Lack of visibility is the biggest challenge for cybersecurity teams

No Comments

New research from Sevco Security shows that more than 10 percent of enterprise IT assets are missing endpoint protection, and that roughly five percent are not covered by enterprise patch management solutions.

Nearly 20 percent of Windows servers lack endpoint protection, far more than Windows clients and MacOS assets, which are just over 10 percent.

However, MacOS assets are two to three times more likely to be missing patch management than Windows clients and servers. This means 14 percent of Mac devices connected to corporate networks are operating outside of enterprise patch management programs.

The report's authors note, "An increasing number of modern attacks involve targeting unpatched servers and devices. Most enterprises have robust patch management tools that are effective at what they're designed to do: applying patches to known IT assets. Companies are not getting breached because their patch management tools are ineffective. They're getting breached because it’s impossible to patch an unknown asset, as is the case with five percent of IT assets covered in this data set."

There's also a looming threat from stale assets, -- those that appear in the security control console as being installed on the device but actually haven't checked in for at least two weeks. The data finds that roughly three percent of all IT assets are 'stale' in terms of endpoint protection, while one percent of all IT assets are stale from the perspective of patch management coverage.

These are basically 'ticking timebombs' because the organization believes these assets have an agent installed on them and are therefore covered, but if they're not checking in they’re not up to date with the latest patches.

The report concludes, "Today's hackers have a sophisticated understanding of where vulnerabilities exist across most enterprises, and they rely on unprotected, out-of-date IT assets as the easiest path to enterprise data. Securing your organization against the risks of vulnerable IT assets is a complex and multi-layered process. But until security teams can create a comprehensive, accurate IT asset inventory to mitigate against the threat of invisible or stale assets, attackers will continue to have the upper hand."

You can find out more on the Sevco site.

Image credit: hjalmeida/depositphotos.com

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

We're not going to deal with today's IT admin issues with yesterday's technology

AI-powered data management: Navigating data complexity in clinical trials

Workforces need the skills to defend against AI-enabled threats

Overcoming real-time data integration challenges to optimize for surgical capacity and better care

From Windows XP to Windows 10 -- How Microsoft's end-of-life nag screens have changed

Pour one out for the Linux homies: Fedora 40 released

Phishing attacks up 60 percent driven by AI

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

62 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

20 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

17 Comments

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

17 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

16 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

12 Comments

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

10 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.