VendorsBridewell
Bridewell
Cybersecurity reports and statistics published by Bridewell
8 categories2 reports
Research Reports
Reports and publications from Bridewell
Recent Statistics & Reports
Germany increased to 8.74%, becoming the third largest adversary infrastructure hosting location and overtaking both Hong Kong (7.22%) and the Netherlands (6.51%).
5/27/2026•
Adversary InfrastructureGermanyHong Kong
Cobalt Strike accounted for 38.4% of all OST output (3,944 of 10,272 tracked OST instances), maintaining its position as the primary adversary framework.
5/27/2026•
Cobalt StrikeOST
The most prevalent malware families observed in 2025 are Cobalt Strike, Sliver, Metasploit, Burp, PlugX, SuperShell C2, Havoc, Panda C2, Brute Ratel, and ShadowPad.
5/27/2026•
Malware Cobalt StrikeSliver
Across 2025, 7,918 victim postings were observed on ransomware group data-leak sites (DLS) across 129 distinct threat actors sourced from ransomware.
5/27/2026•
RansomwareData Leak SiteDLS
China hosted 42.3% of all tracked Cobalt Strike infrastructure, the US hosted 18.9%, and Hong Kong hosted 15.8%.
5/27/2026•
Cobalt StrikeChinaUS
WhiteSnake Stealer was the most widely observed infostealer family, accounting for 31.6% of all tracked output, followed by RedLine at 23.9%, Rhadamanthys at 17.1%, and StealC at 6.9%.
5/27/2026•
Infostealer
In 2025, 27.89% of all adversary infrastructure tracked was hosted in the US, an increase from 23.63% in 2024.
5/27/2026•
Adversary InfrastructureUS
China remained the second largest adversary infrastructure hosting location at 13.55%, down from 17.57% the previous year.
5/27/2026•
Adversary InfrastructureChina
39% of financial organisations view remote and hybrid work practices as key security concerns.
4/15/2025•
Financial institutionRemote workHybrid work
69% of financial organisation expressed worry over state-linked cyber actors such as Iran.
4/15/2025•
Financial institutionState sponsored attacksIran
31% of financial organisations are turning to regional security partnerships to address the skills gap.
4/15/2025•
Financial institutionTalentSkills
Fear of China-backed threats has fallen sharply from 80% to 57% among financial organisations.
4/15/2025•
Financial institutionState sponsored attacksChina
81% of financial organisations express confidence in their ability to secure IT infrastructure.
4/15/2025•
Financial institutionIT infrastructureUK
39% of financial organisations are turning to reskilling to address the skills gap.
4/15/2025•
Financial institutionTalentSkills
39% of financial institutions reported heightened concerns around data privacy.
4/15/2025•
Financial institutionData privacyUK
The average response time to ransomware attacks is 6.71 hours among financial institutions. Last year's average response time to ransomware attacks was 6.62 hours.
4/15/2025•
Financial institutionRansomwareUK
More than half (52%) of financial organisations plan to outsource to address the skills gap.
4/15/2025•
Financial institutionTalentSkills
63% of financial services firms will increase cyber security investment over the next year.
4/15/2025•
Financial institutionInvestmentBudget
30% of financial organisations view incident detection capabilities as a high challenge.
4/15/2025•
Financial institutionDetectionSecurity challenge
37% of financial institutions reported heightened concerns around the security of critical assets.
4/15/2025•
Financial institutionCritical assetsUK
Showing 1-20 of 28 results