Armis Identifies the Riskiest Assets Introducing Threats to Global Businesses
Armis, the leading asset visibility and security company, today released new research identifying the riskiest connected assets posing threats to global businesses. Findings highlight risk being introduced to organizations through a variety of connected assets across device classes, emphasizing a need for a comprehensive security strategy to protect an organization’s entire attack surface in real-time.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20230905844605/en/
Source: Data from the Armis Asset Intelligence Engine collected between August 2022 and July 2023.
“Continuing to educate global businesses about the evolving and increased risk being introduced to their attack surface through managed and unmanaged assets is a key mission of ours,” said Nadir Izrael, CTO and Co-Founder of Armis. “This intelligence is crucial to helping organizations defend against malicious cyberattacks. Without it, business, security and IT leaders are in the dark, vulnerable to blind spots that bad actors will seek to exploit.”
Armis’ research, analyzed from the Armis Asset Intelligence Engine, focuses on connected assets with the most attack attempts, weaponized Common Vulnerabilities and Exposures (CVEs) and high-risk ratings to determine the riskiest assets.
Assets With The Highest Number of Attack Attempts
Armis found the top 10 asset types with the highest number of attack attempts were distributed across asset types: IT, OT, IoT, IoMT, Internet of Personal Things (IoPT) and Building Management Systems (BMS). This demonstrates that attackers care more about their potential access to assets rather than the type, reinforcing the need for security teams to account for all physical and virtual assets as part of their security strategy.
Top 10 device types with the highest number of attack attempts:
- Engineering workstations (OT)
- Imaging workstations (IoMT)
- Media players (IoT)
- Personal computers (IT)
- Virtual machines (IT)
- Uninterruptible power supply (UPS) devices (BMS)
- Servers (IT)
- Media writers (IoMT)
- Tablets (IoPT)
- Mobile phones (IoPT)
“Malicious actors are intentionally targeting these assets because they are externally accessible, have an expansive and intricate attack surface and known weaponized CVEs,” said Tom Gol, CTO of Research at Armis. “The potential impact of breaching these assets on businesses and their customers is also a critical factor when it comes to why these have the highest number of attack attempts. Engineering workstations can be connected to all controllers in a factory, imaging workstations will collect private patient data from hospitals and UPSs can serve as an access point to critical infrastructure entities, making all of these attractive targets for malicious actors with varying agendas, like deploying ransomware or causing destruction to society in the case of nation-state attacks. IT leaders need to prioritize asset intelligence cybersecurity and apply patches to mitigate this risk.”
Assets With Unpatched, Weaponized CVEs Vulnerable to Exploitation
Researchers identified a significant number of network-connected assets susceptible to unpatched, weaponized CVEs published before 1/1/2022. Zooming in on the highest percentage of devices of each type that had these CVEs between August 2022 and July 2023, Armis identified the list reflected in Figure A. Unpatched, these assets introduce significant risk to businesses.
Assets with a High-Risk Rating
Armis also examined asset types with the most common high-risk factors:
- Many physical devices on the list that take a long time to replace, such as servers and Programmable Logic Controllers (PLCs), run end-of-life (EOL) or end-of-support (EOS) operating systems. EOL assets are nearing the end of functional life but are still in use, while EOS assets are no longer actively supported or patched for vulnerabilities and security issues by the manufacturer.
- Some assets, including personal computers, demonstrated SMBv1 usage. SMBv1 is a legacy, unencrypted and complicated protocol with vulnerabilities that have been targeted in the infamous Wannacry and NotPetya attacks. Security experts have advised organizations to stop using it completely. Armis found that 74% of organizations today still have at least one asset in their network vulnerable to EternalBlue – an SMBv1 vulnerability.
- Many assets identified in the list exhibited high vulnerability scores, have had threats detected, have been flagged for unencrypted traffic or still have the CDPwn vulnerabilities impacting network infrastructure and VoIPs.
- Half (50%) of pneumatic tube systems were found to have an unsafe software update mechanism.
Additional research from Armis is available on the riskiest OT and ICS devices across critical infrastructure industries as well as the riskiest medical and IoT devices in clinical environments.
Learn more about Armis at www.armis.com.
Armis, the leading asset visibility and security company, provides the industry’s first unified asset intelligence platform designed to address the new extended attack surface that connected assets create. Fortune 100 companies trust our real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS), and 5G. Armis provides passive cyber asset management, risk management, and automated enforcement. Armis is a privately held company and headquartered in California.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
Senior Director, Global Communications
About Business Wire
(c) 2018 Business Wire, Inc., All rights reserved.
