Skyhigh Security research reveals a 200% increase in AI application traffic within the last year. This compares to a 23% increase in traffic to non-AI applications.

Microsoft Copilot is used by 82% of all Skyhigh Security customers within their enterprise. This is up from 18% last year for Microsoft Copilot usage by Skyhigh Security customers. Within the same timeframe, traffic to Microsoft Copilot increased 3,600x and data uploads to Microsoft Copilot increased 6,000x.

In response to simple, “naive” prompts, all LLMs tested generated insecure code vulnerable to at least 4 of the 10 common CWEs.

With naive prompts, ChatGPT scored a 1.5/10 secure code result.

Claude 3.7 Sonnet scored 6/10 secure code result using naive prompts.

Only 23% of organizations surveyed have implemented comprehensive AI security policies.

11% of files uploaded to AI applications include sensitive corporate content.

OpenAI’s GPT-4o had the lowest performance, scoring a 1/10 secure code result using "naive" prompts.

Ransomware cases increased year-on-year by 46% in March.

Malvertising attacks surged in 2024. Microsoft Threat Intelligence uncovered nearly one million devices globally implicated in a large-scale malvertising campaign in March

Despite regularly experiencing malware and phishing incidents, 90% of respondents expressed confidence in their organizations' security measures.

Claude 3.7 Sonnet scored 10/10 with security-focused prompts.

Stolen credentials are the second highest initial infection vector, making up 16% of investigations. This rise means stolen credentials were the second most common initial infection vector for the first time in 2024.

75% of all global cases took place in North America and Europe combined in March.

Asia took third place with 14% of attacks (83 attacks) in March.

AI now pulls indicators of compromise (IOCs) in as quickly as 10 seconds.

AI can automate 70% of all incident investigations and threat remediation activity.

"More than half" of the organizations surveyed confirmed they regularly experienced malware and phishing incidents.

Skyhigh Security research reveals a 200% increase in AI application traffic within the last year. This compares to a 23% increase in traffic to non-AI applications.

Financial (17.4%) was the #1 targeted industry.