Skip to main content
VendorsCoalition

Coalition

Cybersecurity reports and statistics published by Coalition

8 categories3 reports

Recent Statistics & Reports

The majority of 2024 cyber insurance claims (60%) originated from business email compromise (BEC) and funds transfer fraud (FTF) incidents.

5/7/2025
Cyber insuranceBECFTF

29% of BEC events resulted in funds transfer fraud in 2024.

5/7/2025
Cyber insuranceBECFTF

Akira ransomware was the most prolific variant for Coalition policyholders, accounting for 13% of ransomware claims in 2024.

5/7/2025
Cyber insuranceRansomwareAkira

FTF (funds transfer fraud) claims frequency decreased by 2% YoY.

5/7/2025
Cyber insuranceFTF

The Black Basta variant had the highest average ransom demand at $4 million.

5/7/2025
Cyber insuranceRansomwareRansom

BEC claims severity increased by 23% in 2024.

5/7/2025
Cyber insuranceBEC

Black Basta accounted for just 3% of all ransomware claims in 2024.

5/7/2025
Cyber insuranceRansomwareBlack Basta

Ransomware cyber insurance claims frequency decreased by 3%.

5/7/2025
Cyber insuranceRansomware

Ransomware claims severity decreased by 7% YoY.

5/7/2025
Cyber insuranceRansomware

FTF (funds transfer fraud) claims severity decreased by 46% YoY. This sharp decline followed an all-time high in 2023.

5/7/2025
Cyber insuranceFTF

Coalition detected over 5 million internet-exposed remote management solutions in 2024.

3/11/2025

Across all ransomware claims in 2024, the most common initial access vectors (IAVs) were stolen credentials (47%) and software exploits (29%).

3/11/2025

The projected software vulnerability rate for 2025 is nearly 4,000 per month.

3/11/2025

The predicted increase in software vulnerabilities for 2025 represents a 15% jump over the first 10 months of 2024.

3/11/2025

Most ransomware claims in 2024 started with threat actors compromising perimeter security appliances (58%), like virtual private networks (VPNs) or firewalls.

3/11/2025

The total number of published software vulnerabilities will increase to over 45,000 in 2025.

3/11/2025

Remote desktop products were the second-most exploited vector for ransomware attacks in 2024, at 18%.

3/11/2025

When applying for cyber insurance, most businesses (65%+) had at least one internet-exposed web login panel.

3/11/2025

90% of vulnerabilities published in the first ten months of 2024 never triggered an alert for Coalition policyholders.

3/11/2025

Insurance policyholders received critical alerts for just 0.15% of vulnerabilities published in the first ten months of 2024.

3/11/2025

Showing 21-40 of 41 results