In the last six months, use of reverse proxies to steal Microsoft 365 credentials surged by 139%.

44% of enterprises identify decision-making and approvals as a top bottleneck in workflows.

30% of organizations patch and then test to confirm that risk has been remediated

Time-to-exploit (TTE) is 24–48 hours for critical outbreaks, compared to 4.76 days previously.

Around a third of businesses (30%) conducted a risk assessment covering cyber security, in line with last year (29%).

Cyber security was considered a high priority for senior management in around seven in ten businesses (72%) and six in ten charities (60%).

27% of organisations say digital resilience plans and strategies are reviewed regularly by boards

41% of CIOs say incident response times have worsened.

30% of CIOs identify phishing as a dominant threat.

Nearly half of IT and security leaders expect agentic systems to drive the majority of attacks in the coming year.

Only 23% of IT and security leaders report full visibility into the AI agents operating in their environments.

Nearly nine in ten IT and security leaders express concern about meeting recovery objectives as agent-driven threats increase.

44% of enterprises report low or no confidence in their ability to detect AI agent-specific threats.

Ransomware victim post rates averaged approximately 150–200 per week in Q1 2026 and remained steady quarter-over-quarter and year-over-year.

62% of IT professionals report difficulty trusting AI recommendations.

IT professionals see their roles as 41% more complex compared to two years prior.

71% of IT professionals report needing to double-check AI outputs.

83% of IT professionals agree AI is only as effective as the data it can see.

67% of IT professionals report at least moderate fragmentation in their IT environments.

80% of IT professionals agree the IT role is shifting from operators to orchestrators.