24% of global organizations indicated that costs from identity-related breaches exceeded $10 million, a three-percentage-point increase from the previous year.

The top consequences of breaches reported were operational downtime (71%), reputational damage (45%), and financial loss (41%)

Among organisations that reported recovery following a data breach, most took more than 100 days on average to do so.

Less than half of those that plan to invest in security post-breach will focus on AI-driven security solutions or services.

Nearly half of all organisations reported that they planned to raise the price of goods or services because of a breach.

Nearly one-third of organisations reported price increases of 15% or more due to a data breach.

There was a significant reduction in the number of organisations that planned to invest in security following a breach: 49% in 2025 compared to 63% in 2024.

Nearly all organisations studied suffered operational disruption following a data breach.

12% of hotel IT and security leaders said an attack could lead to hotel closure.

Last summer, 44% of hotels experienced more than 12 hours of downtime due to an attack.

The most likely business impacts of a cyberattack on a hotel include reputational damage from negative reviews (66%), financial losses (46%), lawsuits (42%), lower occupancy (32%), and higher insurance premiums (30%).

When faced with data breaches at both a large corporation and a small business, 1 in 3 (34%) Gen Z and Millennials say they would stop shopping with both entirely.

When faced with data breaches at both a large corporation and a small business, 27% of Gen X and Boomers say they would stop shopping with both entirely.

More than half of Gen Z (53%) and 42% of Millennials have cut ties with a business because it experienced a security incident.

37% of Gen X and Boomers would cut ties with a business if it experienced a security incident.