Nearly one-third (31%) of respondents reported 6+ intrusions, compared to only 11% last year. In particular, organizations with advanced maturity levels reported high intrusions for this cycle. All intrusion types increased compared to the previous year, except for a decline seen in malware. Phishing and compromised business email intrusions were the most common types, while the most common techniques used were mobile security breaches and web compromise.

The negative effects caused by an OT intrusion are also getting worse across the board in all impact categories. More than half of respondents (52%) saw a steep increase in degradation of brand awareness, up from only 34% in 2023. Loss of business-critical data and productivity was another notable trend (increasing from 34% to 43% year-over-year)