Rising Cost of Data Breaches in the U.S. Amid Global Declines

A Stark Contrast in Data Breach Costs

According to the recent IBM-Ponemon Institute’s 2025 Cost of a Data Breach report, the financial impact of data breaches in the United States is climbing, creating a dramatic difference compared to the decreasing costs observed globally. The report reveals that the average cost of a data breach in the U.S. has surged to an unprecedented $10.22 million, marking a 9% increase from the previous year. This is starkly contrasted by a 9% decrease in the global average cost, now at $4.44 million.

Experts attribute the increase in the U.S. to several factors, including rising regulatory penalties and escalating costs related to breach detection. This marks the first reduction in global breach costs in five years, largely driven by advancements in AI-powered cybersecurity defenses that have notably improved breach containment strategies.

AI: A Double-Edged Sword

Artificial intelligence is emerging not only as a valuable asset in bolstering cybersecurity measures but also as a target for cybercriminals. Roughly 16% of data breaches involved AI technologies used by attackers, particularly in scenarios involving phishing schemes and deepfake tactics. The reliance on AI has become a point of vulnerability; many organizations are prioritizing rapid adoption over comprehensive security and governance policies.

IBM and Ponemon highlighted alarming statistics: 97% of AI-related breaches occurred in environments lacking appropriate access controls. Moreover, many organizations have not implemented governance structures to oversee the use of AI, putting sensitive data at greater risk.

In total, 13% of surveyed organizations reported breaches that were directly related to their AI applications. The majority of these incidents involved attacks on the AI supply chain, often through compromised applications or APIs, which ultimately resulted in a broader compromise of data in 60% of cases.

The Threat of Shadow AI

The phenomenon of shadow AI poses another significant risk. Approximately 20% of organizations experienced security incidents due to shadow AI activities, which occur when unregulated AI systems are implemented without oversight. Organizations heavily utilizing shadow AI faced breach costs that averaged $670,000 higher than those with controlled environments. This highlights how the absence of governance can lead to significant vulnerabilities, including the exposure of personal identifiable information (65%) and intellectual property (40%).

The report indicated that these unmonitored systems can lead to widespread data exposure, emphasizing that just one overlooked AI implementation can result in substantial breaches. The proliferation of shadow AI in corporate environments has even surpassed traditional security skill shortages as a leading contributor to breach expenses.

Enhancing Security Through AI

Despite the risks, the report also sheds light on how AI security measures can lead to cost reductions in breach management. Organizations that actively employed AI and automation for their cybersecurity efforts reduced breach response times by an impressive 80 days and cut average breach costs by $1.9 million in comparison to those that didn’t utilize such technologies.

About 30% of organizations reported extensive use of AI tools throughout the security lifecycle—from prevention to response. Nonetheless, the increase in adoption remains modest, suggesting that many firms are yet to fully capitalize on the advantages that AI can provide in the realm of cybersecurity.

The average time to detect and contain a breach has dropped to 241 days, the lowest in nine years, continuing a downward trend from a peak of 287 days in 2021.

Financial Impact of Different Breach Types

Among various attack vectors, malicious insider threats proved to be the costliest, averaging $4.92 million, closely followed by third-party vendor and supply chain attacks at $4.91 million. Phishing attacks represented the most frequent type of breach, with supply chain compromises also prevalent.

Industry-Specific Costs

Industry analysis revealed that healthcare and financial sectors experienced some of the highest costs associated with data breaches. More organizations in these fields are recognizing the importance of cybersecurity measures as incidents increase in frequency and complexity.

Trends in Ransomware

The report also highlighted trends in ransomware attacks. A growing number of victims—now 63%—are choosing not to pay ransom demands, a shift from the 59% noted in last year’s findings. Conversely, the involvement of law enforcement in these incidents has seen a decline, with only 40% of cases reporting such engagement.

Data breaches identified by internal teams were found to be less costly than those disclosed by external parties, illustrating the efficiency of quick internal responses.

Comprehensive Survey Findings

The findings are based on data from 600 organizations that experienced data breaches between March 2024 and February 2025. Researchers from Ponemon conducted interviews with 3,470 security and C-suite leaders, providing valuable insights into the current landscape of data breaches and the ongoing complexities organizations face in securing their data.

With these insights, it is evident that while AI provides powerful tools for enhancing cybersecurity, its associated vulnerabilities cannot be overlooked. Organizations must foster robust governance policies to ensure that the benefits of AI do not come at the expense of security.