Bitcoin sextortion scams account for 12% of malicious PDF attachments.

Speed of software development outpacing security priorities was also a concern for 71%.

37% of executives overall report increasing boardroom engagement in resilience-related discussions.

48% report needing to get better at defending against AI-powered cyber adversaries.

Just about one-third (32%) believe their organization is prepared for deepfake attacks.

Just 5% say quantum computing is a high priority for the near future.

Link usage dropped by 42% in Q1 2025 compared to Q1 2024.

Callback scams now account for nearly one in five attempts.

Forty percent are not aware of their company’s plans regarding quantum computing.

44% of executives are expecting deepfake attacks.

41% of organizations say they are experiencing a significantly higher volume of attacks.

24 percent don’t know how their organization views quantum computing within its current technology or innovation strategy

51% of respondents say their organizations have a Cybersecurity Incident Response Plan (CSIRP) applied consistently across the entire enterprise. This is up from 46% in 2024.

49% measure success of vulnerability remediation by mean time to remediation.

Link usage accounted for 75% of phishing attempts in Q1 2024.

1 in 5 organizations take four or more days to fix critical vulnerabilities.

Among those who have encountered issues with AI-generated code, 92% reported insecure code as a concern.

76% of respondents named application security posture management (ASPM) as their top investment focus for 2025.

50% of mobile devices are running on outdated operating systems.

Regarding preferred methods for PQC migration and security measures, 20% selected none or other methods, which could include larger asymmetric key sizes or following guidelines from federal cybersecurity institutions