69% of consumers say they would switch providers based on their security offering.

51% of consumers are willing to pay for scam protection.

Only 29% of organizations are prioritizing sovereign AI in a concrete, near-term way.

Among undisclosed ransomware attacks in Q1 2026, Qilin led with 339 attacks (16%), The Gentlemen 200 attacks (9%), and Akira 190 attacks (9%).

MURKY PANDA deployed an operational relay box network across more than 150 endpoints in 36 countries, targeting 340 organizations across more than 30 sectors.

423 financial services organizations appeared on dedicated leak sites, marking a 27% year-over-year increase.

44% of middle market companies define roles and responsibilities for AI decision-making.

43% of CISOs report Employee Awareness Training is the top-ranked challenge for ransomware mitigation.

8% of Americans aged 65 and older say they are very comfortable using financial apps.

34% of Americans cite credit card fraud as their top concern.

54% of Americans aged 35 to 44 are concerned about peer-to-peer scams.

51% of Americans aged 35 to 44 are concerned about deepfakes.

More than half of Americans under 35 are concerned about deepfake scams.

PRESSURE CHOLLIMA conducted the largest financial theft ever reported: $1.46 billion in cryptocurrency via a trojanized supply chain compromise.

17% of Americans aged 65 and older agree that the financial institution bears responsibility for fraud.

15% of organizations leave WordPress admin panels internet-facing.

Organizations with weak NHI management are 22% more likely to experience financial theft.

Midmarket organizations average 56 days to remove exposures, nearly four times slower than smaller enterprises.

67% of ransomware victims confirmed their ransomware incident stemmed from an identity attack.

Across more than 750 major cyber incidents investigated in 2025, Unit 42® found that 87% required evidence from two or more distinct sources to establish what happened.