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Incyte to Present Multiple Studies from Dermatology Portfolio at 2023 European Academy of Dermatology and Venereology (EADV) Congress29.9.2023 19:43:00 CEST | Press release
Incyte (Nasdaq:INCY) today announced multiple abstracts featuring new data from across its dermatology portfolio have been accepted for presentation at the upcoming European Academy of Dermatology and Venereology (EADV) Congress 2023 held October 11-14 in Berlin. “We are pleased to add to the data supporting the use of ruxolitinib cream for patients living with vitiligo and atopic dermatitis (AD) through two late-breaking presentations – one on prolonged use of treatment in vitiligo patients with limited or no initial response, and the full results of our TRuE-AD3 trial in pediatric AD,” said Jim Lee, M.D., Ph.D., Group Vice President, Inflammation & Autoimmunity, Incyte. “Collectively, the data at this year's Congress, which also include new late-breaking data for povorcitinib in vitiligo, emphasize our ongoing efforts to advance treatment options for the Dermatology community." Key abstracts from Incyte-sponsored programs include: Late-breaking Oral Presentations Vitiligo Efficacy an
Q4 Inc. Recognized as one of Canada’s Top Growing Companies by The Globe and Mail29.9.2023 16:30:00 CEST | Press release
Q4 Inc. (TSX: QFOR) (“Q4” or “the Company”), the leading capital markets access platform, is pleased to announce their ranking on the 2023 Report on Business of Canada’s Top Growing Companies. Canada’s Top Growing Companies ranks Canadian companies on three-year revenue growth. Q4 earned its spot with three-year growth of 150%. “We are honored to be recognized as one of Canada’s Top Growing Companies for the fourth consecutive year by The Globe and Mail,” remarked Darrell Heaps, Founder and CEO of Q4. “We are proud of the growth we have achieved as a company and this recognition is a true reflection of our dedication to helping our clients win in the capital markets through innovative technology on the Q4 Platform.” Canada’s Top Growing Companies is an editorial ranking that was launched in 2019. It aims to bring the accomplishments of innovative businesses in Canada to the forefront. In order to qualify for this voluntary program; companies had to complete an in-depth application proc
GEDi Cube and Renovaro Biosciences Sign Definitive Agreement to Combine29.9.2023 15:15:00 CEST | Press release
GEDi Cube Intl Ltd. (GEDi Cube), an AI medical technology company, and Renovaro Biosciences Inc. (NASDAQ:RENB) (Renovaro), an advanced, preclinical biotechnology firm in cell, gene and immunotherapy, have signed a definitive agreement to combine, in which GEDi Cube will become a wholly-owned subsidiary of Renovaro in a stock-for-stock acquisition (the “Transaction”). If completed, the Transaction will result in a combined company that will offer advanced early diagnosis and early identification of recurring cancer as well as potential therapies for several critical diseases such as pancreatic cancer and other solid tumors with poor life expectancy. The combined company will have a unique advantage: Renovaro Biosciences’ pre-clinical and clinical trial data could be utilized to accelerate GEDi Cube’s AI capabilities that, in turn, could potentially help to accelerate Renovaro’s development of potential new therapies. AI will be used to advance the fields of diagnosis and treatment with
Offshore Windfarm Hollandse Kust Zuid Inaugurated29.9.2023 13:53:00 CEST | Press release
Today, Dutch King Willem-Alexander jointly with the board members of Vattenfall, BASF, and Allianz officially inaugurated the offshore wind farm Hollandse Kust Zuid 1-4. The wind farm is in the North Sea, 18-36 kilometers off the Dutch coast between the towns of Scheveningen and Zandvoort. The 139 turbines have a total capacity of 1.5 GW, making it one of the largest offshore wind farms in the world. The annual electricity production is expected to equal the consumption of 1.5 million households. Hollandse Kust Zuid is owned by Vattenfall, BASF, and Allianz. The wind farm is expected to be fully operational in 2024 and will be serviced out of the port of IJmuiden. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20230929518869/en/ Inauguration Hollandse Kust Zuid wind farm. From left to right: Helene Biström (Senior Vice President, Head of Business Area Wind Vattenfall), Martijn Hagens (CEO Vattenfall Netherlands), His Majesty K
The Estée Lauder Companies Launches 2023 Breast Cancer Campaign: Beautifully United to Help End Breast Cancer29.9.2023 13:00:00 CEST | Press release
For more than 30 years, The Estée Lauder Companies’ Breast Cancer Campaign (The Campaign) has been dedicated to advancing the possibility of a breast cancer-free world for all. This October, The Estée Lauder Companies (ELC) honors Breast Cancer Awareness Month by launching The Campaign in support of the global breast cancer community. As ELC’s largest corporate social impact program, The Campaign continues to inspire purpose-driven action and is a cornerstone of the company’s social investments in women’s advancement, health and education. Through The Campaign, ELC has also been a longstanding supporter of women in science, research and medicine – funding numerous grants and programs around the world and accelerating opportunities for women in STEM. The Campaign was founded by Evelyn H. Lauder in 1992 with the launch of the iconic Pink Ribbon. At a time when breast cancer wasn’t spoken about openly, Evelyn and ELC saw an opportunity to bring awareness to the disease and address stigmas