In the U.S., 63.5% (14% points above the average) of respondents stated the cybersecurity skills gap within their organization has worsened over the past 12 months.

In the U.S., 75% of IT/security professionals highlighted the importance of reducing their cyberattack surface by disabling unnecessary tools or applications.

In the U.S., 73.8% of surveyed IT/security professionals reported being pressured to keep a breach confidential, even when they believed it should be reported to authorities.

50% of professionals in the U.S. and Singapore plan to seek new jobs in the next year.

71%.of respondents in the US are concerned about AI-driven attacks.

Fraud attempts in U.S. contact centres now occur every 46 seconds.

Exposure to mobile scams is highest in the US (51%) and UK (49%), and notably lower in DACH (38%).

Fraud costs the federal government upwards of $500 billion annually.

Fraudsters were about four times more likely to use stolen identities instead of synthetic identities.

International bad actors were responsible for up to 12% of all incoming applications for government services and/or loans in the study.

At least 1 in 4 fraud attempts targeted more than one government agency at once.

Pentesting accounts for 11% of the total IT security budgets of U.S. enterprises.

The average total IT security budget for U.S. enterprises is $1.77 million.

Nearly 20% of data breach victims were U.S. organizations.

US respondents were 2.2x as likely as those in Australia or the UK (in aggregate) to be very familiar with Zero Trust architectures.

Advanced persistent threat (APT) detections targeting the U.S. in Q1 2025 were 2.4 times or 136% higher than the level seen the prior quarter.

Of APT activity directed at the U.S., 47% was attributed to China and 35% to Russia-aligned groups.

US respondents were 72% more likely than respondents in Australia or the UK to report significant improvement in security incidents after adopting Zero Trust initiatives.

Americans are the most likely to disapprove of selling data on, with 50% saying it should not be allowed

In terms of geography for attacks on critical sectors, the United States bore the brunt of attacks (61%), followed by the United Kingdom (6%) and Canada (5%).