The notification of a data breach is a letter that many consumers dread receiving, and unfortunately, it’s becoming increasingly common. According to a recent survey by the Identity Theft Resource Center, about 80% of respondents received at least one data breach notice in the prior 12 months. Moreover, nearly 40% of respondents received three to five separate notices over that period, highlighting the growing concern of data security.
Data Breach Statistics
The number of data compromises rose 5% last year, with 3,322 events in 2025, marking a record high, according to the Identity Theft Resource Center’s annual report. The nonprofit organization has been tracking public reports of data compromises for 20 years, and the latest findings are alarming. “We have once again had more breaches in a single year reported than in any previous year,” said ITRC President James E. Lee.
Of those who recently received a data breach notice, 88% reported at least one negative consequence, such as increased phishing or other scam attempts, more spam emails or robocalls, or an attempted account takeover. The top industries to see data compromises in 2025 included financial services, health care, professional services, manufacturing, and education, according to the ITRC’s annual report.
New Scrutiny on Government Data Handling
The new data comes amid new scrutiny on the government’s handling of personally identifiable information at the Social Security Administration. The Justice Department recently submitted new information in a court case involving the Social Security Administration, which reveals alleged mishandling of personal data at the agency. The court filing includes “communications, use of data, and other actions” by the Department of Government Efficiency team at the Social Security Administration that the Justice Department described as “potentially outside” of the agency’s policy and/or not compliant with a March temporary restraining order.
A Social Security Administration spokesperson told CNBC.com via email that the agency is “committed to safeguarding the personal data of every American.” However, experts say it’s generally best for consumers to assume their data has already been exposed in various breaches. “Everyone’s identity has already been stolen,” said Haywood Talcove, CEO of government at LexisNexis Risk Solutions. “The only question is, has it been used?”
Steps to Protect Your Personal Data
By taking certain steps, you can greatly improve your chances of protecting your personal data. These include signing up for Informed Delivery, a free service through the U.S. Postal Service that sends you preview images of your incoming mail, and registering for a property fraud alert. You can also freeze your credit with all the major credit bureaus, set up account alerts on all of your bank and other financial accounts, use passkeys instead of passwords whenever possible, use a password manager, and add multifactor authentication.
These steps can help prevent identity thieves from opening new accounts in your name and reduce the risk of unauthorized access to your sensitive information. It’s essential to be proactive in protecting your personal data, as the number of data breaches continues to rise. For more information on data breaches and how to protect your personal data, visit Here
Smart Tip for Readers
To minimize the risk of identity theft, consider using a password manager to generate and store unique, complex passwords for all of your online accounts, and enable two-factor authentication whenever possible to add an extra layer of security.
