2026 Data Breach Investigations Report

Turn global breach insights into a stronger, more proactive defense for your organization.

Key Resources

2026 DBIR

Access the data-driven insights you need to help counter AI-augmented attacks, navigate shifting financial pressure and defend your organization against today’s threats.

Read the report

2026 Breach Impact Study

See the real cost of a breach. Get the facts you need to make smarter security investments and help protect your bottom line.

Read study

2026 DBIR Executive Summary

No time for the full report? Get the high-level takeaways and key data points you need to protect your team.

View summary

2026 Infographic

Get the big picture on cybercrime. See the top data points and learn how to help protect what you’ve built.

View infographic

2026 SMB Infographic

Know your risks. Get a clear look at the top cyber threats targeting small and medium-sized businesses this year.

View SMB Infographic

Top takeaways

Cybersecurity is constantly evolving. Here are the top takeaways from this year’s report and what they can mean for your business.

31% DBIR

of breaches now start with software vulnerabilities, beating stolen passwords as the top way attackers get in. Hackers are shifting their focus from tricking people to exploiting systems.

48% DBIR

of all breaches now involve ransomware, but payouts are shrinking. Even as ransom amounts decrease, businesses are frequently choosing not to pay.

15% DBIR

different attack techniques are now being bolstered by generative AI. Threat actors are using AI to work faster at every stage—from spotting security gaps to writing malware.

40% DBIR

higher click rates make mobile devices the new favorite target. We’ve gotten better at spotting phishing emails, so attackers are moving to our pockets. Whether it’s a fake text or a scam call, people are often more likely to fall for a mobile threat than a traditional email.

Snapshots

Every industry faces unique challenges. Get a closer look at the data most relevant to your organization and find actionable ways to help strengthen your defenses.

Man working on laptop with coffee mug.

Help defend the data that matters most. Identify the top vulnerabilities in healthcare and learn how to help keep patient records and staff information safe.

Download now

Defend your connected factory. Identify the latest threats to your security systems and help prevent disruptions before they start.

Download now

Stay ahead of the latest threats to public safety. Discover the top cyber risks and the tools you need to help mitigate them.

Download now

Help secure transactions. Get the latest insights on risks to cardholder data to help your business stay ahead of retail-focused cyberattacks.

Download now

Watch the webinars

On demand
Beyond the Breach:
Deconstructing the 2026 Data Breach Investigations Report

Go beyond the data and get insights directly from the DBIR authors. Get a firsthand look at how generative AI is augmenting attacks, analyze the impact of shifting financial pressures and learn how to help protect your infrastructure against today’s most prevalent threats.

Watch now

On demand
Insights from Impact: Presenting the 2026 Breach Impact Study

Stop guessing at the cost of a breach. Watch our webinar, where we break down new data from real insurance claims to help you build a cybersecurity strategy rooted in financial reality.

Watch now

Be first to get the latest

Sign up to get the latest cybersecurity updates, reports and more.

Sign up

Customer success story

CommScope stays ahead of security threats with the help of the DBIR

CommScope doesn't just guess at security—their team uses the DBIR to help build cybersecurity strategies that work. See how they use our report insights to help protect what matters most: their customers.

Play video

Explore the archive

2025 DBIR

Get updates on real-world breaches and help safeguard your organization from cybersecurity attacks.

Read 2025 report

2024 DBIR

Learn how to prepare for cybersecurity threats, no matter the size of your organization. Review real-world breaches to help evaluate potential updates to your security plan.

Read 2024 report

Explore past reports

2023 DBIR2022 DBIRView complete archive

FAQs

A data breach is a security incident where unauthorized individuals gain access to sensitive, protected, or confidential data. The Verizon Data Breach Investigations Report analyzes thousands of these incidents globally to understand how they happen and who is behind them.

The DBIR is an annual report on cybersecurity analyzing real-world data breaches—how they happen, who’s behind them, and how businesses can stay protected. Using global data, it provides key insights to help companies stay ahead of cyber threats. It acts as a vital cybersecurity risk management report for businesses of all sizes.

Our data is contributed by a wide range of organizations, including domestic and international law enforcement, forensic firms, law firms, cyber insurers, cybersecurity industry sharing groups, and our own Verizon Threat Research Advisory Center (VTRAC) caseload. Each year, the DBIR timeline for in-scope incidents is from November 1 of one calendar year through October 31 of the next calendar year. Thus, the incidents described in the 2026 edition took place between November 1, 2024, and October 31, 2025.

While daily data breach news today fluctuates, the annual DBIR report aggregates and analyzes this data over a 12-month period to identify overarching trends. Our data breach report provides the definitive, data-backed context needed to understand the daily headlines and navigate the complex threat landscape.

No security strategy is foolproof, but businesses can help reduce risk by:

  • Using multifactor authentication (MFA) to block unauthorized access
  • Keeping software updated to fix security gaps
  • Training employees to spot phishing and threats
  • Encrypting sensitive data for added protection
  • Testing security defenses regularly
  • Having an incident response plan in place

By detailing the anatomy of thousands of attacks, the DBIR report helps organizations understand what to look for when conducting their own internal audits. It provides a reliable benchmark for cybersecurity incident reporting, helping security teams refine their incident response procedures to ensure compliance and readiness.

Cyber threats evolve rapidly. Utilizing an authoritative cybersecurity incident report like the DBIR allows your organization to align its defenses with the most current tactics used by cybercriminals. It serves as a foundational tool for executive leadership and IT teams alike to prioritize security investments and validate their data breach reporting frameworks.

Based on the data breach 2026 threat landscape, the most frequent causes continue to heavily involve the human element—including social engineering, phishing, and stolen credentials—as well as the exploitation of software vulnerabilities and ransomware attacks. You can explore the complete data breach investigations and statistical breakdowns by industry within the full report.