Small businesses incured at least $131 billion in losses from fraud, scams, and ransomware last year.

Average losses for small businesses ranged from nearly $60,000 for payment fraud to more than $90,000 for email compromise.

47% of organisations concentrate responsibility for managing digital resilience within a single function rather than sharing it across the C-suite

25% of organisations across surveyed markets say their responses to digital disruption largely go to plan

15% of organizations have first-hand supplier visibility.

95% of enterprises provide cybersecurity hygiene training.

77% of organisations experienced a cybersecurity incident in the past year.

34% say AI has created new security blind spots.

37% of CIOs deploy AI bias processes.

44% of CIOs are turning to managed services to fill critical security gaps.

Over a quarter of CIOs report AI as a significant source of risk, placing it on par with malware, ransomware and phishing.

33% of CIOs identify malware and ransomware as dominant threats.

VPN and remote access systems account for roughly one-third of initial access vectors in healthcare cyberattacks.

Activity from the Qilin ransomware group declined by 25% and activity from the Akira ransomware group declined by 22%.

90% of organizations say they can recover from a cyber incident within their recovery time objectives (RTOs).

38% of organizations that experienced a cyber incident report extended downtime of critical systems.

Full data recovery is 40% among organizations reporting increased cybersecurity budgets versus 16% among organizations without increased budgets.

Among organizations hit by ransomware where operations or data were affected, 44% recovered less than 75% of affected data.

75% of senior cybersecurity decision makers report legal and communications issues slow down decision making during incident response.

28% of CIOs identify AI itself as a threat.