Why this report matters

Highlights

Trends

Report investigates general trends and toll averages in 17 industries and 17 countries and regions.

Risk quantification

Learn how cyber gamble modeling can help assess take chances through financial projections and probabilities.

Recommendations

Recommendations for security measures that tin can help reduce potential fiscal damages.*

Key findings

2022 had the highest boilerplate cost in 17 years

Line drawing of graph with rising data

Data breach costs rose from USD 3.86 one thousand thousand to USD 4.24 million, the highest average total price in the 17-year history of this report.

Remote piece of work due to COVID-nineteen increased cost

Line drawing of location pointer

The average cost was USD ane.07 million higher in breaches where remote work was a cistron in causing the breach, compared to those where remote work was not a factor.

Compromised credentials caused the almost breaches

Line drawing of circle graph with two x marks

The most common initial assault vector, compromised credentials, was responsible for 20% of breaches at an average alienation cost of USD 4.37 meg.

Security AI had the biggest cost-mitigating effect

Line drawing of two overlapping circles with opposing arrows

Automation and security bogus intelligence (AI), when fully deployed, provided the biggest cost mitigation, up to USD iii.81 million less than organizations without information technology.

A zero trust approach helped reduce cost

Line drawing of shield with person in center

The boilerplate cost of a breach was USD ane.76 million less at organizations with a mature null trust arroyo, compared to organizations without aught trust.

Cloud migration impacted costs and containment

Line drawing of cloud and two connected servers

Organizations further forth in their cloud modernization strategy contained the breach on average 77 days faster than those in the early stage of their modernization journey.

Notice more than reports

Have the next step

Footnotes

*Note that this report does not constitute advice, and whatsoever recommendations are for educational purposes only. The research does not use scientific samples, and other limitations need to be carefully considered before drawing conclusions from findings.