OpenAI is present in 96.0% of organizations, with Anthropic present in 77.8% of organizations.

17% of prompts include copy/paste and/or file upload activity.

Agent tools Manus, Lindy, and Agent.ai are present in 22%, 11%, and 8% of organizations respectively.

Among the most active chat tools observed, OpenAI accounts for 67% of prompt volume.

Detected sensitive-data events are led by secrets and credentials (47.9%), followed by financial information (36.3%) and health-related data (15.8%).

87% of defenders expect to increase AI use, primarily to replace legacy detection and response tools.

71% of defenders set aside important security tasks at least two days per week.

69% of organizations use more than 10 detection and response tools.

A fragmented IT infrastructure leaves 60% of professionals unable to protect against rapidly evolving threats.

99.6% of organizations are moving toward AI.

90% of leaders see productivity gains from AI.

Only 58–60% of security teams report full or near-full visibility across endpoints, on-premises networks, cloud environments, and identities.

44% of defenders say they are losing the battle to prioritize real threats.

Organizations receive an average of 2,992 security alerts per day, down from 3,832 the year prior.

63% of defenders want AI agents to handle alert triage and investigations.

40% of organizations believe they are AI mature, but only 22% possess the objective IT foundation required to scale AI safely.

40% of IT leaders self-assess as mature in their AI practices, yet only 22% meet objective standards for leading AI readiness.

63% of security alerts go unaddressed.

39% of organizations use more than 20 detection and response tools.

61% of organizations report the use of unsanctioned AI tools, creating significant visibility and governance gaps.