Check Point Research recently revealed its Global Threat Intelligence insights for May 2026. Despite a short-term decline in attack frequency, organisations still confronted an average of 2,055 cyber attacks weekly, marking a 2% increase compared to the previous year.
May's statistics hint at a momentary reprieve in attack volumes rather than a prolonged decrease. Although there was a moderation in overall threats, the upward trend in ransomware and GenAI-related data exposure persists, revealing a dynamic threat landscape.
Notably, the Education sector emerged as the most vulnerable industry, experiencing 4,641 weekly attacks per organisation. Resource limitations and expansive user environments make educational institutions prime targets. Government bodies (with 2,620 weekly attacks), and Telecommunications (2,583) followed closely. Meanwhile, sectors such as Agriculture, Hospitality, Travel, and Construction witnessed notable rises in attack attempts, reflecting widening digital vulnerabilities.
Latin America continues to be the most targeted region, with 3,149 weekly attacks per organisation, spurred by rapid digitalisation and uneven cybersecurity progress. Africa experiences a dip in attack numbers but remains a significant target due to consistently high volumes.
The challenges associated with GenAI adoption are highlighted by statistics showing that one out of 25 GenAI prompts submitted from enterprise arenas poses a high risk of data leaks. The growing use of GenAI tools signals a potential increase in accidental data exposure, as security and governance controls struggle to keep pace.
Ransomware maintains its position as a formidable risk, with a yearly surge in activity recorded throughout May. With 698 publicly documented ransomware incidents (a 48% year-on-year increase), sectors such as Business Services, Consumer Goods, and Industrial Manufacturing are at heightened risk. North America records the highest share, followed by Europe and APAC.
Meanwhile, the ransomware ecosystem is dominated by just a few groups. Qilin stands out as the most active, followed by The Gentlemen and DragonForce. This duality of concentrated dominance and expanding threats underscores a resilient yet challenging landscape.
