91% of organizations experience delays in vulnerability remediation.

84% recognise the role of the AppSec leader as more important now than ever. More than 84% believe their role is more important now than it was a few years ago. This increased importance is linked to factors such as growing challenges from AI-generated code and open source software.

63% still report moderate or significant friction in getting developers to adopt security team feedback, despite increased DevSecOps collaboration.

Only 29% of executives surveyed say they are reluctant to implement AI tools and technologies because of cybersecurity ramifications.

More than half of darknet posts involved leaked databases

83% of malicious Microsoft documents contain QR codes designed to take users to phishing websites.

Only 7 percent of the poll respondents say they have a strong understanding of the new NIST standards.

74% of respondents identify a lack of understanding of every potential source of vulnerability as their biggest challenge to effective vulnerability management.

66% of respondents say their organizations have fully or partially implemented Secure Access Service Edge (SASE).

As many as 20% of organizations experienced at least one attempted or successful account takeover (ATO) incident per month.

92% of the emails processed by VIPRE were spam.

Callback phishing accounted for 16% of phishing attempts in Q1 2025.

SVG files are used in 34% of phishing attacks as favoured attachments.

PDF attachments are used in 36% of phishing attacks as favoured attachments

A cryptanalytically relevant quantum computer capable of breaking common public key schemes is expected by 2030.

Regarding preferred methods for PQC migration and security measures, most organisations (63%) showed a preference toward a hybrid approach, which combines classical and post-quantum cryptography.

Regarding preferred methods for PQC migration and security measures, 12% intend to use Quantum Key Distribution (QKD) as an additional security measure.

86% of organizations are increasing their security spending in 2025.

61% of organizations still measure success of vulnerability remediation by the number of vulnerabilities resolved.

54% measure success of vulnerability remediation by fewer breaches.