Nearly 10,000 — that's how many organizations have experienced data breaches resulting in consumer data leakage in the last four years. How do we know this?
Contents:
Together with independent third-party researchers, we conducted a study to identify — in terms of origin, industry, size, and type — companies that have failed to secure information entrusted to them by their customers.
In the course of our research, we also learned that:
More than half of the organizations (56%) that leaked customer data are private companies. Other types of businesses that are vulnerable to cyberattacks include public companies (6%), sole proprietorships (4%), and non-profit organizations (4%).
Passwords, email addresses, and usernames that belong to customers are the most common forms of data leaked in breaches.
Entertainment and technology companies have the highest number of data breaches, followed by retail, business services, and education fields.
The US has the highest number of companies responsible for exposing client data, with almost 2,300 organizations involved. India ranks second and the United Kingdom third.
Germany and France had the highest number of customer data leaks among all EU countries, with over 470 and 430 cases respectively.
Companies with less than 50 employees are most often exposed to attacks aimed at intercepting customer data. The data suggests that small and medium-sized businesses (SMBs) often lack the financial resources and workforce to invest in cybersecurity.
These findings emphasize the need for companies to prioritize their customers' data security. After all, their ability to maintain business continuity and strong customer relationships depends on it.
Fortunately, with tools like NordPass, securing customer and company data is easy, effective, and inexpensive. If you want to know more, visit our website or get in touch with us at [email protected].
Methodology
The study was conducted in partnership with independent researchers specializing in cybersecurity incident research. The data was analyzed by country, industry, business type, company size, and type of data items. The study covers breaches that occurred between December 2019 and July 2023.