42% of organisations reported phishing and social engineering attacks in 2024.

Phishing attacks across the APAC region saw a year-on-year increase of 30.5%.

VIPRE processed 7.2 billion emails globally, of which 858 million were spam.

Data exfiltration was the most common tactic used by ransomware groups to exert pressure (47%), followed by DDoS attacks (45%), data encryption (43%), and communicating with stakeholders/customers (34%).

The top apps for upstream activities to personal apps are Google Drive (95%), OneDrive (92%), LinkedIn (91%), Facebook (90%), Google Calendar (89%), Gmail (88%), ChatGPT (86%), Twitter/X (86%), Outlook.com (82%), and Google Gemini (78%).

Australia and New Zealand experienced a 30% rise in phishing attacks.

45% of Brits suspect their bosses may already be monitoring their work hours, productivity, location, or other activities without their knowledge.

Stolen credentials were the leading attack vector in 133 cyberattacks against publicly traded companies.

40% of states have enacted comprehensive privacy laws to better protect consumers.

47% of IT leaders say inbound email threats presents a big risk in their organization in terms of potential data loss

63% of employees in the UK say they frequently use IT policy workarounds to “get the job done” and save time or effort.

19% of CISOs are concerned about their organisation's ability to handle a cyber crisis because of a lack of realistic, stress-tested crisis simulations.

In 2024, advanced email attack volumes increased by 16% between Q1 and Q2, and by 20% between Q2 and Q3.

Almost one-third (31.1% of CISOs) believe that their company’s resistance to change is primarily driven by financial matters.

53% of employees in legal services say they frequently use IT policy workarounds to “get the job done” and save time or effort.

79% of organizations report that, while they have implemented significant automation, they lack a way to control, manage, and sustain it effectively.

Cyber risks have increased due to ongoing geopolitical conflicts and the rise of AI-powered malware, making it easier for attackers to access and deploy cyber threats.

26.1% of CISOs cited the rate of regulatory change as a challenge in implementing new or updated compliance frameworks.

49% of public-sector organisations indicate they lack the necessary talent to meet their cybersecurity goals, which is a 33% increase from 2024.

There was a 300% year-over-year increase in SaaS breaches between September 2023 and 2024.