In 2025, one in three ransomware claims triggered business interruption coverage.

Ransomware claims that triggered business interruption coverage averaged $510K in severity, compared to $168K for ransomware claims without business interruption.

67% of UK IT decision makers report having a defined exit strategy if their primary AI provider were to restrict service access.

43% of UK organisations with a defined exit strategy still expect a moderate or significant impact on business continuity if their primary AI provider restricts service access.

87% of UK IT decision makers already use agentic AI systems, compared with 91% in France and 90% in Germany.

IT decision makers say the most valuable open source benefits for building trust in AI over the next three years are transparency and easier auditability (87%), more customisation for business and regulatory needs (82%), and greater control over how AI is built and where it runs (80%).

Distributed surges average 21.3 days of lead time before disclosure.

Concentrated hosting surges average 7.5 days of lead time before disclosure.

Over 50% of fraud prevention, risk, and compliance professionals say account handover fraud, where control of a verified account shifts to someone else without authorization, is more difficult to detect than other types of fraud.

Access to healthcare systems can be purchased for as little as $2,000 to $50,000.

Manufacturing accounted for more than one in four of all global cyberattacks in 2025 and had been the most targeted industry for five consecutive years.

Ransomware accounted for about 90% of total incurred losses in Resilience's manufacturing insurance portfolio over the past five years.

Software vulnerability exploits account for approximately 13% of incurred losses in Resilience's manufacturing portfolio.

Machine identities outnumber human users by 25:1 in Microsoft 365 environments.

99% of healthcare and manufacturing organizations are implementing or planning microsegmentation.

60% of healthcare and manufacturing organizations cite regulatory compliance as a driver for pursuing microsegmentation.

Nearly half of healthcare and manufacturing security leaders experienced a lateral movement attack in the past year.

44% of healthcare and manufacturing security leaders cite comprehensive device visibility as their most critical capability gap.

On average, there are 4 business builders for every professional software developer in enterprises.

94% of state CISOs are involved in developing Generative AI security policies.