Malware - Statistics & Facts

Malware, or malicious software, is designed to take charge or disrupt its victim's computer infrastructure. By posing as harmless files or links, these programs trick users into downloading them – thus allowing foreign access not only to the victim's computer but to the entire network within an organization. The main motivations for these attacks are to steal personal or corporate information and to cause disruption in operations. In 2022, 5.5 billion malware attacks were detected around the world with the majority of these attacks occurring in the Asia-Pacific region. Among the most frequently blocked types of malware attacks were worms, viruses, ransomware, trojans, and backdoor. Between the two main attack vectors, e-mail, and websites, the latter were used for phishing attacks more often.

Industries most targeted by malware attacks

When it comes to the most attacked industry sectors by cyber criminals, it highly depends on the organizations' vulnerability and the amount of data they possess. Usually, threat actors target manufacturing, finance, professional, and healthcare industries. However, institutions in the education sector are the new big target of threat actors. In 2022, malware attacks on educational institutions have seen the most significant spike among overall sectors. The education sector also encountered the highest average weekly number of cyber attacks in the same year.

Ransomware as a primary threat

Ransomware is the most profitable type of malware. After gaining access to the victim’s devices and files, ransomware actors encrypt them demanding ransom payment for decrypting them. Ransomware is mainly spread via e-mail attachments, ads, URLs, and websites. In 2022, there were more than 493 million ransomware attacks worldwide, with the United States being the most targeted country. In 2022, LockBit was the most detected ransomware family worldwide. In addition, new ransomware families are being discovered each year. Ransomware attacks are known to target the most critical industries, such as healthcare, manufacturing, and government facilities. Recently, ransomware has become an even bigger threat, with ransomware as a service (RaaS) business model becoming more widespread. Through this service, cyber criminals sell access to malware, allowing cyber criminals with limited skills to launch a ransomware attack. As of the first quarter of 2022, there were over 30 active RaaS and extortion groups worldwide, up from nearly 20 in the year prior.

Industry trends

With the launch of the AI chatbot ChatGPT in November 2022, concerns have been rising around its possible usage in cyber crime. Specifically, the AI-powered chatbot is trained to create human-like texts in a shorter time, without spelling errors, which are the primary identifiers of a phishing e-mail. Subsequently, ChatGPT has made it much easier to write texts for phishing e-mails. Additionally, discussions about whether it is possible to trick ChatGPT into writing malware are on the rise. Although not as widespread as malware that targets traditional systems, mobile malware is a growing threat. The most common variant of this is RiskTool, which includes cryptocurrency miners that generate coins using the target device’s data. In 2022, Peru was the leading market worldwide by mobile phishing attack encounter rate. In the same year, three in four IT professionals and working adults reported an SMS phishing or smishing attack.

State of cyber security and malware prevention

With companies well aware of the growing malware threat, overall security measures are increasing. The most widely implemented form of these has been intrusion detection, aimed at catching an attack at its onset. Meanwhile, companies have been testing security with phishing attack simulations. As a result, the average failure rate was between eight and 14 percent, with the electronics manufacturers showing the highest failure rates. Another way for companies to combat cyber security threats is employee training. In 2022, 44 percent of the companies surveyed said their organization provided computer-based training. The awareness of cyber security matters among the general adult population is still less than optimal, as most adults still aren’t familiar with the full extent of malware, with terms such as ‘ransomware’ only having been correctly identified by less than 40 percent of those surveyed.

This text provides general information. Statista assumes no liability for the information given being complete or correct. Due to varying update cycles, statistics can display more up-to-date data than referenced in the text.

Annual number of malware attacks worldwide: 5.5bn

Most targeted industry by cyber attacks: Manufacturing

Most common cyber threat worldwide: Riskware

Editor’s Picks Current statistics on this topic

Most frequently detected malware threats in global regions in 2022, by type and region

Cyber Crime

Most prevalent malware 2022, by type and region

Most concerning consequences of cyber incidents according to board members worldwide in 2022

