Cybersecurity Statistics

Security Intelligence

VendorsSemperis

Semperis

Cybersecurity reports and statistics published by Semperis

8 categories3 reports

Research Reports

Reports and publications from Semperis

Ransomware Targets Times of Distraction

2025 Ransomware Risk Report

The State of Critical Infrastructure Resilience

Recent Statistics & Reports

90% of organizations reported that their identity threat detection and response (ITDR) plans detect identity system vulnerabilities.

ITDRIdentity system vulnerabilities

62% of organizations reduced SOC staffing on holidays and weekends to provide employees with work/life balance.

SOCHolidaysWeekends

47% of organizations reported being closed on holidays and weekends.

HolidaysWeekends

6% of companies completely cut their security operation center (SOC) staffing during holidays and weekends.

SOCHolidaysWeekends

52% of organizations reported being targeted by ransomware attacks on holidays or weekends.

RansomwareHolidaysWeekends

60% of ransomware attacks occurred following an IPO, merger or acquisition, or round of layoffs.

RansomwareIPOMerger

29% of organizations did not think they would be attacked during holidays and weekends.

HolidaysWeekends

45% of identity threat detection and response (ITDR) plans included remediation procedures.

ITDRRemediation procedures

78% of companies reduced security operation center (SOC) staffing by 50% or more during holidays and weekends.

SOCHolidaysWeekends

63% of identity threat detection and response (ITDR) plans automated identity system recovery.

ITDRIdentity system recoveryAutomation

44% of German firms experienced physical forms of intimidation in ransomware attacks.

69% of companies victimized by ransomware paid a ransom.

The top cybersecurity challenge facing organizations is the sophistication of attacks (37%).

The second biggest cybersecurity challenge facing organizations is attacks against organizations' identity infrastructure, most commonly Active Directory (32%).

47% of attacked companies across various countries (US, UK, France, Germany, Spain, Italy, Singapore, Canada, Australia, New Zealand) reported that hackers threatened to file regulatory complaints against them if they didn't report the ransomware incident.

In 40% of ransomware attacks, threat actors threatened to physically harm executives at organizations that declined to pay a ransom demand.

In the US, the rate of regulatory blackmail threats (hackers threatening to file regulatory complaints against victims if they didn't report the ransomware incident) jumped to 58%, representing a 23% increase.

Nearly 20% of companies that paid a ransom either received corrupt decryption keys or the hackers still published stolen data

38% of companies that paid ransoms did so multiple times.

In the US, 47% of companies paid ransoms multiple times.

Showing first 20 results

Top Categories

6

6

6

5

3

3

Identity system vulnerabilities

Related Vendors

Rubrik Zero Labs

Palo Alto Networks