New Securities and Exchange Commission breach disclosure rules resulted in a 60% increase in disclosures in 2024, however, less than 10% of the notices included details of the event.

40.4% of CISOs are challenged by the lack of a centralized system as a challenge in satisfying regulatory requirements.

Only 28% of respondents said their organisations informed law enforcement when they were hit by ransomware.

74% of the breach organisations did not list an attack vector in a breach notice.

Organizations enrolled in CISA’s Vulnerability Scanning service saw a steady decline in KEVs on their networks.

Newly published API endpoints are discovered by attackers in a mere 29 seconds.

The most commonly used keyboard walk pattern was “Qwerty,” which appeared over 1 million times in a list of compromised passwords.

Dual CISOs at large organizations earn an average total compensation (including equity) of $1 million, whereas those who only take on partial IT oversight are closer to the average of traditional CISOs who manage none of the IT functions ($653,000).

There was a 32.16% increase in healthcare ransomware attacks from 2023 to 2024.

66% of IT leaders in France admit that employee mistakes in outbound emails result in more significant data loss than malicious inbound attacks.

There were 66 ransomware healthcare victims in Q1 2024, 87 healthcare victims in Q2 2024, 99 healthcare victims in Q3 2024, and 121 healthcare victims in Q4 2024.

At least 196 compromises and more than 1.2 billion victim notices could have been prevented with better cyber practices.

Only 26% of IT leaders believe it drives significant improvements in employee behavior to safeguard data, and nearly half (46%) acknowledge that there is room for improvement

Gartner predicts spending on Overall IT to reach $5.617 trillion in 2025, a 9.8% increase from $5.114 trillion in 2024.

The manufacturing sector (32%) was the most targeted industry sector for email-based attacks.

Gartner predicts that Spending on AI-optimised servers will double that of traditional servers in 2025, reaching $202 billion.

74% of Chief Information Security Officers (CISOs) reported that their organisations are increasing annual budgets for crisis simulation exercises in 2025.

57% of British employers feel uneasy about remote work due to the inability to observe employees in person.

The proportion of large organisations reporting insufficient cyber resilience has nearly halved.

47% of organisations cite adversarial advances powered by generative AI (GenAI) as their primary concern.