Data Breaches and Cyber Attacks in 2024 in the USA

875,603,102 known records breached so far in 1,819 publicly disclosed incidents

Welcome to a new page, giving you an overview of the year’s biggest security incidents in the USA, the sectors most frequently breached in 2024, month-on-month trends in the USA, links to our monthly reports, and much more.

Use the links in the ‘On this page’ section below to navigate.

IT Governance’s global 2023 overview is here. To download our monthly Data Breach Dashboards, click here. For our research methodology, click here.

To get our latest research delivered straight to your inbox, subscribe to our free weekly newsletter, the Security Spotlight.

IT Governance USA is dedicated to helping organizations address the threat of cyber crime and mitigate its risks. We offer various resources to help you understand and protect yourself from threats, ranging from training courses and professional consultancy to free green papers, webinars, and other resources.



Top U.S. data breach statistics for 2024

Note: Given that we’re at the start of a new year, the totals currently only account for Q1 2024. To help you put these figures into context, we’ve provided the numbers for Q4 2023.

Top 10 biggest breaches of 2024 in the USA (so far)

Note 1: Where ‘around,’ ‘about,’ etc. is reported, we record the rounded number. Where ‘more than,’ ‘at least,’ etc. is reported, we record the rounded number plus one. Where ‘up to,’ etc. is reported, we record the rounded number minus one.

Note 2: For incidents where we only know the file size of the data breached, we use the formula 1 MB = 1 record. Given that we can’t know the exact numbers, as it depends on the types of records included (e.g. pictures and medical histories are considerably larger files than just names and addresses), we err on the side of caution by using this formula. We believe that this underestimates the records breached in most cases, but it is more accurate than not providing a number at all.

Most breached sectors of 2024 in the USA

Note: To make these statistics as informative as possible, the percentages exclude the ‘multiple,’ ‘other,’ and ‘unknown’ sectors. In line with that, we’ve not listed ‘multiple,’ which technically disclosed most incidents (916, due to the misconfigured Google Firebase websites of March 2024).


Note 1: The following graphs reflect our most up-to-date data – in other words, they account for data corrections when more information about certain incidents comes to light after we publish our monthly reports. There may therefore be discrepancies with our monthly reports, particularly older ones.

Note 2: We’ve included Q4 2023 data to help you put these figures into context. As we collect more 2024 data, we’ll remove the 2023 data from this page.

Note 3: To avoid skewing the data, for the global figures, the following graphs exclude three outlier events: the Europol action in December 2023, affecting 443 organizations; the MOAB in January 2024, affecting 3,876 organizations; and the thousands of exposed Ray servers in March 2024.

Known records breached

Publicly disclosed security incidents

Note: We improved our incident-finding processes in November 2023 – this is part of the reason the number of incidents (in both the USA and globally) is so low in October 2023.

Data breached

Note 1: These exclude publicly disclosed incidents where we don’t know for sure whether data was breached, or where a cyber attack only led to e.g. a service disruption but not a data breach.

Note 2: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.

Remedial action

Note: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.

Regulator notification/involvement

Note: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.

Individual notification

Note: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.

Ransomware attacks

Note: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.

Supply chain attacks

Note: This graph excludes the 916 misconfigured Google Firebase websites of March 2024 from both the USA and global data, to avoid skewing it.


The top 3 biggest breaches in the USA in March 2024


The top 3 biggest breaches in the USA in February 2024


The top 3 biggest breaches in the USA in January 2024


Suffered an incident?

Get free expert insight from Cliff Martin, the head of incident response at our sister company GRCI Law, into:

  • Defense in depth, with prevention, detection, and response
  • Cyber incident response plans
  • The different stages of incident response
  • Staff training
  • Internal expertise vs outsourcing
  • Incident responder skills
  • And more

Security Spotlight

To get news of the latest data breaches and cyber attacks straight to your inbox, subscribe to our weekly newsletter: the Security Spotlight.

Every Tuesday, you’ll get a short email with:

  • Industry news, including this weekly round-up
  • Our latest research and statistics
  • Free useful resources
  • Upcoming webinars
  • Other ways we can help

Leave a Reply