30% of firewall rules are completely unused.

MSPs respond to over 100 security incidents per year.

Healthcare ranked third in June 2025 with 42 ransomware attacks, nearly doubling from 22 in May.

62.6% of firewall rules lack any owner or documentation.

More than 10% of firewall rules are redundant or shadowed.

Security specialists make up 8–20% of the average MSP’s staff.

MSPs manage an average of 50 clients.

50% of MSPs cite limited automation as their biggest barrier to scaling.

42% of MSPs now rely on MITRE ATT&CK Evaluations as their top vendor assessment resource.

Akira was the second most active threat group in June 2025, with 31 attacks, rising from fourth place in May.

34% of enterprise firewalls fall short at critical levels.

95% of application objects and 82% of service objects show zero usage.

94% of MSPs are actively seeking a unified cybersecurity platform

Global ransomware attacks decreased by 6% month-on-month in June 2025, with 371 cases recorded.

Qilin saw a significant rise in Q2 2025 with 151 attacks, up from 95 attacks in Q1.

SafePay dropped to fourth place of most active threat groups in June 2025 with 27 attacks.

Europe experienced an 8% drop in June 2025, accounting for 21% of ransomware attacks (79 cases). This was fewer than half the number recorded in North America.

South America had a 4% share of ransomware attacks (15 cases) in June 2025.

Q2 2025 as a whole experienced a 43% decline from Q1, with 1180 attacks in Q2 compared to Q1.

June 2025 was the fourth month in a row that ransomware attacks dropped globally.