Diversion tactics (fraudulent invoices, fake payroll requests) accounted for 18% of BEC incidents in Q4 2025.

The DNSFilter network processed over 6 billion AI-related queries between October 2024 and September 2025.

DNSFilter blocked 44% more CSAM content in 2025 than in the previous year.

Deepfake attacks increased by 880% in 2024.

Humans detect AI-generated content only about 50% of the time.

Even when explicitly warned that synthetic bots are common, 33% of study participants still shared sensitive information.

Use of risk-ranking methods to determine where LLM-generated code is safe to deploy increased by 12%.

Application of custom rules to automated code review tools to catch issues unique to AI-generated code increased by 10%.

Credential phishing campaigns using .es domains increase 51 times year-over-year, with the .es top-level domain jumping from the 56th to the 3rd most-abused TLD.

Non-AI fraud increased by 195% by the end of 2025.

New domains make up over 65% of unique threat domains.

In Q4 2025, Business Email Compromise accounted for 51% of all email fraud cases.

Teams using attack intelligence to track emerging AI vulnerabilities increased by 10%.

Nearly 60% of organizations report fraudsters using compromised Personally Identifiable Information (PII) to bypass knowledge-based authentication (KBA).

In Q4 2025, CEOs and senior executives accounted for 50% of impersonation-based BEC emails and 41% of total BEC incidents.

One in five developers grant AI code agents unrestricted access to perform high-risk actions without human oversight.

Establishment of standardized technology stacks rose by more than 40%.

Nearly 30% more organizations now produce SBOMs to meet transparency requirements.

In some countries, over half of the population uses AI.

One study finds that 19 out of 20 popular "nudify" apps specialise in the simulated undressing of women.