U.S. data breach volume increased 10% in 2021

towfiqu-barbhuiya-em5w9_xj3uU-unsplash (1).jpg

There were 2,932 publicly reported breaches in the United States throughout 2021, according to research from Risk Based Security and Flashpoint.

The 2021 Year End Report: Data Breach QuickView found that although data breaches worldwide decreased by 5%, numbers in the U.S. lifted by 10% compared to 2020 levels.

Most targeted data types

In 2021, names and social security numbers were the most targeted forms of personal identifiable information (PII), being compromised in breaches 64% and 41% of the time, respectively. Addresses were the third most compromised known type of PII (29%).

Cyberattack vectors

Threats from outside of organizations posed a large risk in 2021, with 77% of breaches originating from external threats. However, insider risk also presents a threat to enterprise cybersecurity. Although only 15% of breaches result from internal actions, 63% of internal breaches are accidental, indicating a potential need for further cybersecurity training.

Industry targets

Various sectors suffered data breaches at higher rates in 2021. According to the report, the top five industries targeted by data breaches were:

Healthcare: 583 breaches
Finance and Insurance: 520 breaches
Public Administration: 402 breaches
Information: 389 breaches
Professional/Scientific: 382 breaches

For more information, download the report here.

Madeline Lauver joined Security magazine in 2021 as its Assistant Editor. She covers news affecting enterprise security leaders, including physical security, cybersecurity, leadership and management, risk and resilience and more. Within her role at Security, Lauver focuses on news articles, Web Exclusives, features, and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content. Lauver graduated in 2019 with a BA in English, German and Media Studies from Kalamazoo College.