25% of all sensitive data disclosures involve technical data, with 65% of that consisting of proprietary source code copied into generative AI tools.

72% of organizations believe that AI leads to faster time to market.

79% of organizations believe that AI improves code quality.

100% of organizations confirmed having AI-generated code in their codebases.

81% of organizations lack full visibility into how and where AI is being used across the software development lifecycle.

78% of organizations believe that AI increases productivity.

30% of organizations state that AI now creates the majority of code in their organizations.

97% of organizations are using or piloting AI coding assistants.

42% of organizations conduct code reviews and security testing.

29% of manipulation concerns in the gig economy by 2026 will be related to app tampering/code injection.

26% of respondents ranked app tampering / code injection as their biggest manipulation challenge currently in the gig economy.

28% of Indians say QR codes would increase their trust more than any other method when engaging with brands online.

98% of organisations experienced a breach stemming from vulnerable code in the past year.

81% of organisations knowingly ship vulnerable code.

81% of organisations knowingly ship vulnerable code.

Fewer than half of the CISOs, AppSec managers and developers report deploying foundational security tools like dynamic application security testing (DAST) or infrastructure-as-code scanning.

Code leakage was the most common type of sensitive data sent to GenAI tools.

55% of respondents conduct independent code reviews.

When given a choice between a secure and insecure method to write code, GenAI models chose the insecure option 45% of the time.

LLMs failed to secure code against cross-site scripting (CWE-80) in 86% of cases.