Cyber Crime

Global biggest concerns of board members regarding cybercrime 2022

Most frequently detected banking trojans worldwide in 2022, by type

Cyber Crime

Most prevalent banking trojans worldwide in 2022, by type

Recommended statistics

Overiew

Basic Statistic Number of malware attacks per year 2015-2022
Number of malware attacks per year 2015-2022
Annual number of malware attacks worldwide from 2015 to 2022 (in billions)
Premium Statistic Global malware attack vectors 2018-2022
Global malware attack vectors 2018-2022
Distribution of malware attack vectors worldwide from 2018 to 2022
Premium Statistic Share of cyber attacks in worldwide regions 2022, by category
Share of cyber attacks in worldwide regions 2022, by category
Distribution of cyber attacks in selected global regions in 2022, by category
Premium Statistic Global most common cyber threats 2022
Global most common cyber threats 2022
Most common types of cyber threats worldwide from October to December 2022
Basic Statistic Leading cyber crime victim loss categories U.S. 2022
Leading cyber crime victim loss categories U.S. 2022
IC3 reported cyber crime with the highest amount of victim losses in the United States in 2022, by type (in million U.S. dollars)
Basic Statistic Global firms at risk of material cyber attack as per board directors 2023, by country
Global firms at risk of material cyber attack as per board directors 2023, by country
Share of organizations worldwide that are at risk of a material cyber attack within a year according to their board members as of June 2023, by country

Most targeted industries

Premium Statistic Global sectors most attacked by malware August 2022
Global sectors most attacked by malware August 2022
Industry sectors most frequently targeted by malware attacks worldwide from July 2022 to August 2022
Basic Statistic Global average number of weekly malware attacks 2022, by industry
Global average number of weekly malware attacks 2022, by industry
Average weekly number of malware attacks in organizations worldwide in 2022, by industry
Premium Statistic Global YoY change in average number of weekly malware attacks 2022, by industry
Global YoY change in average number of weekly malware attacks 2022, by industry
Year-over-year change in average weekly number of malware attacks in organizations worldwide in 2022, by industry
Premium Statistic Global YoY change malware attacks 2022, by industry
Global YoY change malware attacks 2022, by industry
Year-over-year change in the number of malware attacks worldwide across selected industries as of 2022
Basic Statistic Share of cyber attacks in global industries worldwide 2022
Share of cyber attacks in global industries worldwide 2022
Distribution of cyber attacks across worldwide industries in 2022

Malware types

Premium Statistic Most prevalent malware 2022, by type and region
Most prevalent malware 2022, by type and region
Most frequently detected malware threats in global regions in 2022, by type and region
Premium Statistic Most prevalent crypto-mining malware 2022, by type and regions
Most prevalent crypto-mining malware 2022, by type and regions
Most frequently detected crypto-mining malware in worldwide regions 2022, by type
Premium Statistic Top malware received globally via web and e-mail in 2022, by file type
Top malware received globally via web and e-mail in 2022, by file type
Most common malicious file types received globally via web and e-mail in 2022
Basic Statistic Global most commonly blocked malware 2022, by type
Global most commonly blocked malware 2022, by type
Malware types most frequently blocked in malicious files worldwide in 2022 (in millions)
Premium Statistic Most detected malware families affecting corporate networks worldwide 2022
Most detected malware families affecting corporate networks worldwide 2022
Most frequently detected malware families affecting corporate networks worldwide in 2022

Mobile malware

Basic Statistic Distribution of mobile malware worldwide 2022, by type
Distribution of mobile malware worldwide 2022, by type
Distribution of mobile malware worldwide in 2022, by type
Premium Statistic Countries with highest mobile malware encounter rate Q3 2022
Countries with highest mobile malware encounter rate Q3 2022
Percentage of mobile users who have fallen victim to mobile malware infections in 3rd quarter 2022, by country
Premium Statistic Most prevalent banking trojans 2022, by type and region
Most prevalent banking trojans 2022, by type and region
Most frequently detected banking trojans in worldwide regions in 2022, by type
Premium Statistic Most prevalent banking trojans worldwide in 2022, by type
Most prevalent banking trojans worldwide in 2022, by type
Most frequently detected banking trojans worldwide in 2022, by type
Basic Statistic Volume of detected mobile malware packages as of Q3 2022
Volume of detected mobile malware packages as of Q3 2022
Number of detected malicious installation packages on mobile devices worldwide from 4th quarter 2015 to 3rd quarter 2022
Premium Statistic Smishing attacks in global organizations 2021-2022
Smishing attacks in global organizations 2021-2022
Share of organizations worldwide targeted by smishing attacks in 2021 and 2022
Premium Statistic Volume of vishing attacks on global organizations 2020-2022
Volume of vishing attacks on global organizations 2020-2022
Share of organizations worldwide targeted by vishing attacks in 2020 and 2022
Premium Statistic Mobile phishing rate in selected markets 2022
Mobile phishing rate in selected markets 2022
Mobile phishing encounter rate worldwide in 2022, by country

