New Yorkers are increasingly targeted in "mega-breaches" by cyber criminals, according to figures released by the state’s attorney general.
Reported data breaches in the state tripled between 2006 and 2013, with five of the 10 largest breaches occurring within the past three years, according to the stats.
Eric Schneiderman, attorney general of New York State, said: "In just eight years the number of victims in New York has exploded.
"Over 22 million personal records have been exposed since 2006, jeopardising the financial health and wellbeing of countless New Yorkers, and costing the private and public sectors in New York – and around the world – billions of dollars."
Last year data breaches were said to cost entities doing business in New York at least $1.37bn, with hacking comprising 40% of breaches.
Hackers were thought to be mostly motivated by the black market value of personal data, with records said to be worth up to $45 apiece.
The report also notes a correlation between the increasing affordability of big data and the increased risks of cyber crime.
"While the defensive measures we recommend for individuals and businesses can be helpful, the scope of the data breach problem detailed in this report demands a systemic response," Schneiderman added.
Insider threat was said to have become an increasingly problem over the past eight years, becoming most prevalent last year.
Figures that did not meet the barrier for compulsory notification of the attorney general, which must include personal information and details of bank accounts, credit cards, debit cards, social security or driving licences, were not included in the report.