VendorsReliaQuest
ReliaQuest
Cybersecurity reports and statistics published by ReliaQuest
8 categories6 reports
Research Reports
Reports and publications from ReliaQuest
ReliaQuest 2026 Annual Cyber Threat Report
2/24/2026
Too Much Trust: The Danger of Over-Privileged Cloud Identities
11/4/2025
Ransomware and Cyber Extortion in Q2 2025
7/3/2025
Annual Cyber-Threat Report
2/25/2025
Racing the Clock: Outpacing Accelerating Attacks
1/1/2025
Ransomware and Cyber Extortion in Q4 2024
1/1/2025
Recent Statistics & Reports
Roughly 20% of the domains registered by Scattered Spider imitated Gateway and Network Infrastructure.
1/1/2025
Nearly half of the 1,110 initial access listings collected in Q4 2024 were related to US-based companies.
1/1/2025
The median ransom payment rose from $199,000 in 2023 to $1,500,000 in 2024.
1/1/2025
Attack speed increased by 22% in 2024 compared to 2023.
1/1/2025
The number of active ransomware groups increased from 60 in 2022 to almost 100 last year.
1/1/2025
"Akira" more than doubled its Q3 count and listed 71 organisations on data-leak sites in December alone.
1/1/2025
17% of incidents involved voice phishing for initial access, indicating help-desk scams.
1/1/2025
Threat actors using IABs can achieve breakout times as fast as 27 minutes.
1/1/2025
Vulnerability exploitation accounted for over 17% of initial access incidents among ReliaQuest customers in 2024.
1/1/2025
There was a >50% increase in infostealer logs posted on the dark web in 2024 compared to 2023.
1/1/2025
In Q4 2024, there was the highest jump of the year with 13 new ransomware groups emerging.
1/1/2025
Ransomware attacks reached an all-time high in December 2024.
1/1/2025
Newcomers in Q4 like “SafePay” and “FunkSec” quickly ramped up their activity, claiming 45 and 82 victims, respectively.
1/1/2025
The mean time between the initial email wave of a help-desk scam and the phishing message was just 4 minutes, with another 4 minutes to establish command and control (C2).
1/1/2025
The time between a vulnerability being discovered and its exploitation by attackers (time to exploitation) decreased by 62%, from 47 days in 2023 to just 18 days in 2024.
1/1/2025
The average breakout time in 2024 was 48 minutes, which is 22% faster than in 2023.
1/1/2025
Approximately 15% of domains registered by Scattered Spider imitated VPN and Secure Access.
1/1/2025
50% of hands-on-keyboard incidents in 2024 used valid or exposed credentials for initial access.
1/1/2025
Around 20% of domains registered by Scattered Spider imitated Help Desk and IT Support.
1/1/2025
70% of the domains egistered by Scattered Spider imitated a specific organisation.
1/1/2025
Showing 41-60 of 68 results