Top cyber threat concerns were analyzed in a recent report by GetApp.
The report reveals that 37% of U.S. IT professionals view AI-enhanced attacks as their primary concern for 2025, with AI-enhanced malware cited as the top AI-generated threat by 60% of global IT professionals. While phishing and ransomware attacks remain prevalent and pervasive, the increasing sophistication of AI-augmented threats signals the need for businesses to prioritize new defensive strategies.
In 2024, ransomware attacks affected 44% of U.S. companies, with 43% of those paying a ransom. However, 36% of businesses were able to recover their data without payment, indicating improvements in incident response and decryption capabilities.
Phishing continues to plague businesses with 87% of U.S. organizations reporting phishing attempts in the past 12 months. Alarmingly, 74% of employees who received a phishing email clicked on malicious links, highlighting the ongoing need for security awareness training.
As more businesses adopt cloud solutions, 56% of data breaches in the U.S. were attributed to software vulnerabilities, emphasizing the importance of securing cloud-based infrastructure.
The U.S. fared better than its global counterparts in terms of data breaches, with 54% of businesses reporting them in 2024 compared to the global average of 62%. Despite this, over half of U.S. organizations still experienced a breach, underscoring the need for continued vigilance.
Over half (51%) of U.S. companies have implemented MFA for all applications, higher than the global average of 44%.