33% of U.S. adults have experienced identity theft — here's how to avoid being next
25 Jun 2026 · 3 min read · Comments
This article contains affiliate links. If you buy through them, we may earn a commission — at no extra cost to you.
One in three American adults has experienced identity theft. That's not a worst-case projection — it's the current baseline. Understanding how it happens is the first step to not joining that statistic.
Multiple independent studies consistently place the lifetime rate of identity theft among US adults at approximately 30–33%. With around 260 million American adults, that's roughly 85 million people. The FTC received 1.13 million identity theft reports in 2024 alone — a fraction of actual cases, since most victims don't report.
Identity theft causes an average of $12.7 billion in annual losses in the US, per Experian's 2024 data. For individual victims, the median time to resolve identity theft is measured in months — involving credit bureau disputes, police reports, creditor calls, and documentation of every fraudulent account.
How identity theft actually happens
How to reduce your risk significantly
- Unique passwords: credential stuffing only works when passwords are reused — a password manager eliminates this
- Two-factor authentication: a compromised password isn't enough to access your accounts
- Data broker opt-outs: Incogni removes your personal information from the databases that enable social engineering
- Breach monitoring: alerts the moment your credentials appear in a new leak, so you can act before anyone uses them
- Check haveibeenpwned.com: free instant check of which breaches already include your email
None of these are complicated. Together, they close the main pathways that account for the vast majority of identity theft cases. The one-third of Americans who have been victims mostly weren't doing anything reckless — they were using the internet normally, with default protections that turned out to be insufficient.
Frequently asked questions
What is a data broker and why does it matter for identity theft?+
Data brokers legally aggregate and sell personal information — your name, address, phone, relatives, and more. This data is the raw material for social engineering attacks and targeted phishing, which are primary pathways to identity theft.
How do I remove myself from data broker databases?+
You can manually opt out of each broker individually, which takes many hours and requires re-submission as brokers re-add your data. Services like Incogni automate this process — sending removal requests to hundreds of brokers and monitoring for re-addition.
How common is identity theft in the US?+
Approximately 33% of US adults have experienced identity theft, per research from IPX1031 and Demandsage. The FTC received over 1.13 million identity theft reports in 2024. Losses totalled $12.7 billion that year, according to Experian.
