43% of internal audit leaders cite insufficient time to dedicate to AI-specific risk management efforts.

20% of incidents in the Automotive and Smart Mobility are massive-scale events.

78% of enterprises fund AI security through existing security budgets.

Approximately 98% of observed wireless networks rely exclusively on Pre-Shared Key (PSK)–based authentication.

58% of large AppSec teams (50 members or more) that use SCA cite the inability to verify if vulnerabilities are exploitable in production as a major pain point.

46% of security teams struggle to correlate Model Context Protocol (MCP) actions with execution outcomes.

70% of global ransomware activity targets English-speaking countries.

13% of CISOs and AppSec executives use agent-based deployment.

35% of internal audit functions report extensive use of AI in audit planning and 33% report occasional use.

Nearly 48% of incidents include browser-based activity.

87% of intrusions involve activity across multiple attack surfaces.

44% of CISOs acknowledge their AI security posture lags behind the rest of their security program.

19% of internal audit functions report extensive use of AI in fieldwork and 39% report occasional use.

43% of organizations say AI makes infrastructure changes without human oversight at least monthly.

94.4% of Web DDoS attacks measured under 100,000 requests per second.

In June 2025, BAUXITE deployed two custom wiper malware variants against Israeli targets.

16% of CISOs and AppSec executives want to consolidate the AppSec toolchain into one platform.

21% of enterprises plan to introduce a dedicated AI security budget.

46% of internal audit leaders cite limited financial budget as a barrier to AI-specific risk management efforts.

92% of security professionals say automation reduces their team's mean time to respond.