Cyberattacks such as data breaches, ransomware, and IT disruptions were identified as the leading cyber risks affecting businesses.

50% of IT leaders prioritize Advanced Threat Protection (ATP) and malware detection for email security investment.

5.64% of sensitive data input into GenAI tools was sensitive code, like Access Keys and proprietary source code.

39% of IT leaders prioritize human error prevention / DLP for email security investment.

79% of private sector organizations reduced exploitable services, while SLTT (State, Local, Tribal, and Territorial) entities experienced a 95% increase in exploitable services over the analysis period.

Cisco-related vulnerabilities accounted for 9.8% of all observed KEVs.

84% of organizations say a lack of transparency in applying AI applications within business processes is causing regulatory compliance issues.

LockBit was responsible for a significantly lessened proportion of R&DE activity in 2024, due to early-2024 law enforcement (LE) disruption operations3. In 2023, LockBit accounted for over 820 separate incidents and approximately 20% of global R&DE activity4. In Q4 2024, LockBit accounted for just 1% of global R&DE5. LockBit added 175 victims to its leak site in May 2024.

52% of surveyed executives note that the fragmentation of security solutions is limiting their ability to deal with cyber threats.

While 94% of organizations are using genAI apps, more than 99% of organizations have controls in place to mitigate the risks that genAI apps pose.

10% of businesses were concerned about the impact of new technologies on their operations.

41% of executives say security fragmentation has driven up procurement costs.

28% of businesses said sovereignty is related to data portability.

45.77% of sensitive data input into GenAI tools was customer data, such as billing information, customer reports, and customer authentication data.

Traditional API security systems can take 5-10 minutes to detect and remediate threats.

The Irish Data Protection Commission (DPC) has issued a total of €3.5bn ($3.7bn) in fines since May 2018, which is more than four times the amount issued by the next highest regulator, the Luxembourg Data Protection Authority.

CISOs with good board relationships are more likely to be given the ability to pursue use cases for generative AI, such as creating threat detection rules (43% versus 31% of other CISOs), analyzing data sources (45% versus 28% of other CISOs), incident response and forensic investigations (42% versus 29% of other CISOs), and proactive threat hunting (46% versus 28% of other CISOs).

19% of ransomware attacks against energy and utilities sector were conducted by Hunters International in H2 2024.

The most active ransomware groups targeting healthcare in 2024 were: Everest: 25% of attacks focused on healthcare organisations, INC Ransom: 21.7% of attacks focused on healthcare organisations, Monti: 20.8% of attacks focused on healthcare organisations, Rhysida: 18.5% of attacks focused on healthcare organisations, BianLian: 15% of attacks focused on healthcare organisations, Qilin: 14% of attacks focused on healthcare organisations, and Black Suit: 14% of attacks focused on healthcare organisations.

Cyber Hygiene (CyHy) service enrollment increased by 201% from August 2022 to August 2024. The highest enrollment increases were observed in the following sectors: communications (300% increase), emergency services (268% increase), critical manufacturing (243% increase), water and wastewater systems (242%).