66% of CISOs say they would consider paying a ransom to prevent data leaks or restore systems. This figure rises to 84% in Canada and Mexico.

66% of CISOs report facing excessive expectations.

Boardroom alignment with CISOs has declined from a high of 84% in 2024 to 64% this year.

A decisive shift towards memory-safe languages has been adopted by 80.4% of companies.

92% of organisations attribute at least some data loss to departing employees. This is up from 73% last year.

74% of respondents stated that phishing is the leading threat, with impersonation of executives or trusted colleagues being the most common tactic.

58% of CISOs say they are unprepared to respond to a material cyberattack in the next 12 months.

64% of security leaders still rely heavily on manual detection, triage, and investigation processes.

68% of attacks originate from email.

Financial service firms globally experience up to 300 times more cyberattacks annually than other industries.

88% of security leaders say alert volume increased in the past year.

In the Middle East, unauthorised GenAI is the top insider concern (31%).

100% of Europe's top financial firms suffered supplier breaches.

More than three-quarters of organisations (76%) report some level of unapproved Generative AI (GenAI) usage.

Government organisations are bracing for the steepest rise (73%) in insider threats.

Nearly half of security leaders reported alert volume spikes over 25%.

A single day's disruption in payments by major banks could affect 38% of network banks globally

87% of security leaders are deploying, piloting, or evaluating AI-powered SOC tools.

60% of AI adopters have cut investigation times by at least 25%.

The majority (54%) of organisations expect insider threat growth to continue.