65% of organizations use risk-based prioritization for identity attack paths.

The typical organization ultimately resolves 86% of its high-risk findings, but only 52% of high-risk findings are remediated within a five-year time frame.

Having no MFA at all accounted for approximately 8% of incurred losses in Resilience's manufacturing portfolio.

Zero of the 11 large language models tested earned a passing score on the cyber defense benchmark.

Anthropic Opus 4.6 found three times more attack flags than Google Gemini 3 Flash in the benchmark.

89% of monitored SMBs have at least one user with confirmed credential compromise at any given time.

12% of CISOs report testing their endpoint protection detection capability within the last three months

90% of organizations increased their IT security budgets in 2026, with an average increase of 5.6%.

55.0% of consumers are not comfortable with AI agents making purchases on their behalf

84% of healthcare organizations include cybersecurity requirements in procurement processes.

56% of healthcare organizations reject devices due to cybersecurity concerns, up from 46% in 2025.

61% of IT leaders report a rise in cybersecurity threats linked to AI.

41% of organizations cite difficulty prioritizing attack paths as a challenge to operationalizing Identity APM.

97% of CISOs say they are confident their endpoint protection would detect attacker behavior

There were 7,831 confirmed ransomware victims globally, a 389% year-over-year increase from approximately 1,600 victims previously.

More than 40% of people who lost money to a scam on social media said it started when they ordered something they’d seen in an ad

$1.1 billion, more than half the money reported lost to scams initiated on social media, was to investment scammers.

Nearly 60% of people who reported losing money to a romance scam in 2025 said it started on a social media platform.

One in three people who reported losing money to a job or business opportunity scam in 2025 said it started on social media.

Just over four in ten businesses (43%) and around three in ten charities (28%) reported having experienced any kind of cyber security breach or attack in the last 12 months.