VendorsIBM
IBM
Cybersecurity reports and statistics published by IBM
8 categories1 reports
Research Reports
Reports and publications from IBM
Recent Statistics & Reports
The global average cost of a data breach hit a record $4.88 million in 2024.
4/17/2025•
Data breachData breach cost
The top initial access vector observed in 2024 was a tie between exploitation of public facing applications and use of valid account credentials, both representing 30% of X-Force incidence response engagements.
4/17/2025•
Initial accessPublic facing applicationValid account credentials
Manufacturing is the #1-targeted industry by attacks for the fourth year in a row.
4/17/2025•
ManufacturingCyber attack
Manufacturing organisations experienced 24% of attacks involving data theft.
4/17/2025•
ManufacturingData theft
Ransomware comprises nearly one-third (28%) of malware incident response cases and 11% of security cases.
4/17/2025•
RansomwareMalware
Of all the malware cases, 28% involved ransomware, followed by backdoors and webshells, at 20% and 13% respectively.
4/17/2025•
MalwareRansomwareBackdoors
The number of infostealers delivered via phishing emails per week increased by 84% year-over-year.
4/17/2025•
InfostealerPhishing
Ransomware made up 28% of malware cases in 2024.
4/17/2025•
RansomwareMalware
Manufacturing organisations experienced 29% of attacks involving extortion.
4/17/2025•
ManufacturingExtortion
Analysis of dark web data reveals a 25% increase in ransomware activity year-over-year.
4/17/2025•
RansomwareDark web
In 2024, the top impact experienced by victim organisations was credential harvesting, occurring in 28% of incidents.
4/17/2025•
Credential harvesting
Manufacturing had the highest number of ransomware cases in 2024.
4/17/2025•
ManufacturingRansomware
The share of successful phishing compromises has declined steadily from 46% in 2022 to 29% in 2023 to now just 25% of all incidents remediated by X-Force in 2024.
4/17/2025•
Phishing
Identity-based attacks made up 30% of total intrusions for the second year in a row.
4/17/2025•
Identity securityIdentity-based attacks
Data theft was observed in 18% of incidents.
4/17/2025•
Data theft
The number of vulnerabilities has increased rapidly over the past eight years and grown threefold.
4/17/2025•
Vulnerabilities
25% of attacks exploit public-facing applications.
4/17/2025•
Public-facing applicationCyber attack
Only 24% of generative AI projects are secured.
4/17/2025•
Gen AI
Nearly a quarter of all vulnerabilities in the IBM X-Force Vulnerability Database have an associated weaponized exploit.
4/17/2025•
Vulnerabilities
Nearly one in three attacks observed by X-Force used valid accounts.
4/17/2025•
Valid accountsCyber attack
Showing 1-20 of 34 results