North America accounted for 40.7% of malicious bot transactions, followed by APAC (25%), EMEA (19.1%) and Central and Latin America (15.2%).

31% of internal audit functions provide fraud risk assessments to leadership.

7% of organizations don't know how often AI is making autonomous infrastructure changes at all.

Only 3% of organizations have automated, machine-speed controls governing AI behavior.

72% of organizations experience at least one mobile app security incident in the past year.

79% of organizations are evaluating or deploying agentic AI, yet only 13% of organizations feel highly prepared for it.

Organizations most confident in their AI deployments experience more than twice the incident rate of less confident peers.

In the second half of 2025 the average Radware customer experienced more than 25,351 network-layer DDoS attacks, averaging 139 attacks per day.

66% of incidents involve the supply chain or a third party, up from 45% in 2024.

3% of CISOs are actively consolidating their security stack due to AI.

99% of API vulnerabilities are remotely exploitable.

Enterprises deploying AI systems with excessive permissions experience 4.5x more security incidents than enterprises that enforce least-privilege controls.

90% of ransomware incidents exploit firewalls through a CVE or a vulnerable account.

The fastest ransomware case observed, involving Akira ransomware, takes just three hours from breach to encryption.

11% of detected vulnerabilities have a known exploit.

The most widely detected vulnerability is CVE-2013-2566, which dates to 2013.

96% of incidents involving lateral movement end with the release of ransomware.

In 2025, 43% of CISA KEV additions were API-related, making APIs the single largest exploited surface in that dataset.

In 2025, 36% of AI-related vulnerabilities involved APIs (786 of 2,185 AI-related vulnerabilities).

In 2025, 14% of published AI vulnerabilities were MCP-related (315 MCP-related vulnerabilities).