Incidents involving Mimecast email customers accounted for 8% in healthcare.

Incidents involving Barracuda email customers accounted for 5% in healthcare.

Incidents involving Proofpoint email customers accounted for 6% in healthcare.

Business associates (including billing vendors, imaging firms, and outsourced IT providers) were involved in 17 of the 107 email-related breaches in healthcare. This represents 16% of all incidents.

41% of healthcare organizations are now classified as high-risk. This compares to just 31% last year.

79% of breached healthcare organizations have ineffective DMARC protection. This is up dramatically from 65% in 2024.

Cyberattacks are cited as the leading cause of critical workflow disruptions by 50% of healthcare organizations.

IT leaders estimate that only 5% of known phishing attacks in healthcare are actually reported by employees to security teams.

The sharp rise in Microsoft 365 email breaches in healthcare represents a 21% increase year-over-year.

The Episource breach affected 5.4 million individuals

81% of healthcare email breaches were classified as hacking or IT incidents.

Microsoft 365 environments now account for 52% of all healthcare email breaches. This represents a dramatic surge from 43% just one year ago.

The most common cross-industry applications for AI agents reported in the study include security operations and cybersecurity (46%).

64% of enterprises faced off-channel attacks in the past year.

40% of agentic AI early adopters saw a good return on strengthening security operations, compared to only 30% of average users.

59% of CISOs at enterprises fear voice phishing (vishing).

0% of surveyed enterprises simulate threats in encrypted messaging apps.

Only 27% of CISOs at enterprises simulate SMS phishing.

71% of CISOs at enterprises worry about SMS phishing (smishing).

Just 15% of CISOs at enterprises test voice phishing.