VendorsIBM
IBM
Cybersecurity reports and statistics published by IBM
8 categories2 reports
Research Reports
Reports and publications from IBM
Recent Statistics & Reports
North America's share of total cases increased from 24% in 2024 to 29%.
5/27/2026•
Regional ThreatsTrend AnalysisNorth America
Attacks that begin with exploitation of public-facing applications increased by 44%, largely driven by missing authentication controls and AI-enabled vulnerability discovery.
5/27/2026•
Application SecurityVulnerability ManagementPublic-Facing Applications
Active ransomware and extortion groups increased by 49% year over year.
5/27/2026•
Ransomware GroupsExtortion Groups
Publicly disclosed victim counts increased by roughly 12%.
5/27/2026•
RansomwareVictim Disclosure
Vulnerability exploitation accounted for 40% of incidents observed by IBM X‑Force in 2025.
5/27/2026•
Vulnerability ManagementVulnerability Exploitation
Large supply chain and third-party compromises have nearly quadrupled since 2020.
5/27/2026•
Supply ChainThird-Party Risk
Infostealer malware led to the exposure of over 300,000 ChatGPT credentials in 2025.
5/27/2026•
Identity SecurityCredential TheftInfostealer Malware
Manufacturing accounted for 27.7% of incidents observed by IBM X‑Force.
5/27/2026•
Manufacturing
North America accounted for 29% of total cases observed by IBM X‑Force.
5/27/2026•
Regional ThreatsNorth America
Manufacturing is the top targeted sector for the fifth consecutive year.
5/27/2026•
ManufacturingTargeting Trends
North America became the most-attacked region for the first time in 6 years.
5/27/2026•
Regional ThreatsAttack TrendsNorth America
Among organisations that reported recovery following a data breach, most took more than 100 days on average to do so.
7/30/2025•
Data breachData breach consequences
31% of AI-related security incidents led to operational disruption.
7/30/2025•
AIAI-related security incidentOperational disruption
One in five organisations (which is 20%) reported a breach due to shadow AI.
7/30/2025•
AIShadow AIData breach
63% of breached organisations either don't have an AI governance policy or are still developing one.
7/30/2025•
AIAI governance policy
Less than half of those that plan to invest in security post-breach will focus on AI-driven security solutions or services.
7/30/2025•
Data breachInvesmtnetData breach consequences
Nearly half of all organisations reported that they planned to raise the price of goods or services because of a breach.
7/30/2025•
Data breachData breach consequences
16% of breaches studied involved attackers using AI tools.
7/30/2025•
AIAI tools
Only 37% of organisations have policies to manage AI or detect shadow AI.
7/30/2025•
AIShadow AI
The average cost of an extortion or ransomware incident remains high, particularly when disclosed by an attacker ($5.08 million).
7/30/2025•
RansomwareExtortionRansomware cost
Showing 1-20 of 41 results