A quarter of active intrusions started with exploitation of public-facing applications.

February 25, 2025

A quarter of active intrusions started with exploitation of public-facing applications. — This cybersecurity statistic was published by ReliaQuest in February 2025. The original data appears in Annual Cyber-Threat Report. For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 2/25/2025

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

A quarter of active intrusions started with exploitation of public-facing applications. This data was published by ReliaQuest.

Where does this data come from?

This statistic comes from Annual Cyber-Threat Report, published by ReliaQuest on February 25, 2025. You can view the original report at https://reliaquest.com/resources/research-reports/annual-threat-report-2025/.

What cybersecurity topics does this cover?

This statistic was published by ReliaQuest. Browse more statistics from ReliaQuest.

CYBERSTATS

A quarter of active intrusions started with exploitation of public-facing applications.

Source

Share or Copy this stat

Frequently Asked Questions

Want More Statistics Like This?

Related Statistics

44% of true-positive security alerts from cloud security tools in Q3 2025 were driven by identity-related weaknesses.

52% of all confirmed identity-based alerts were due to identity-related privilege escalation.

As of October 2025, there are over 14,700 Jenkins servers exposed to the internet that remain vulnerable to CVE-2024-23897.

33% of raw CSPM alerts were identity-related, contributing to the operational burden on security teams.

71% of critical vulnerability alerts in Q3 2025 originated from just four legacy CVEs.

99% of cloud identities were found to be over-privileged, creating significant security risks.

Stay Ahead of Cyber Threats