National security organizations faced an average of 137 attempted or successful cyberattacks per week in 2025, up from 127 cyberattacks per week in 2024.

Cyberattacks against agencies in the U.S. have surged 25% in the last year and occur more frequently on a weekly basis than in the UK.

48% of New Yorkers stated they have been the victim of a cyberattack at least once.

99% of organizations experienced at least one attack on their AI systems in the past year.

64% of SMB owners reportedly recovered quickly from a cyber attack.

43% of SMBs report they experienced a cyberattack in the past 5 years.

27% of SMBs said they were targeted in the past 12 months.

3% of SMB owners faced severe, lasting damage following a cyber attack.

75% of organizations saw impact to their data protection infrastructure and storage systems after a cyber attack.

82% of organizations saw 11–50% of their data impacted from an attack.

The amount of data most organizations got back after paying a ransom was 51–75%.

44% of organizations suffered from multiple, damaging attacks.

66% of organizations surveyed have been the victim of at least one cyberattack in the last 12 months, resulting in financial loss or disrupted business operations.

54% of organizations attacked paid a ransom.

92% of organizations still lost data after paying a ransom.

8% of organizations got all their data back after paying a ransom.

7% of organizations recovered in a day or less after an attack.

4–7 Days was the "normal" recovery time after a cyberattack.

78% of organizations suffered from the inability to access data or IT outages due to an attack (e.g., ransomware, malware, DDoS).

57% of organizations suffered multiple data outages from an attack.