call for a free consultation
(866) 778-5500
$100 Million awarded Since 1994 6,000 Satisfied Clients
You're in the right
place. We can help.
free consultation

Why Do Data Breaches Happen?

Data BreachData breaches encompass any sort of incident in which an unauthorized party gains access to information.

Why do data compromises occur? How common are they? And how can an organization take steps to prevent data breaches?

At Console & Associates, P.C., our data breach lawyers are here to help you understand your rights in the wake of a data breach. To schedule your free consultation, just call (866) 778-5500 today or fill out our secure contact form.

Table of Contents hide
1 What Is the Most Common Cause of Data Breaches?
2 How Likely Is a Data Breach?
3 How Can a Data Breach Be Prevented?
4 How Many Data Breaches Happen Each Year?
5 What Percentage of Companies Have Data Breaches?
6 How Many People Are Victims of Data Breaches?

What Is the Most Common Cause of Data Breaches?

The most common causes of data breaches, according to cybersecurity risk platform UpGuard, include:

  • Inadequate security measures, like poor configuration of security software, vulnerabilities within software programs, and the use of insecure (default or recycled) passwords, that leave data vulnerable to breaches
  • Social engineering attacks, a form of fraud—including phishing and other scams—in which the attacker manipulates a target or victim into providing sensitive data
  • Theft of physical devices that store or give access to data on a computer network or of digital files (on a CD, USB drive, or SD card), printed files, or paperwork containing sensitive data

Most intentional hacking attacks—71%—are financially motivated, according to Verizon. Hackers may also commit cyberattacks for purposes of corporate or government espionage, sabotage, vandalism, server disruption, revenge, or reputation-building. Data breaches can also occur due to human error, such as a worker accidentally sending information to a party that is not authorized to view it.

How Likely Is a Data Breach?

All organizations should be wary of hacking and other incidents that can compromise the security of the data they store. However, the likelihood of a successful cyberattack (that is, one in which the attacker manages to break through security measures to capture the targeted data) isn’t equal across all companies and organizations.

A data breach is more likely when a company doesn’t have adequate security measures in place.

Reducing costs is a common goal for all kinds of organizations, from for-profit companies to nonprofit organizations and even government agencies. When an organization skimps on its information security measures, though, it is taking a big risk that can end up financially harming not only the organization itself but also its customers.

If you were the victim of a data breach,

we can help.

How Can a Data Breach Be Prevented?

The surest way to reduce an organization’s risk of being the target of a data breach is to put in place satisfactory security measures and continually keep these measures up to date to protect against evolving forms of cyberattacks. Organizations that hire qualified professionals to set up and maintain strong security measures are less likely to suffer a successful data breach.

An organization can’t control the illegal actions of a cybercriminal, but it can control how easy or appealing a target its system is by investing in adequate security measures.

How Many Data Breaches Happen Each Year?

Data breaches are alarmingly common, and the frequency of these serious information security incidents is only growing. In 2021, 1,862 data “compromises” were reported across the United States, according to the national nonprofit Identity Theft Resource Center.

That figure represented a significant increase in data breach events, both over the previous year and over the previous all-time record. The number of data breaches reported for 2021 was up 68% over the number of data breaches—1,108—in 2020. It also outstripped the previous record-high year for data compromises, 2017, by 23%.

To put this number in perspective, an average of five data breaches occurred every single day in 2021.

Data breaches aren’t rare. Organizations should treat data breaches as the very real, very common, and very serious threats they are. That means making effective and proactive efforts to protect the data in their possession.

What Percentage of Companies Have Data Breaches?

The proportion of companies that have experienced some sort of data breach or data security event is startling.

Different sources report different figures, largely due to the differences in the way they characterize incidents and the sizes and types of organizations they study. What is consistent is that all of the research reported shows that data security breaches are a widespread and pervasive problem that affects a large share of organizations.

According to the research reporting website StudyFinds.org, 45% of software developers and business professionals polled reported a “major data breach” of their companies within the last five years. Around one-third of these breaches were “inside jobs”—internal thefts of data performed by employees or other members of the organization. Further, 29% of respondents admitted that their companies use “unprotected production data,” or actual consumer data, in software testing environments. This practice can be risky, making consumer data vulnerable to theft and unauthorized access.

Statista reported that in 2021, 74% of survey respondents from large companies in the U.S. and 61% of small businesses in the U.S. reported a data breach (the size and extent of which were not specified).

“Upwards of 80% of US companies have reported being hacked…”
Results from a Duke University/CFO Magazine Global Business Outlook survey showed that upwards of 80% of companies in the United States, as well as 85% of companies in Europe, Asia, Africa, and Latin America, reported having been hacked. Among these companies, hacking efforts seem to have been more successful at smaller companies than at larger companies, 85% to 60%, respectively.

