IBM Cost of a Data Breach Report 2024

Are you ready to get in touch?

Request a Call back

Resources Download Form

Complete this form to download our resources. Once you have submitted it, all other resources can be downloaded without having to complete another form again.


    By providing your details, you agree to be contacted by us. We promise to only use your information within Northdoor and not to pass this to any 3rd party marketing companies. You can opt out at any time. More details can be found in our Privacy Policy .
  • This field is for validation purposes and should be left unchanged.

Download this resource

This resource is available for immediate download

Please click the button below

Download now

IBM Cost of a Data Breach Report 2024 key insights

2024 cost of data breach report

IBM’s annual Cost of a Data Breach Report provides IT, risk management, and security leaders with timely, quantifiable evidence to guide their strategic decision-making and help them better manage their risk profiles and security investments.

This year’s report, the 19th of the series, reflects changes caused by technological shifts, such as the rise of shadow data, which is data residing in unmanaged data sources and the extent and costs of business disruption brought about by data breaches.

The report’s research, conducted independently by Ponemon Institute and sponsored, analyzed and published by IBM, studied 604 organisations impacted by data breaches between March 2023 and February 2024. Researchers looked at organisations across 17 industries in 16 countries and regions and breaches that ranged from 2,100 to 113,000 compromised records. To gain on the ground insights, Ponemon Institute researchers interviewed 3,556 security and C suite business leaders with firsthand knowledge of the data breach incidents at their organisations.

The result is a benchmark report that business and security leaders can use to strengthen their security defences and drive innovation, particularly around adopting AI in security and security for their generative AI (gen AI) initiatives.

Key highlights:

  • $4.88M global average cost of a data breach (up 10% from 2023).
  • Breach cost savings of organisations that extensively used AI in prevention were U.S. $2.2M.
  • More than half of breached organizations are facing high levels of security staffing shortages, a 26.2% increase from 2023.
  • 35% of breaches involved shadow data, which shows that the proliferation of data makes it harder to track and safeguard.
  • 46% of breaches involved customer personal data or personal identifiable information (PII) such as tax ID numbers and contact information.
  • Breaches involving stolen or compromised credentials took the longest (292 days) to identify and contain of any attack vector.
  • The average cost of a malicious insider attack was US $4.99M, the highest cost of any attack vector.
  • Ransomware cost savings when law enforcement is involved averaged US $1M versus not being involved. Also, two-thirds of organisations that suffered ransomware attacks and involved law enforcement didn’t pay the ransom.

Latest Blog Articles

Security

Impersonation Phishing Attacks in 2024

Learn how impersonation phishing attacks surged in 2024, with cybercriminals using advanced tactics and AI-powered toolkits.

Insurance

The ongoing challenges of Blueprint Two

Navigate Blueprint Two challenges in the London Market’s digital transformation. Find ways to bridge EDI message support gaps.

Banking and Finance

Strengthening operational resilience in preparation for DORA with clean rooms

How financial institutions are preparing for upcoming new regulation, DORA, using clean rooms as a recovery approach for their critical IBM Power Systems

See all blog articles

Our Awards & Accreditations

See all Awards