68% of healthcare leaders cited third-party software as the top risk.

Just 13.3% of healthcare pentest findings qualify as “serious”. This ranks healthcare 6th-best out of 13 industries.

71% of healthcare leaders cited GenAI as the top risk.

The 2025 breach at DaVita compromised over 900,000 patients' personal and clinical data.

37% of healthcare organizations resolve critical findings in business-critical assets within four to seven days.

14% of healthcare organizations resolve critical findings in business-critical within eight to 14 days.

43% of healthcare organizations resolve critical findings in business-critical assets in one to three days.

Healthcare’s median time to resolve serious pen test findings was 58 days. This ranks healthcare 10th of 13 industries. Hospitality led with 20 days.

Nearly 40% of healthcare SLAs require serious findings in business-critical assets to be fixed within three days. Another 40% require resolution within four to 14 days.

68% of healthcare leaders cited third-party software as the top risk.

Miami International's fraud rate decreased compared to last year.

Naples-Capodichino International (Italy) posted the steepest drop in fraud attempt rates at -57%.

Cairns, Australia, saw a +230% increase in fraud pressure.

Dallas Love Airport saw a -69% drop in fraud pressure.

Global airline fraud rates dropped 30% year-over-year in the first half of 2025, to 0.25%, meaning one fraud attempt occurred in every 400 bookings.

EuroAirport Basel Mulhouse Freiburg saw a drop of approximately -50% in fraud attempt rates.

Auckland Airport (New Zealand) experienced a +50% increase in fraud pressure.

Chicago Midway saw a -67% drop in fraud pressure.

San Diego International saw a -68% drop in fraud pressure.

Bangkok's Suvarnabhumi Airport rose 47% in fraud pressure.