Just over half of organizations now use AI for threat detection and real-time monitoring, up from 46% the prior year.

A bot attack briefly pushed identity theft rates at one major auto-lending partner to nearly 35%.

72% of financial institutions are only partially aware of which vendors use AI, and 0% feel extremely confident managing vendor AI.

34% of healthcare leaders cite insufficient internal staff or specialized security resources to implement and manage microsegmentation as a barrier.

Financial institutions using manual TPRM processes are 71% more likely to receive exam findings.

60% of CISOs engage with the full board.

40% of healthcare leaders cite concerns about disrupting clinical workflows or patient care during deployment as a barrier to implementing microsegmentation.

53% of Americans enable two-factor authentication.

64% of IT professionals say unified observability across all layers of the IT stack is very important to their team's success

Wireless vulnerabilities increased by a combined 60% since the start of 2024.

Wi‑Fi accounted for over 60% of disclosed wireless CVEs.

Roughly 1 in 5 of all device identification events in 2025 involved a VPN connection.

Currently, 30% of senior corporate security leaders say Advanced Persistent Threat detection is largely run with agentic AI; this rises to 62% in two years.

Among the exposed corporate credentials analyzed, 80% contain plaintext passwords.

Passwords containing 'sweet', 'cookie', 'candy', 'cake', or 'pie' appear 5.7 million times in exposed credentials.

Vulnerability disclosures increased by 12% between January 2025 and December 2025.

In 2025, one in three vulnerabilities (33%) had publicly available exploit code.

In February 2026, 629 ransomware attacks were reported globally, reflecting a 32% decrease year over year.

96% of organizations admit they have incomplete protection against human risk.

Only 21% of U.S. school districts feel most confident addressing student identity threats.