Armis Research Finds One-Third of Global Organizations Experienced Multiple Security Breaches in Last 12 Months
Armis, the asset intelligence cybersecurity company, today announced the findings of its Global Attack Surface Management (ASM) Research which looked into organizational trends and challenges over the past 12 months.
Research commissioned with Vanson Bourne found that global organizations are facing an unprecedented level of cyber risk due to blind spots in their environment and that security teams are being overwhelmed with significant amounts of threat intelligence data lacking actionable insights. As a result, 61% of global organizations confirmed they had been breached at least once over the last 12 months, with 31% experiencing multiple breaches during the same period. The top four countries with organizations most likely to report being breached were the U.S., Singapore, Australia and New Zealand.
“Armis continues to warn about the evolving threat landscape and the impact of malicious cyberattacks targeting global organizations, national governments, state and local entities and society overall,” said Curtis Simpson, CISO, Armis. “Our research found that there’s much room for improvement in how global organizations can protect and manage their entire attack surface. It’s not a question of if, but when, an attack will occur – especially against critical infrastructure that society so heavily relies upon.”
Armis’ 2023 Global Attack Surface Management Research was compiled leveraging insights from IT security and IT decision-makers across the U.S., U.K., Germany, France, Singapore, Australia and New Zealand.
Key findings include:
The entire organizational attack surface is not being fully monitored, introducing significant exposures and unseen cybersecurity risks.
- On an average business day, 55,686 physical and virtual assets are connected to organizational networks. Global respondents shared that only 60% of these assets are monitored, leaving 40% unmonitored.
- Employees increasingly are using their own assets in business environments, with clear gaps in the enforcement of BYOD policies: 22% of respondents report having an official BYOD policy that is not enforced across all employees, 23% say they either have guidelines that employees are encouraged to follow or admit they don’t have any policies or guidelines around BYOD.
- Organizations, on average, can only account for around 60% of their assets when it comes to knowing things like asset location or the support status of these assets. Forgotten assets, like printers, can introduce critical security gaps – especially if security updates aren’t installed or patches applied.
An influx of data without automation and prioritization of threat intelligence is hindering security and IT pros’ ability to effectively remediate threats to protect the organization.
- Twenty-nine percent of respondents report that their cybersecurity team is overwhelmed by cyber threat information. Respondents from Germany (38%) were the most likely to report this.
- Just under half (45%) of those surveyed report using 10 or more different sources to collect data relating to threat intelligence and only between 52% and 57% of the processes relating to threat intelligence are automated on average, meaning that a lot of the work needed to make use of the intelligence is a manual effort.
- Only 58% of the information gathered from threat intelligence sources is actionable, on average. Only 2% of surveyed organizations report that all of the information they gather from threat intelligence sources is actionable.
Organizations are struggling to effectively manage physical and virtual assets connected to their network using too many tools to effectively action cybersecurity plans.
- Global respondents indicated that their organizations use 11 different tools to manage assets connected to their network, while 44% admit to still using manual spreadsheets.
- Employees are able to bypass security and download applications and software onto assets without the knowledge of IT or security teams. Three-quarters (75%) of global organizations report that this happens at least some of the time, with a quarter (25%) reporting that this is happening all the time. Without complete control, management and/or visibility over these assets, organizations are facing even more risk.
“Unfortunately, there is a correlation between the large percentage of the attack surface remaining unmonitored and the high rate of breaches experienced over the past year,” continued Simpson. “Unmanaged assets represent the growing attack surface yet organizational cyber tools and programs lack the visibility to understand and manage top cyber risks, exposures and threats. Threat actors are exploiting these material blind spots to execute today’s most impactful cyberattacks. It’s critical that IT departments modernize their approach by consolidating disjointed solutions and leveraging the latest innovative technologies to enable teams with real-time, automated insights and actionable plans to help safeguard mission-critical assets from cyber threats.”
“Our research found that there’s much room for improvement in how global organizations manage their threat landscape,” said Katie Haslett, Research Consultant, Vanson Bourne. “Respondents surveyed for this report agreed with that assessment, sharing that proactively increasing visibility into the attack surface and further defining policies and procedures surrounding virtual and physical assets is an area of growth for their organization.”
To read the full research report from Armis, including a comprehensive breakdown for each region, please visit the microsite: https://www.armis.com/attack-surface-management
To learn about how Armis Centrix™, the AI-powered cyber exposure management platform, is enabling organizations to address these critical cybersecurity challenges, please visit: https://www.armis.com/platform/armis-centrix/
Methodology and Demographics
Armis commissioned independent market research agency Vanson Bourne to conduct research into attack surface management within enterprise organizations. The study surveyed 900 IT security and IT decision-makers in May and June 2023 from organizations with 1,000 or more employees across the U.S., U.K., Germany, France, Singapore, Australia and New Zealand. Respondents were from organizations across all public and private sectors. All interviews were conducted using a rigorous multi-level screening process to ensure that only suitable candidates were given the opportunity to participate.
