1 in 10 (which is 10%) workers say they have been using old work logins for more than four years.

Only 11% of CISOs report being adequately staffed. The remaining 89% describe their teams as stretched thin or understaffed

Malicious Copy Paste (T1204.004) did not make the top 10 technique list.

28% of workers gained access to former employer accounts via co-workers still at the company.

59% of ransomware non-victims had implemented an email security solution.

32% of ransomware victims paid the attackers to recover or restore data.

15% of workers say they are actively using login credentials from a previous job.

41% of those who paid a ransom failed to recover all their data.

27% of ransomware incidents involved attackers stealing data.

A third (which is approximately 33%) of workers share current employer passwords to help someone else save money.

Fewer than half (47%) of ransomware victims had implemented an email security solution.

27% of ransomware incidents involved attackers publishing data.

29% of ransomware incidents involved infecting devices with other malicious payloads.

Email is a primary attack vector for ransomware, with 71% of organisations that suffered an email breach also being hit with ransomware.

Security budget as a percentage of IT spend declined from 11.9% to 10.9%. This decline breaks a five-year upward trend.

50% of law firms cited phishing as the top cybersecurity concern, a new category this year, surpassing ransomware and user behavior.

More than half of CISOs are reporting flat or shrinking budgets.

Two new cloud-related techniques - Data from Cloud Storage and Disable or Modify Cloud Firewall - have entered Red Canary's top 10 techniques for the first time.

57% of the organisations surveyed were affected by ransomware.

External assessments and tabletop exercises are now tied with client requirements in the legal industry as the top drivers of security investment, both at 53%