By 2028, hyperscalers are expected to operate $1 trillion worth of AI optimised servers, according to Gartner.

Organizations use an average of 9.6 genAI apps, up from 7.6 one year ago.

Nearly 60% of organisations state that geopolitical tensions have affected their cybersecurity strategy.

27% of respondents always practiced privacy by design.

80% of those in enterprises that always practiced privacy by design said their board adequately prioritized privacy.

72% of respondents report an increase in organisational cyber risks.

58% of employees in Netherlands say they frequently use IT policy workarounds to “get the job done” and save time or effort.

The median staff size among enterprises that always practiced privacy by design was 11, compared to eight among enterprises overall.

67% of IT leaders in the UK admit that employee mistakes in outbound emails result in more significant data loss than malicious inbound attacks.

There was a >50% increase in infostealer logs posted on the dark web in 2024 compared to 2023.

Government Services and Facilities had the highest OT protocol exposure, at 63%.

34.6% of CISOs are challenged by regulatory change management in satisfying regulatory requirements.

North America remained the most targeted region in December, accounting for 52% of ransomware attacks. The number of attacks in this region, however, decreased from 326 in November to 300 in December.

The industrials sector was the most heavily targeted sector, facing 24% of all ransomware attacks, totaling 1364, in December 2024.

17% of incidents involved voice phishing for initial access, indicating help-desk scams.

The number of active ransomware groups increased from 60 in 2022 to almost 100 last year.

When asked if they agree with the statement "We are concerned about data leakage as employees increasingly use GenAI tools," 43% of organizations surveyed they strongly agree, 39% said they agree, 10% said they neither agree nor disagree, 5% said they disagree, and 3% said they strongly disagree.

83% of organizations remediated all identified exploitable services, reducing their cyber risk.

Roughly 22.6% of CISOs rate their compliance program a 4 (“Adherence: measured with metrics to support audit and risk mitigation”), but only 5.3% believe their program is a 5 (“Optimized: continuous improvement and efficiency”).

More than one-third (37.2% of CISOs) said that no platform has demonstrated its reliability for Compliance as Code.