The Insider Data Breach Survey 2021 from software company Egress found that 94% of U.S. and U.K. companies surveyed reported experiencing an insider data breach over the past 12 months.

How are these massive percentages possible? Keep in mind that, while data breaches affecting major, household-name corporations get the most media attention, small businesses are particularly prone to data breaches because they have fewer financial resources to devote to network and information security. There were 31.7 million small businesses registered in the United States as of 2020, according to the U.S. Small Business Administration.

Ultimately, it doesn’t matter whether the data hackers stole was managed by a big company or a small one. Either way, your sensitive personal information is now in the hands of a criminal.

How Many People Are Victims of Data Breaches?

No Fee PromiseEach individual data breach may leave a large quantity of data vulnerable. The total number of consumers affected by data breaches in the United States in 2021 was 212.4 million, according to VPN service company Surfshark. That was an increase of more than 20% over the 174.4 million users affected by data breaches the previous year.

If you recently received a letter indicating that your information was compromised through a data breach, it is crucial that you take the steps necessary to protect yourself. At Console & Associates, P.C., our data breach lawyers help you to better understand what is at stake after a data breach and what your legal remedies are. We work with law firms across the country to provide the most resources and expertise possible to help ensure that your case is successful.

To schedule your free consultation, just call (866) 778-5500 today or fill out our secure contact form.

Free Case Evaluation Easy. Quick. Confidential. *Field Required
  • By submitting this form, you agree to receive SMS text communication regarding the legal matter you are contacting us about. We do not send marketing or recurring messages. Msg & data rates may apply. You may reply STOP at any time to stop receiving messages from our firm.

New Jersey

Pennsylvania

Mass Torts

Console and Associates Accident Injury Lawyers, P.C. is a personal injury law firm that represents accident victims in New Jersey & Pennsylvania. We are best known for our skill in seeking maximum compensation and for the compassionate manner in which we help our clients restore their lives after devastating injuries.

© 2022 by Console and Associates Accident Injury Lawyers, PC. All rights reserved. Disclaimer | Privacy Policy | Sitemap

ATTORNEY ADVERTISING This is a paid advertisement by Attorney Richard P. Console Jr., Esq. and the law firm of Console & Associates P.C., not a referral service. Prior results do not guarantee a similar outcome. Testimonials are not necessarily representative of results obtained. Console & Associates, P.C.'s primary office is located at One Holtec Drive, Suite #100, Marlton, NJ 08053 and can be reached at 866-778-5500. The attorney responsible for this advertisement is Richard P. Console Jr., Esq. The information presented on this site is provided for general informational purposes only and should not be construed as formal legal advice nor the formation of an attorney-client relationship. Use of this site does not create an attorney-client relationship. Submitting information or case details through this site does not create an attorney-client relationship. An attorney will need to review the specific facts of your case to determine representation.
References to any particular case do not constitute a representation that we are participating in that case. While we handle litigation related to the legal issues discussed on this site, we are not necessarily involved in any particular cases mentioned. Any references to specific cases are for illustrative purposes only and do not indicate that we are counsel in that case.
In certain instances, we may choose to involve co-counsel or refer a matter to another firm if we believe it is in the client's best interest. Any information you provide will only be reviewed by our firm and/or our co-counsel attorneys to evaluate your case and eligibility. While we make efforts to ensure the information on this site is accurate, it may not reflect all relevant facts and circumstances. You should not take any action based upon this information without first consulting legal counsel about your particular situation.
The choice of an attorney is an important one and should not be based solely on advertisements. Results may vary depending on your particular facts and legal circumstances.
If you believe you may have a claim, we would be happy to discuss potential representation with you, subject to our standard intake procedures and conflict checks. However, by visiting this site or contacting us, no attorney-client relationship is created. Confidential information should not be sent to us until a formal engagement letter is signed.
New Jersey Residents: If you live in New Jersey and believe this advertisement is inaccurate or misleading, you may report same to the Committee on Attorney Advertising, Hughes Justice Complex, CN 037, Trenton, New Jersey 08625. No aspect of this advertisement has been approved by the Supreme Court of New Jersey.

PRIVACY: We are committed to protecting your privacy. We do not sell, trade or rent your personal information to third parties. Any information you provide us will only be reviewed by our firm and/or our co-counsel attorneys. You may be contacted by our firm or by one of our co-counsel law firms. This privacy statement discloses how the information you provide is used and protected.

AHA MRF Compliance
Instagram facebook icon linkedin icon twitter icon