Within organizations that track AI identities, 57% use the same system as for human identities.

29% of organizations already use AI agents to manage security-related help desk tickets including password resets and VPN access.

65% of organizations intend to use AI agents to manage security-related help desk tickets within the next year.

61% of organizations have revoked or rotated AI agent credentials due to suspected exposure.

It takes an average of 14 hours to detect a compromised AI agent.

More than four in five organizations say a single compromised credential could affect multiple major systems.

Fewer than half of organizations report full visibility into where AI agent credentials are stored.

Exploited vulnerabilities rose 43% in the first three months of 2026.

Vulnerabilities added to CISA's Known Exploited Vulnerabilities catalog increased 43% in Q1 2026 compared with Q4 2025.

23% of Chief Information Security Officers cite lack of AI security expertise as their top barrier.

42% of Chief Information Security Officers say insufficient focus on AI governance is their primary concern about the future policy environment.

One in three cybersecurity leaders feel confident that their IP, identities, or infrastructure are adequately protected during high-risk work.

Between 20% and 27% of C-suite leaders believe secure environments are ready when needed, while only 5.3% of VPs of Cybersecurity believe the same.

56% of consumers encounter scam attempts at least monthly.

52% of scam victims lose money, more than twice the 2025 rate.

Banking or payment scams account for 11% of the scams causing the most damage.

60% of victims aged 65–74 report financial loss.

93% of consumers say it matters that their provider offers cyber security.

Fake invoice scams account for 20% of the scams causing the most damage.

43% of consumers say they would use AI for cyber security help.