Roughly 29% of reviewed iOS shopping apps access user data without declaring it in their App Store Privacy Overview.

96% of organizations surveyed experienced data loss or exposure from misdirected email in the past year.

21% of security professionals are concerned about whistleblowers sharing or exposing data.

45% of respondents are very concerned about sensitive data being shared with generative AI tools like ChatGPT.

Only 12% of organizations feel fully prepared to detect or respond to sensitive data being shared with GenAI tools.

34% of organizations reported sensitive data exposure and privacy incidents as the most common API security problem.

18 S&P 500 companies cited third-party and vendor exposure as a cybersecurity risk tied to AI.

Sensitive data exposure: 10.5% in the financial services industry (versus 8.0% average in other industries).

Nearly half of employees (46%) admit to pasting company information into public AI tools.

Nearly half of employees are entering company-related information into public AI tools to complete tasks and concealing their AI use.

Nearly 7 in 10 retail & consumer goods organizations had APIs with misconfigured authorizations or data exposure issues. These retail & consumer goods APIs averaged 15 vulnerabilities per API.

Among the 1,059 users who engaged with Chinese GenAI tools, there were 535 incidents of sensitive data exposure.

Financial information accounted for 14.4% of sensitive data exposed through employee use of Chinese GenAI tools at work.

The majority of sensitive data exposure (roughly 85%) due to the use of Chinese GenAI tools occurred via DeepSeek, followed by Moonshot Kimi, Qwen, Baidu Chat and Manus.

Code and development artifacts made up 32.8% of sensitive data exposed through employee use of Chinese GenAI tools at work.

Personally identifiable information (PII) comprised 17.8% of sensitive data exposed through employee use of Chinese GenAI tools at work.

Customer data represented 12.0% of sensitive data exposed through employee use of Chinese GenAI tools at work.

Mergers & acquisitions data accounted for 18.2% of sensitive data exposed through employee use of Chinese GenAI tools at work.

Legal documents made up 4.9% of sensitive data exposed through employee use of Chinese GenAI tools at work.

The average cost of a healthcare data breach has reached $9.8 million. This average cost is nearly twice as high as the cross-industry average of $4.45 million, according to industry reports.