Skip to main content
HomeTopicsTesting

Testing

Cybersecurity statistics about testing

Showing 1-20 of 21 results

47% of organizations favor automation for low-risk environments, up 22 percentage points.

Cobalt6/28/2026
Risk ManagementAutomation

53% of IT leaders believe that regular testing and validation of cyber incident recovery plans is a key benefit a cyber incident recovery solution provides to contribute to better cyber resilience.

11:11 Systems10/7/2025
Cyber attackIncident recovery

70% of organizations test their cyber incident recovery plans annually.

11:11 Systems10/7/2025
Cyber attackIncident recovery

53% of respondents supplement their efforts with internal testing

Cobalt7/31/2025
Internal testing

Nearly nine in 10 security leaders (88%) view penetration testing as an essential component of their overall security programme.

Cobalt7/31/2025
Pen testing

More than half (58%) of respondents require third-party penetration test reports to validate software security.

Cobalt7/31/2025
Pen testingSoftware security

9 in 10 UK organisations tested elements of their recovery capabilities in the last 12 months, which is a significant increase from previous years.

Databarracks7/30/2025
UKRecovery capabilities

23% of financial services organizations have not conducted digital operational resilience testing (a DORA requirement).

Veeam7/17/2025
DORAEMEA

63% of organizations are engaged in mobile application security testing.

Guardsquare7/15/2025
MobileApp

Respondents stated that automated security validation enabled them to test over 200x more threats than manual testing.

Cymulate4/23/2025
Security validationAutomation

Larger organisations take over a month longer (61 days) than smaller ones (27 days) to resolve serious findings in pentests.

Cobalt4/14/2025
Pen testingOffensive security

94% of security leaders agree that pentesting is foundational to security.

Cobalt4/14/2025
Pen testingOffensive security

Financial companies have a lower rate of serious findings (11%) in pentests.

Cobalt4/14/2025
Pen testingOffensive security

Large organisations resolve only 60% of serious pentest findings.

Cobalt4/14/2025
Pen testingOffensive security

The rate for serious findings in pentests being resolved in each calendar year remains stuck at just 55%.

Cobalt4/14/2025
Pen testingOffensive security

Only 66% of organisations are conducting regular security assessments like pentesting on their AI products.

Cobalt4/14/2025
Pen testingOffensive security

The proportion of serious findings in pentests has also declined by about half (from 20% to 11%) over 10 years.

Cobalt4/14/2025
Pen testingOffensive security

Small companies lead with 81% of serious findings in pentests resolved.

Cobalt4/14/2025
Pen testingOffensive security

57% of organisations resolve at least 90% of their serious findings in pentests.

Cobalt4/14/2025
Pen testingOffensive security

15% of organisations resolve 10% or less of their serious findings in pentests.

Cobalt4/14/2025
Pen testingOffensive security