11.01% of organizations have active malicious packages embedded in production environments.

May 27, 2026

11.01% of organizations have active malicious packages embedded in production environments. — This cybersecurity statistic was published by Orca Security in May 2026. It covers topics including Malware, Malicious Packages. The original data appears in 2026 State of Application Security Report . For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 4/7/2026

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

11.01% of organizations have active malicious packages embedded in production environments. This data was published by Orca Security and covers Malware, Malicious Packages.

Where does this data come from?

This statistic comes from 2026 State of Application Security Report , published by Orca Security on May 27, 2026. You can view the original report at https://orca.security/lp/2026-state-of-application-security-report/.

What cybersecurity topics does this cover?

This statistic relates to Malware, Malicious Packages. Browse more statistics on Malware or from Orca Security.

CYBERSTATS

11.01% of organizations have active malicious packages embedded in production environments.

Source

Share or Copy this stat

Frequently Asked Questions

Want More Statistics Like This?

Related Statistics

67.3% of the 832 malicious accounts banned between March 2025 and March 2026 used AI to write malware.

495 malicious AI models were identified on Hugging Face.

56 malicious extensions were identified on OpenVSX.

969 malicious AI agent skills were identified carrying high-impact payloads.

33% of CIOs identify malware and ransomware as dominant threats.

Over a quarter of CIOs report AI as a significant source of risk, placing it on par with malware, ransomware and phishing.

Browse by Topic

Stay Ahead of Cyber Threats