IRIS 2025

Explore the latest cyber risk shifts, highlighting record ransomware activity and the trends shaping what comes next.

Download report Get member exclusives

Inside the Shifting Threat Landscape

IRIS 2025 analyzes long-term cyber incident patterns to show where risk is increasing, where it’s fading, and where new exposures may emerge. These insights help organizations move beyond headlines to understand how today’s changes translate into real-world impact.

Key Findings

Incidents Are Rising Fast
Significant security incidents have increased 650% over the past 15 years.

Cyber Events Are Far More Likely
The annual likelihood of a cyber event has nearly quadrupled since 2008—and more than doubled for small and midsize businesses.

Financial Losses Are Escalating
Median losses from security incidents have increased 15×, rising from $190K to nearly $3M, with extreme events reaching $32M.

Large Enterprises Face Higher Targeting Rates
When adjusted for the number of organizations, the largest corporations experience cyber incidents at a rate 620× higher.

Attack Methods Are Rapidly Evolving
Credential compromise remains the most common entry point, while web-application attacks and third-party breaches are rising sharply.

Download full report

Get exclusive content, sector-specific updates, and expert commentary

Sign up now

Testimonials

  • “I can never say enough good things about Cyentia Institute research. Everyone should be diving into this and signing up for Cyentia membership!”
    Daniel Stone, Technology Risk Strategy Advisor

Sign-Up for the Cyentia
Cyber Risk Chronicles Newsletter

Be the first to explore exclusive reports, industry trends, and data-driven strategies designed to empower decision-making.

Options

Request an IRIS-Style Analysis Tailored to Your Organization

Share the questions or risk areas you’d like explored, and we’ll follow up with data-driven insights and benchmarks designed to inform better decisions.

Request a Demo