Phishing vs Data Breach

88% of internal audit leaders identify AI-powered phishing attacks as a top risk.

51% of organizations have faced sophisticated, personalized phishing emails powered by deepfake technology.

In Q4 2025, callback phishing increased from 3% to 18% of all phishing incidents, a 500% spike.

82% of malicious files have unique hashes that traditional pattern-matching fails to detect.

Credential phishing campaigns using .es domains increase 51 times year-over-year, with the .es top-level domain jumping from the 56th to the 3rd most-abused TLD.

76% of initial infection URLs in abalyzed phishing attacks were unique and have not appeared in other campaigns across Cofense's customer base.

Conversational attacks comprise 18% of all malicious emails.

In 2025, a malicious email attack occurs every 19 seconds, more than doubling from 2024’s pace of one every 42 seconds.

Abuse of legitimate remote access tools increased by 900% by volume.

Fifty percent of affected consumers cite immediate financial fraud as their primary fear, and 54 percent of consumers report an increase in targeted phishing attempts after a breach (2025)

Eighty-eight percent of consumers who received a data breach notice experience at least one negative consequence after a breach; 40 percent experience an increase in phishing or scam attempts; 49 percent experience an increase in spam emails or robocalls; 40 percent experience attempted takeover of an existing account (2025)

Clicks on phishing links decreased by 27%, from 119 per 10,000 users last year to 87 per 10,000 users this year.

87 out of every 10,000 users clicked on a phishing link each month in 2025.

77% of advanced email attacks failed SPF, DKIM, or DMARC authentication yet still reached inboxes.

Approximately 45% of advanced email attacks showed indicators of AI assistance, projected to rise to 75–95% within the next 18 months

68% of incidents in the Automotive and Smart Mobility involve data and privacy breaches.

The fastest ransomware case observed, involving Akira ransomware, takes just three hours from breach to encryption.

In 2025 breach data, AI platforms and tooling accounted for 15% of API-related breaches, tying software as the largest category in the dataset.

Organizations that use an integrated, automated approach to risk management report a 27% breach rate in 2025.

58% of organizations that experienced a breach anticipate spending more time on IT risk management and compliance in 2026.

Organizations that manage risk ad hoc or only after a negative event report a 50% breach rate in 2025.

75% of consumers who experienced a data breach changed their behavior, compared to 36% of consumers who have not experienced a data breach.

Company breaches are the leading cause of consumer data exposure at 30%.

57% of consumers say their personal information has been compromised at least once.

The Identity Theft Resource Center tracks 3,322 data compromises in 2025 (2025)

The number of victim notices in 2025 is 278,827,933, a decrease of 79 percentage points from 2024 (1,367,117,021) (2025)

The number of data compromises in 2025 (3,322) increases by five percentage points compared to 2024 (3,152) (2025)

Data compromises in 2025 represent a 79 percent jump over five years (2025)

Seventy percent (2,324) of data breach notices in 2025 do not include attack information, compared to 65 percent (2,049) in 2024 and 45 percent (1,449) in 2023 (2023–2025)

The number of victim notices in 2025 (278,827,933) is the lowest number of victim notices since 2014 and the lowest number since the last U.S. state and territories adopted data breach laws in 2018 (2025)