Report by Picus

Blue Report 2025

11 FINDINGSPublished Aug 11, 2025
View Original Report →

Key Findings

Maori, a ransomware strain, had a prevention effectiveness rate of 41%.

PicusBlue Report 2025·9mo ago
RansomwareMaori

Attacks using valid credentials were successful 98% of the time.

PicusBlue Report 2025·9mo ago
Valid credentials

Logging coverage held steady at 54%.

PicusBlue Report 2025·9mo ago
Logging

Infostealer malware has tripled in prevalence.

PicusBlue Report 2025·9mo ago
Infostealer

BlackByte, a ransomware strain, had a prevention effectiveness rate of just 26%.

PicusBlue Report 2025·9mo ago
RansomwareBlackByte

BabLock, another ransomware strain, had a prevention effectiveness rate of 34%.

PicusBlue Report 2025·9mo ago
RansomwareBabLock

Discovery techniques like System Network Configuration Discovery and Process Discovery scored below 12% in prevention effectiveness.

PicusBlue Report 2025·9mo ago
Discovery techniques

Overall prevention effectiveness declined from 69% in 2024 to 62% in 2025.

PicusBlue Report 2025·9mo ago
Prevention

Only 14% of attacks generated alerts.

PicusBlue Report 2025·9mo ago
Cyber attacksAlerts

Data exfiltration attempts were only stopped 3% of the time in 2025. This is down from 9% in 2024, representing a 3x decrease.

PicusBlue Report 2025·9mo ago
Data exfiltration

In 46% of tested environments, at least one password hash was successfully cracked. This is an increase from 25% in 2024.

PicusBlue Report 2025·9mo ago
Password