2022 Cybersecurity Industry Statistics: Account Takeover, Ransomware, Data Breaches, BEC & Fraud


With cybersecurity and fraud studies and reports launching almost weekly, who can keep up with all the stats related to account takeover, ransomware, BEC, fraud, and identity theft? We keep a tally ourselves and thought our readers might want access to help bolster their business case to invest in solutions to combat cybercrime and protect their employees, vendors, and consumers from the ever-evolving tactics of cybercriminals.

Account Takeover (ATO) Statistics:

Ransomware Statistics:

  • There were 623.3 million ransomware attacks globally in 2021, up 105 percent in total year over year. In the US, the number of ransomware attacks increased 98% and in the UK 227%. 2022 Sonicwall Cyber Threat Report
  • In 2021 there was an almost 13% increase in ransomware in breaches, accounting for ransomware being present in 25% of breaches – a jump as big as the last five years combined! Verizon 2022 Data Breach Investigations Report
  • 72% of organizations surveyed said they have been affected by ransomware in the past 12 months. 13% of organizations were affected by ransomware 6-10 times within that period, with 5% getting hit more than ten times. SpyCloud 2021 Ransomware Defense Report
  • The IC3 received 3,729 complaints in 2021 identified as ransomware, reflecting losses of more than $49.2 million. FBI Internet Crime Report 2021 [PDF]
  • The U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported that 14 of 16 critical infrastructure sectors were hit with ransomware in 2021. CISA Alert
  • A survey of more than 400 CISOs found that ransomware is the top cyber threat most concerning to respondents. The CISOs Report: Perspectives, Challenges and Plans for 2022 and Beyond
  • 79% of IT security leaders agree that high-profile ransomware attacks such as Colonial Pipeline have “significantly elevated” their organization’s concerns about weak or stolen credentials used by customers and employees. Participants identified phishing as the #1 entry point and compromised credentials as #2. SpyCloud 2021 Ransomware Defense Report

Data Breach Statistics:

Business Email Compromise Statistics:

Fraud & Identity Theft Statistics:

About SpyCloud: We transform recaptured data to protect businesses from cyberattacks. Our products leverage a proprietary engine that collects, curates, enriches and analyzes data from the criminal underground, driving action so enterprises can proactively prevent account takeover and ransomware, and protect their business and consumers from online fraud. Our unique data from breaches, malware-infected devices, and other underground sources also powers many popular dark web monitoring and identity theft protection offerings. SpyCloud customers include half of the ten largest global enterprises, mid-size companies, and government agencies around the world. Headquartered in Austin, TX, SpyCloud is home to over 150 cybersecurity experts who aim to make the internet a safer place.

Transforming recaptured data to protect your business.