33% of CISOs rank external threats as their number-one stressor.

Healthcare organizations experienced an average of five different types of cyber threats that impacted their organizations in the past year.

49% of organizations reported an increase in AI-generated phishing, 48% reported an increase in AI-powered malware, and 47% reported an increase in AI-driven identity theft or fraud in the past year.

28.5% of Managed Service Providers (MSPs) identified limited visibility into identity threats, risky users, and privileged access as a top pain point when managing Microsoft 365.

80% of Gen Z parents fear their kids will fall victim to AI-enhanced online threats.

87% of Pacesetters (most AI-ready group) report awareness of AI-specific threats, compared to 42% of all companies.

51% of organizations surveyed focus on recruiting the right talent to manage AI-specific cybersecurity threats.

60% of organisations fear the rise of AI-generated threats.

Malicious Copy Paste (T1204.004) did not make the top 10 technique list.

Two new cloud-related techniques - Data from Cloud Storage and Disable or Modify Cloud Firewall - have entered Red Canary's top 10 techniques for the first time.

Analysis of suspected phishing emails revealed that only 16% were genuinely malicious.

Roughly 5 times as many identity-related detections were observed in the first half of this year compared to all of 2024.

Ransomware rose 36% year over year.

62% of breaches in H1 2025 involved data stored on network servers.

40% of threat actor updates in H1 2025 were attributed to state-sponsored groups.

9% of threat actor updates in H1 2025 were attributed to hacktivists.

76% of breaches in H1 2025 stemmed from hacking or IT incidents.

Ransomware attacks are averaging 20 incidents per day.

There were 3,649 documented ransomware attacks in H1 2025.

Ransomware attacks grew in frequency to 608 per month, or roughly 20 per day.