Cyber Attack Statistics

National security organizations faced an average of 137 attempted or successful cyberattacks per week in 2025, up from 127 cyberattacks per week in 2024.

Cyberattacks against agencies in the U.S. have surged 25% in the last year and occur more frequently on a weekly basis than in the UK.

Web applications are the most attacked service type at 61%, up from 41% in 2024; remote management protocols account for 15%.

72% of CISOs agreed that their role has evolved to include leading their organization’s ability to recover continuity following a cyberattack or security incident.

In 2025, 57% of CISOs reported that their organizations took more than 4.5 days on average for full remediation and recovery after a cyber incident.

In 2025, not a single Chief Information Security Officer (CISO) reported being able to recover from a cyber incident within a day.

In 2025, 19% of CISOs indicated that recovery efforts from cyber incidents extended as long as two weeks.

48% of New Yorkers stated they have been the victim of a cyberattack at least once.

43% of SMBs report they experienced a cyberattack in the past 5 years.

89% of schools experienced at least one cyber incident in the past year, primarily phishing, unauthorized access, and malware.

27% of SMBs said they were targeted in the past 12 months.

64% of SMB owners reportedly recovered quickly from a cyber attack.

3% of SMB owners faced severe, lasting damage following a cyber attack.

99% of organizations experienced at least one attack on their AI systems in the past year.

83% of US organizations reported a rise in cyberattacks.

47% of CISOs report being completely confident that AI-powered security tools can effectively defend against autonomous, AI-driven cyberattacks.

70% of organizations experienced at least one material third-party cyber incident in the past year.

Resilience Scores among organizations have remained statistically flat since 2023, with an average decline of 3%.

Senior participation in AI-scenario labs dropped by 14% year over year.

Only 41% of organizations include non-technical roles in cyber incident simulations.

60% of all cyber training focuses on vulnerabilities that are more than two years old.

The average containment time for simulated cyber attacks is 29 hours.

94% of organizations globally believe they are prepared for a major cyber incident.

Decision accuracy among teams responding to cyber incidents is only 22%.

58% of IT and security leaders believe it would take at least two days to recover and achieve full-service operations post-compromise

In 2025, only 28% of IT and security leaders believed they could fully recover from a cyber incident in 12 hours or less, down from 43% in 2024

44% of retailers reported experiencing a significantly higher volume of attacks in 2025.

92% of organizations reported experiencing legal, regulatory, or compliance consequences, including fines, lawsuits, or other enforcement actions.

76% of organizations have experienced at least one material cyberattack.

70% of publicly traded companies reported adjusting earnings or financial guidance after a cyberattack.

68% of publicly traded companies said they observed an impact on their stock price after a cyberattack.

73% of privately held firms redirected budgets from innovation and growth initiatives after a cyberattack.

38% of all reported cyber incidents in the EU in 2024 targeted the public administration sector.

Cybercrime operators accounted for approximately 16% of cyber incidents in the EU in 2024.

Cyberespionage campaigns constituted 2.5% of all reported cyber incidents in the EU in 2024.

Data breaches accounted for 17.4% of cyber incidents affecting public administration in the EU in 2024.

69% of cyber incidents in 2024 targeted central governments in the EU.

60% of all reported cyber incidents in 2024 were Distributed Denial-of-Service (DDoS) attacks.

Hacktivists were responsible for nearly 63% of cyber incidents in the EU in 2024.

13% of CISOs oversee 50 or more security tools.