cyberattacks. Our products leverage a proprietary engine that collects, curates, enriches and analyzes data from the criminal underground, driving action so enterprises can proactively prevent account takeover and ransomware, and protect their business and consumers from online fraud. Our unique data from breaches, malware-infected devices, and other underground sources also powers many popular dark web monitoring and identity theft protection offerings. SpyCloud customers include half of the ten largest global enterprises, mid-size companies, and government agencies around the world. Headquartered in Austin, TX, SpyCloud is home to over 150 cybersecurity experts who aim to make the internet a safer place.

Transforming recaptured data to protect your business.