Encryption-based extortion declined by 15% compared to the previous year.

The fastest ransomware case observed, involving Akira ransomware, takes just three hours from breach to encryption.

68% of observed wireless networks in industrial and critical infrastructure environments operate without Management Frame Protection (MFP) despite using modern encryption.

32% of successful Canadian software buyers checked encryption standards of vendors before purchase.

84% of Pacesetters (most AI-ready group) report full capability with end-to-end encryption for sensitive data, versus 30% of all companies.

38% of respondents of UK IT leaders cited ensuring strong encryption as their bigest email security challenge.

Only 38% of organizations over 20,000 employees actively pursuing CMMC 2.0 certification achieve top-tier encryption (76-100% coverage).

59% of mid-market firms (5,000-9,999 employees) actively pursuing CMMC 2.0 certification achieve top-tier encryption (76-100% coverage).

Only 56% of organizations have fully implemented end-to-end encryption for all sensitive data.

83% of small healthcare practices believe patient consent removes the need for encryption.

Agape Health paid $25,000 for emailing protected health information unencrypted.

SCATTERED SPIDER moved from initial access to encryption by deploying ransomware in under 24 hours in one observed case

More than half of rural healthcare providers report poor mobile usability and slow encryption that can delay care.

64% of IT security decision makers said encryption has increased, allowing them to better protect their data, including on lost/stolen devices.

39% of organizations want to expand encryption to portable hard drives.

23% of IT security decision makers cited a lack of encryption as the main reason for a data breach within their organization

34% of organizations want to expand encryption to mobile phones.

96% of organizations now have a defined data encryption policy for removable media.

29% of organizations cited remote/hybrid working as a primary reason for implementing encryption. This is an increase from 19% in 2024.

Nearly one in 10 (7%) of those surveyed did not know which data sets to encrypt.