Form: Cost-of-Breach DisclosureSource: IBM 2025Filed: 28 Apr 2026
DataBreachCost.comOpen calc
01 Calculator02 Statistics03 By Industry04 Breaches05 Prevention ROI06 Ransomware07 Small Business08 By Country09 Notification Laws10 Cost Breakdown
Filing 8-K / Item 1.05Material Cybersecurity Incident

Headline figure / IBM 2025

A breach now costs $4.44M on average.

Independent register of breach-cost intelligence. IBM's 2025 figures, the Verizon DBIR, and Sophos ransomware data, presented as browsable, citable web pages instead of gated PDFs. Calculate your specific exposure below.

File an estimate View 2025 statistics

Global avg

$4.44M

-9% YoY

US avg

$10.22M

record high, +9%

Healthcare

$7.42M

#1 for 15 yrs

MTTD

241d

lowest in 9 yrs

AI savings

-$1.9M

extensive AI deploy

IR team

-$2.66M

biggest single saver

IBM Cost of a Data Breach Report 2025. 604 organizations, 17 countries, 16 industries.

Schedule A / Cost-of-Breach EstimatorReal-time / no submit

Section I / Filer Particulars

Breach inputs

Per-record cost: $408 (HIPAA). IBM 2025.

Customer / employee records at risk. IBM avg PII record value: $160.

Multiplier vs $4.44M baseline. Encrypted systems with ransom demand

Section II / Security Controls (IBM 2025 verified savings)

Estimated total exposure

$63,529,592

Critical exposure

vs IBM 2025 avg

1431%

Per record

$1270.59

Records

50,000

Region mult.

x2.30

Schedule B / IBM cost-category split

Where the money goes

Lost business$24.14M (38%)
Detection & escalation$18.42M (29%)
Post-breach response$17.15M (27%)
Notification$3.81M (6%)

IBM Cost of a Data Breach Report 2025, four-category methodology.

Section IV / Comparison band

At $63.53M, your estimated exposure is 14.31x the global IBM 2025 average and 6.22x the US average. The United States regional cost factor is x2.30 (State-by-state).

Index / Companion SchedulesLast verified April 2026

02 Global statistics

$4.44M global, $10.22M US, 241-day MTTD, year-over-year trends, attack-vector costs, AI impact.

03 By industry

Healthcare $7.42M (#1, 15 years). Financial $5.56M. Pharma $5.01M. Tech $4.97M. All 10 sectors.

04 Biggest breaches

Equifax, Marriott, Change Healthcare, MOVEit, 22 verified mega-breaches with sourced cost figures.

05 Prevention ROI

MFA (32x), employee training (15x), AI/automation (6.3x). 10 controls ranked by ROI multiple.

06 Ransomware costs

$5.08M average. $1.32M median demand, $115K-$1M payment range, 64% refuse to pay.

07 Small business

60% close within 6 months. $15K-$3.31M cost ranges by size, common attacks, affordable defence.

08 By country / region

14 IBM regions. US 2.30x global, Brazil 0.31x. GDPR impact and US state notification map.

09 Notification laws

GDPR 72h, all 50 US states + DC, California SB 446 (30 days), penalties for late filing.

10 Cost breakdown

38% lost business, 29% detection, 27% post-breach, 6% notification. The 5-year cost tail.