The number of publicly disclosed victims saw a 25% increase from the previous year (between April 2024 and March 2025)2. This follows an 81% surge in the period before that.

A significant minority (37%) of manufacturing and automotive decision-makers foresee AI causing network costs to rise.

Less than half (49%) of SMBs intend to invest in cybersecurity technology.

Traffic to threat sites that include the word "travel" spikes between May and June each year.

Common terms used in malicious sites purporting to be legitimate travel sites include "Delta," "Spirit," "beach," "package," and "tour;" the top-trafficked vacation scam sites include the word "Mexico."

On May 8, 2024, traffic to threat sites that include the word "travel" peaked, marking 256% over the average between 2023 to April 2025.

On June 12, 2024, 3.46% of all traffic to domains with "vacation" in their name was blocked, which was the highest-ever percentage.

Only 5% of enterprises have implemented quantum-safe encryption.

More than half (52%) of SMBs said they are not very confident in their ability to manage a cybersecurity threat.

46.4% of organisations report that substantial portions of their encrypted data could be compromised.

In 2025, the largest spike in traffic to threat sites with travel terms in their name occurred on April 28, marking a 116% increase over the average since 2023.

Traffic to malicious sites with "travel" in the domain name was 235% higher between May and July 2024 than the overall average between 2023 and April 2025

A majority (59%) of SMBs said their business needs to improve its cybersecurity and compliance in 2025.

Over half of SMBs (52%) surveyed reported not having the resources to implement better security technology.

Only 38% of organisations feel “very prepared” for quantum threats.

Only 19.2% of organisations claim they are “extremely prepared” for quantum threats

69% of organisations recognise the risk that quantum computing poses to current encryption standards.

69% of organisations believe quantum computers will break current encryption within five years.

More than half (52%) of SMBs said they are not very confident in their ability to manage a cybersecurity threat.

71% of respondents anticipate business disruptions from cyber incidents within the next 12 to 24 months.