A year ago, 55% of AI models failed basic vulnerability research and 93% failed exploit development tasks

In 2025, the U.S. accounted for roughly one-third of global ransomware incidents.

In 2025, ransomware accounted for 36% of security incidents affecting financial institutions.

The financial sector was the second-most expensive industry for data breaches, at $5.56 million per breach.

Shadow AI accounted for 20% of AI-related breaches affecting financial institutions.

Third-party involvement occurs in 30% of financial-sector breaches.

In 2025, approximately 12.8% of B2B financial organizations experienced ransomware.

In 2025, data breaches accounted for 64% of security incidents affecting financial institutions.

Akira accounted for more than 40% of all ransomware claims in At-Bay’s portfolio for the full year.

86% of Akira attacks occurred in environments where a SonicWall device was present.

The largest single business interruption claim hit $5M, the policy limit.

Roughly one in 10 ransomware incidents caused downtime exceeding 30 days.

Financial fraud was the most common incident type for the third consecutive year, accounting for 30% of all claims.

The average amount stolen reached $285K, up 16% from the prior year and up significantly from $199K in 2023.

The single largest fraud loss in 2025 hit $9.7M.

IT services spending is forecast to surpass $1.87 trillion in 2026, growing 9.0% year-over-year.

Device spending is forecast to reach $856.19 billion in 2026, growing 8.2% year-over-year.

Communications services spending is forecast to reach $1.35855 trillion in 2026, growing 4.8% year-over-year.

43% of UK IT decision makers report having some governance for agentic AI but with gaps.

17% of UK IT decision makers say governance for agentic AI is basic or minimal.