Key Findings
Maori, a ransomware strain, had a prevention effectiveness rate of 41%.
Attacks using valid credentials were successful 98% of the time.
Logging coverage held steady at 54%.
Infostealer malware has tripled in prevalence.
BlackByte, a ransomware strain, had a prevention effectiveness rate of just 26%.
BabLock, another ransomware strain, had a prevention effectiveness rate of 34%.
Discovery techniques like System Network Configuration Discovery and Process Discovery scored below 12% in prevention effectiveness.
Overall prevention effectiveness declined from 69% in 2024 to 62% in 2025.
Only 14% of attacks generated alerts.
Data exfiltration attempts were only stopped 3% of the time in 2025. This is down from 9% in 2024, representing a 3x decrease.
In 46% of tested environments, at least one password hash was successfully cracked. This is an increase from 25% in 2024.