77% of advanced email attacks impersonated business-critical brands such as DocuSign, Microsoft, and Google.

Microsoft processes over 100 trillion signals daily and blocks approximately 4.5 million new malware attempts each day.

The sharp rise in Microsoft 365 email breaches in healthcare represents a 21% increase year-over-year.

Microsoft 365 environments now account for 52% of all healthcare email breaches. This represents a dramatic surge from 43% just one year ago.

51% of respondents have over 250 over-privileged Entra applications with read-write permissions, which poses significant security risks. This contributes to "Privilege Risks," as the increasing number of applications escalates security risks, necessitating tighter governance over permissions.

99.9% of Microsoft account compromises occur in accounts lacking Multi-Factor Authentication (MFA).

49% of IT leaders mistakenly believe that Microsoft automatically backs up their configurations, leaving them vulnerable in the event of a disaster.

68% of organizations face Microsoft 365 cyberattacks daily.

49% of IT leaders mistakenly believe that Microsoft automatically backs up their configurations, leaving them vulnerable in the event of a disaster.

Microsoft spoofing spiked 156% in 2024.

83% of malicious Microsoft documents contain QR codes designed to take users to phishing websites.

In 2024, there was a 47% increase in phishing emails evading detection by Microsoft’s native security and secure email gateways.