More Cybersecurity Spending Does Not Equate to Safer Businesses: Report

The top findings reveal that many organizations lack full awareness of their assets and exposures.

Marina M Headshot
Marina Mayer
Jun 26, 2025
CYE
Adam121 Adobe Stock 315095274
adam121 AdobeStock_315095274

Data from CYE’s 2025 Cybersecurity Maturity Report reveals that despite an uptick in cybersecurity spending, organizations still struggle to keep up with the growing complexity of risks, tools, and compliance demands.

“Since the release of our first Cybersecurity Maturity Report in 2023, the threat landscape has continued to evolve at a relentless pace and we are unfortunately seeing the same mistakes being made year after year,” says Reuven Aronashvili, founder and CEO of CYE. “This report should serve as a wakeup call that we’re never done when it comes to cyber resilience. Resilience should be a continuous cycle with clear visibility of the organization’s specific attack surface in context of the imminent cyber threats and vulnerabilities that are most likely to be exploited by attackers within the entire organizational environment.”

Key takeaways:

 

●       The top findings reveal that many organizations lack full awareness of their assets and exposures. For instance, according to Vanta, over 75% of companies admit to poor visibility into IT assets, and that directly translates into higher security risks.

●       Countries like Japan and Norway yet again achieved higher cyber readiness than larger nations like the United States or UK, underscoring that well-coordinated national strategies and investments in planning cant yield better incident response outcomes than budget alone.

●       Many of the most critical findings in this year’s report—weak password policies, unpatched systems, etc.—are foundational issues. In fact, CYE’s Cost of Breach dataset found an estimated 81% of corporate breaches are linked to stolen or weak passwords.

●       In 2025, Verizon reported that third-party involvement in breaches doubled to 30%[YK1] . Yet, many companies still lack formal methods to identify and manage cyber risks posed by external vendors and suppliers, leaving a significant blind spot in their overall cybersecurity strategy.

●       Half (50%) of businesses still do not have a documented business continuity plan in place and disaster recovery plans remain a weakness.

Latest in Risk/Compliance
Caroline Adobe Stock 1110942936
apexanalytix Unveils Real-Time Tariff Risk Intelligence Solution
June 26, 2025
Andrii Adobe Stock 1222539989
Major Tech Companies to Diversity Supply Chains Away from China: Everstream Analytics
June 26, 2025
Siwakorn1933 Adobe Stock 318438956
National Logistics Day Underscores Supply Chain Fraud Crisis in U.S. Supply Chain
June 26, 2025
Leonid Adobe Stock 501221203
Tariffs More Disruptive to Electronics Supply Chain Than the Pandemic: Supplyframe
June 26, 2025
Related Stories
Adam121 Adobe Stock 315095274
Risk/Compliance
KEVs, KEVs Linked to Ransomware, and Insecure Internet Exposure to be Pervasive: Claroty Report
Ar130405 Adobe Stock 90554856
Risk/Compliance
Aravo’s Risk Scoring to Provide Greater Visibility in Third-Party Risk
Pexels Brainstorming
Risk/Compliance
Stibo Systems’ Report Reveals Trust Gap Between Manufacturers, Data Systems
Nino Lavrenkova Adobe Stock 653191103
Risk/Compliance
Cyolo Expands Secure Remote Access Coverage for OT and Cyber-Physical Systems
More in Risk/Compliance
AI/AR
apexanalytix Unveils Real-Time Tariff Risk Intelligence Solution
apexanalytix
The supplier risk management solution now includes tariff risk monitoring.
Caroline Adobe Stock 1110942936
Sourcing Solutions
Major Tech Companies to Diversity Supply Chains Away from China: Everstream Analytics
Everstream Analytics
The research reveals how escalating trade tensions, rising labor costs, and ongoing tariff considerations have accelerated strategic supplier diversification.
Andrii Adobe Stock 1222539989
3PL/4PL
National Logistics Day Underscores Supply Chain Fraud Crisis in U.S. Supply Chain
Transportation Intermediaries Association (TIA)
According to TIA’s latest report, freight fraud has skyrocketed by 1,500% since 2021, costing the economy $35 billion annually.
Siwakorn1933 Adobe Stock 318438956
Risk/Compliance
CYE
Regulations
Tariffs More Disruptive to Electronics Supply Chain Than the Pandemic: Supplyframe
Supplyframe
This year saw the highest-ever reading in the history of the Commodity IQ Lead Time Index. This recent spike in lead times is even more severe than the increase seen late in 2020, nine months after COVID-19 was officially declared a pandemic.
Leonid Adobe Stock 501221203
Ocean Ports & Carriers
Could Reshoring Make Tariffs More Cost-Effective for U.S. Businesses?
Bank of America
Half of respondents to a BofA Global Research proprietary survey expect industrials/manufacturing to record the greatest shift to the United States relative to other sectors over the shortest horizon.
Freshidea Adobe Stock 1222040874
Procurement Software
Geopolitical Risk Top Concern for Procurement Leaders: SAP-Sponsored Study
SAP
This study underscores procurement’s growing influence in advancing AI adoption and sustainability performance.
Tierney Adobe Stock 230441943
Fleet Management
Fleetworthy Launches Expedited Inspection Feature to Automate HOS Transfers
Fleetworthy (formerly known as Bestpass-Fleetworthy Solutions)
Nevada is the first state to adopt Expedited Inspection with Drivewyze by Fleetworthy to automate HOS transfers and reduce delays and violations at inspection sites.
Fleetworty Exepedited
Software Solutions
Deposco Launches AI-Powered Tariff Tracker
Deposco Inc.
The Tariff Tracker Dashboard leverages real-time market intelligence from the company's Bright Suite platform to help businesses proactively respond to evolving trade policies.
Deposco Tariff Tracker Featured Image
Regulations
Private Fleets Put Companies in the Driver’s Seat on Compliance
CPC Logistics
To gain more control over their emissions—and ensure they follow environmental regulations—numerous companies have started or expanded their private fleets.
5m3photos Adobe Stock 179735764
Manufacturing
U.S.-Based Suppliers to Be Hit Hardest by Tariffs: Coupa Survey
Coupa
Almost half (42%) of U.S.-based suppliers believe that tariffs will be the greatest threat to their business for the upcoming holidays.
Andrii Adobe Stock 1222539989
Risk/Compliance
KEVs, KEVs Linked to Ransomware, and Insecure Internet Exposure to be Pervasive: Claroty Report
Claroty
The exposure level of these devices provides adversaries with easily accessible entry points that leave the door open to costly and potentially dangerous disruptions.
Adam121 Adobe Stock 315095274
Page 1 of 74
Next Page