42% of organizations attribute their most significant data loss events to compromised users.

Most insider incidents are unintentional: 62% were caused by negligent or compromised users.

2.67 million machines were infected by infostealer malware in H1 2025. This led to more than 204 million compromised credentials being observed.

Both infostealer infections and compromised credentials are on track to surpass 2024 figures, which saw over 4.3 million machines infected with approximately 330 million compromised credentials. This indicates a 24% increase YoY in these areas.

Of organisations that experienced attacks, 38% of breaches stemmed from compromised employee credentials.

60% of AI-related security incidents led to compromised data.

Attempted logins using compromised passwords averaged over 1.3 million per day in March 2025

The most common length for compromised passwords was 8 characters (212.5 million total).