49% of organizations include third-party applications in their current patching process.

Automation is the top patch modernization investment priority for 76% of organizations in 2026.

More than 60% of organizations rely on manual processes in at least part of the patch lifecycle.

Downtime costs an organization $95 million in lost revenue annually, nearly double the level in 2024.

81% of technology leaders cite customer loss as a consequence of downtime.

89% of tech leaders cite the need for large numbers of personnel to fix downtime issues.

Only 38% of technology executives consistently identify the root cause of a downtime incident.

56% of security leaders now experience cybersecurity-related downtime caused by SaaS and other third-party application issues often or very often, nearly triple the rate in 2024.

Organizations spend a median of $24.5 million annually on AI tools that prevent and respond to downtime.

Nearly 20% of marketing professionals report it takes an entire quarter to recover brand health after remediation.

98% of organizations with the lowest downtime costs confirm end-to-end visibility is very or extremely important for reducing incidents.

71% of technology executives rate publicly disclosing a data breach as very or prohibitively disruptive, up from 23% in 2024.

90% of tech leaders report increased demand for customer support during downtime.

All technology leaders report their organization has experienced some form of AI-related downtime.

68% of technology leaders express concern that their AI agents will behave unpredictably.

About three-fourths of ITOps and engineering leaders identify end-to-end observability as their top investment priority to improve infrastructure resilience.

66% of ITOps and engineering leaders are prioritizing investments in automation to mitigate the risks of human error.

85% of technology leaders prioritize AI-driven security automation.

2,130 AI-related vulnerabilities were reported in 2025, a more than 200% increase since 2023.

Of the 48,000+ CVEs published in 2025, only 58 represented a genuine, discoverable, and exploitable threat to enterprise supply chains.