Ransomware

Basic Statistic Number of ransomware attempts per year 2017-2022
Number of ransomware attempts per year 2017-2022
Annual number of ransomware attempts worldwide from 2017 to 2022 (in millions)
Premium Statistic Countries targeted by ransomware 2022
Countries targeted by ransomware 2022
Countries most targeted by ransomware attacks in 2022 (in millions)
Basic Statistic Annual number of newly added ransomware families 2022
Annual number of newly added ransomware families 2022
Annual number of newly discovered ransomware families worldwide from 2015 to 2022
Basic Statistic Businesses worldwide affected by ransomware 2018-2023
Businesses worldwide affected by ransomware 2018-2023
Annual share of organizations affected by ransomware attacks worldwide from 2018 to 2023
Premium Statistic Global ransomware infections rate in organizations 2022
Global ransomware infections rate in organizations 2022
Volume of ransomware infections in organizations worldwide in 2022
Premium Statistic Outcomes for organizations after ransom payments worldwide 2022
Outcomes for organizations after ransom payments worldwide 2022
Consequences of ransomware attacks for organizations following ransom payments worldwide in 2022
Premium Statistic Share of ransom payers worldwide that recovered data 2018-2023
Share of ransom payers worldwide that recovered data 2018-2023
Annual share of companies worldwide that paid ransom and recovered data from 2018 to 2023

State of cyber security and awareness

Premium Statistic Corporate web security market size worldwide 2016-2026
Corporate web security market size worldwide 2016-2026
Revenue from corporate web security market from 2016 to 2026 (in billion U.S. dollars)
Basic Statistic Global use of cyber security training by employees 2022, by type
Global use of cyber security training by employees 2022, by type
Attendance of cyber security training by working adults worldwide in 2022, by type
Premium Statistic Share of global firms prioritizing cybersecurity 2022, by country
Share of global firms prioritizing cybersecurity 2022, by country
Share of organizations worldwide where cybersecurity is a priority according to board members as of August 2022, by country
Premium Statistic Share of companies with proper cybersecurity investments 2022, by country
Share of companies with proper cybersecurity investments 2022, by country
Percentage of organizations worldwide that have made adequate cybersecurity investments according to board members as of August 2022, by country
Basic Statistic Effectiveness of cybersecurity-related actions in global organizations 2022
Effectiveness of cybersecurity-related actions in global organizations 2022
Level of the effectiveness of cybersecurity-related activities in worldwide organizations as of June 2022
Premium Statistic Level of awareness of key cybercrime terms worldwide in 2019-2022
Level of awareness of key cybercrime terms worldwide in 2019-2022
Share of online adults worldwide who have understanding of key cybercrime terms from 2019 to 2022
Basic Statistic Global working adults understanding of basic e-mail security concepts 2022
Global working adults understanding of basic e-mail security concepts 2022
Awareness of fundamental e-mail security concepts among working adults worldwide as of 2022
Basic Statistic Global working adults understanding of advanced e-mail security concepts 2022
Global working adults understanding of advanced e-mail security concepts 2022
Awareness of advanced e-mail security concepts among working adults worldwide as of 2022
Basic Statistic Global biggest concerns of board members regarding cybercrime 2022
Global biggest concerns of board members regarding cybercrime 2022
Most concerning consequences of cyber incidents according to board members worldwide in 2022

Report on the topic

Go to report

Top Seller

Key figures

The most important key figures provide you with a compact summary of the topic of "Malware" and take you straight to the corresponding statistics.

Number of ransomware attempts worldwide
493.33m
Detailed statistics
Number of ransomware attempts per year 2017-2022
Country most targeted by ransomware
United States
Detailed statistics
Countries targeted by ransomware 2022
Share of firms that regained access to data after paying ransom
52%
Detailed statistics
Outcomes for organizations after ransom payments worldwide 2022

Country encountering most mobile malware infections
Iran
Detailed statistics
Countries with highest mobile malware encounter rate Q3 2022
Number of detected malicious installation packages for mobile
438,035
Detailed statistics
Volume of detected mobile malware packages as of Q3 2022
Most frequently detected mobile malware worldwide
RiskWare
Detailed statistics
Distribution of mobile malware worldwide 2022, by type

Share of global firms prioritizing cybersecurity
77%
Detailed statistics
Share of global firms prioritizing cybersecurity 2022, by country
Awareness level of the term “malware”
69%
Detailed statistics
Level of awareness of key cybercrime terms worldwide in 2019-2022
Share of companies worldwide implementing phishing simulations
35%
Detailed statistics
Global use of cyber security training by employees 2022, by type