VendorsKroll
Kroll
Cybersecurity reports and statistics published by Kroll
8 categories3 reports
Research Reports
Reports and publications from Kroll
Recent Statistics & Reports
28% of organizations experience business email compromise.
5/27/2026•
Business Email Compromise
94% of organizations view cybersecurity as a primary business risk.
5/27/2026•
CybersecurityBusiness Risk
59% of organizations are increasing spending on cloud and third-party security.
5/27/2026•
Cloud SecurityThird-Party SecurityBudget
Organizations face an average annual recovery cost and downtime of $2.2 million from cyber incidents.
5/27/2026•
Incident Recovery CostDowntime Cost
80% of organizations increased cybersecurity budgets in 2026.
5/27/2026•
Budget
39% of organizations experience phishing attacks.
5/27/2026•
Phishing
Only 10% of organizations have achieved very high cyber maturity.
5/27/2026•
Cyber MaturityRisk Management
48% of businesses say the CEO now makes the final decision on cyber budgets.
5/27/2026•
Budget
43% of organizations report limited cyber literacy among executives.
5/27/2026•
Executive Cyber Literacy
99% of organizations have an incident response plan.
5/27/2026•
Incident Response Plan
Organizations with higher cyber maturity experience 50% less financial impact per dollar of revenue when cyber incidents occur.
5/27/2026•
Cyber MaturityFinancial Impact
52% of organizations are cutting or not increasing investment in identity access management controls and zero-trust architecture.
5/27/2026•
BudgetInvestmentIdentity Access Management Controls
51% of organizations cite differing risk tolerance as the leading cause of gaps in threat prioritization.
5/27/2026•
Risk ToleranceThreat Prioritization
72% of organizations believe they can respond to an incident within 1–24 hours.
5/27/2026•
Incident ResponseOperational Readiness
55% of organizations are cutting or not increasing investment in red and purple teaming.
5/27/2026•
Security TestingProactive DefenseBudget
3% of organizations update incident response plans only after a cyber incident.
5/27/2026•
Incident Response PlanOperational Readiness
72% of organizations report frequent misalignment between cybersecurity efforts and broader business priorities.
5/27/2026•
CybersecurityBusiness Priorities
36% of organizations acknowledge gaps in how threats are prioritized.
5/27/2026•
Threat PrioritizationRisk ManagementThreat Prioritization Gaps
At least four in 10 business leaders are increasing budgets, expanding teams, upskilling, and/or hiring external help for cybersecurity challenges and data privacy concerns
6/12/2025•
BudgetData privacy
Slightly more than a third (34%) of companies have implemented continuous monitoring for AI, highlighting a gap in managing AI-related risks and compliance failures.
6/12/2025•
AIMonitoringCompliance
Showing 1-20 of 44 results