Armis, the asset intelligence cybersecurity company, protects the entire attack surface and manages the organization's cyber risk exposure in real time. In a rapidly evolving, perimeter-less world Armis ensures that organizations continuously see, protect and manage all critical assets. Armis secures Fortune 100, 200 and 500 companies as well as national governments, state and local entities to help keep critical infrastructure, economies and society stay safe and secure 24/7. Armis is a privately held company headquartered in California.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
Senior Director, Global Communications
About Business Wire
(c) 2018 Business Wire, Inc., All rights reserved.
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
AudioCure Pharma Receives Hearing Technology Innovator Award for its Innovative Compound AC102 for the Treatment of Sudden Hearing Loss7.12.2023 10:05:00 CET | Press release
AudioCure Pharma GmbH announced today that it has been awarded for its innovative compound AC102 by the Hearing Technology Innovator Awards™, honoring technological innovation and breakthroughs in the hearing industry. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20231205308215/en/ Dr. Reimar Schlingensiepen (left, CEO of AudioCure Pharma GmbH) and Prof. Hans Rommelspacher (founder and CSO) receive the award in the therapeutics category. (Photo: AudioCure Pharma) AudioCure is developing the therapeutic small molecule AC102 to treat hearing impairments including Sudden Sensorineural Hearing Loss (SSNHL). While corticosteroids are the standard treatment, health authorities have never approved them as there is no clear evidence of a clinically relevant benefit to the patient. AudioCure is conducting extensive research to develop targeted and effective therapies to address this high unmet medical need. In preclinical hearing los
FourKites Unveils Supply Chain Training Platform to Help Customers Maximise Value and Increase ROI7.12.2023 10:03:00 CET | Press release
Leading supply chain visibility provider FourKites today announces the availability of FourKites Academy, a comprehensive training platform designed to help supply chain professionals advance in their careers and business goals with high-quality, industry-recognised training resources. In addition to offering a Council of Supply Chain Management Professionals (CSCMP)-accredited course, the Academy helps FourKites customers and their extended ecosystem — including third-party logistics providers (3PLs), carriers, brokers and transportation management partners — keep pace with FourKites’ latest innovations and derive maximum value from the platform. According to research from the 2023 MHI Annual Industry Report, hiring and retaining qualified workers is the top challenge for supply chain leaders, with 41% indicating that reskilling and training their workforce is key to preparing for future disruptions. “Through FourKites Academy, we are empowering supply chain professionals with new ski
The 5th World Media Summit (Yunnan Branch) and the 2nd Yunnan International Communication Forum Kicks off in Kunming, China7.12.2023 09:43:00 CET | Press release
The 5th World Media Summit (Yunnan Branch) and the 2nd Yunnan International Communication Forum kicked off on December 6, 2023, in Kunming, the capital city of Yunnan Province in Southwestern China, gathering more than 300 representatives of around 80 institutions, including media outlets, international organizations and think tanks, from nearly 30 countries and regions . This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20231206795498/en/ The 5th World Media Summit (Yunnan Branch) and the 2nd Yunnan International Communication Forum kicks off in Kunming on Dec. 5 (Photo: Business Wire) The opening of the summit on December 5 witnessed the adoption of the Kunming Initiative, the launch of a theme activity named "A Lifestyle Called Yunnan", as well as the release of the list of trending words for international communication generated by Xinhuanet. According to the agenda of the summit, the attendees will discuss a variety of topic
euNetworks’ CEO delivers insight at COP28 on the company’s sustainability focus7.12.2023 09:00:00 CET | Press release
euNetworks Group Limited (“euNetworks”), a Western European bandwidth infrastructure company, was recently featured in an interview series with leaders from across industries undertaken during the United Nations Climate Conference (COP28) in Dubai. The series of interviews captures lessons learned, sustainability success stories and key messages for the future from leaders across the energy, technology and telecom, manufacturing and finance industries. euNetworks has also released its latest Sustainability Report, detailing the company’s commitment to sustainability and substantial progress over the last year. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20231207410743/en/ Paula Cogan, CEO of euNetworks (Photo: Business Wire) euNetworks builds and invests in city and long haul fibre networks to connect key European data centres and data hubs. The company owns and operates deep fibre networks in 17 cities and also operates a
Ecopol Announces Strategic Investment in JRF Technology7.12.2023 09:00:00 CET | Press release
Ecopol S.p.A. (“Ecopol”), a leading developer and producer of innovative biodegradable films and delivery systems, announced today it has completed a strategic investment in JRF Technology LLC (“JRF” or the “Company”), a leading developer of water-soluble polymer and edible film technology. Founded in 2007 and based in Tampa, Florida, JRF is an innovation and R&D organization focused exclusively on water-soluble polymer and edible film technology. From its state-of-the-art GMP laboratory, JRF provides innovation services to clients ranging from leading multinational consumer goods companies to innovative start-ups. The Company has unique expertise in product development and process technology to convert water-soluble polymers into value-added commercial products. JRF will continue to be led by President James Rossman and Managing Director Richard Fielder and will serve as Ecopol’s U.S. R&D Center of Excellence, complementing its R&D capabilities in Italy. “Our strategic investment in J