Most companies (67%) are spending roughly equal amounts on proactive and reactive cybersecurity measures.

85% of organizations describe their cybersecurity posture as reactive.

Nearly 3 in 5 (58%) organisations admit that they currently only respond to threats as they occur, or after the damage has already been done.