86% of organizations have expanded or increased their use of AI within Security Operations (SecOps).

95% of manufacturers have invested in, or plan to invest in, AI/ML over the next five years.

Nearly three-quarters (72%) of organizations have revised their cybersecurity strategies over the past year due to AI.

Manufacturers investing in generative and causal AI increased 12% year-over-year.

37% of security professionals fear AI-related regulations are a financial penalty waiting to happen.

82% of organizations say they have shifted toward a prevention-first security strategy in response to AI-powered attacks.

32% of security professionals cite difficulties in keeping up with increasing AI-related policies.

76% of SecOps teams state that AI makes their roles easier.

49% of manufacturers planning to use AI for cybersecurity in 2025. This is up from 40% in 2024 for using AI for cybersecurity

A scan of publicly accessible GitHub repositories found that the number of OpenAPI specifications decreased from 2,879 in 2023 to 2,160 in 2025.

A vulnerability in the Irish Government COVID-19 Vaccination Portal, present since December 2021, was disclosed in March 2024 and exposed the vaccination records of approximately one million residents.

In the last three years, there have been 79 documented API breaches, significantly more than the 22 cloud-related breaches in the same period, indicating APIs are a growing focal point for attackers.

Cumulatively, over 1.6 billion records have been exposed since 2017 due to API breaches.

Approximately 70% of AI data breaches have no secondary breach vector, deviating from typical multi-vector API breaches.

Despite the rise in API security incidents, the number of breaches dropped from 18 to 93.

90% or more of generative AI usage falls into the "shadow AI" scenario, meaning it occurs without the knowledge of central IT and information security teams.

Analysis of FireTail's customer data revealed that nearly 39% of all API requests resulted in HTTP 429 (Too Many Requests) responses, suggesting potential abuse. Of these 429 responses, about 20% were linked to bot traffic.

TracFone Wireless faced a $16 million settlement and a comprehensive consent decree due to API vulnerabilities that exposed customer data.

Nearly 60% of organizations report inadequate visibility into the APIs supporting their AI systems.

97% of organizations believe AI introduces unique security challenges.