Friday, 27th November 2020

Concerns over distributed security risks

Research uncovers critical cybersecurity and compliance risks.

Skybox® Security has released research revealing that 73% of security and IT executives are concerned about new vulnerabilities and risks introduced by the distributed workforce. The report also uncovered an alarming disconnect between confidence in security posture and increased cyberattacks during the global pandemic.

To protect employees from COVID-19, enterprises rapidly shifted to make work from home possible and maintain business productivity. Forced to accelerate digital transformation initiatives, this created the perfect storm. Skybox Research Lab discovered that 2020 will be a record-breaking year for new vulnerabilities with a 34% increase year-over-year – a leading indicator for the growth of future attacks.

As a result, security teams now have more to protect than ever before. Surveying 295 global executives, the Skybox 2020 “Cybersecurity in the new normal” report found that organizations are overconfident in their security posture, and new strategies are needed to secure a long-term distributed workforce.

Key observations

  • Deprioritized security tasks increase risk: Over 30% of security executives said software updates and BYOD policies were deprioritized. Further, 42% noted reporting was deprioritized since the onset of the pandemic.
  • Enterprises can’t keep up with the pace: 32% had difficulties validating if network and security configurations undermined security posture. 55% admitted that it was at least moderately difficult for them to validate network and security configurations did not increase risk.
  • Security teams are overconfident in security posture: Only 11% confirmed they could confidently maintain a holistic view of their organizations’ attack surfaces. Shockingly, 93% of security executives were still confident that changes were correctly validated.
  • The distributed workforce is here to stay: 70% of respondents projected that at least one-third of their employees will remain remote 18 months from now.
“Traditional detect-and-respond approaches are no longer enough. A radical new approach is needed – one that is rooted in the development of preventative and prescriptive vulnerability and threat management practices,” said Gidi Cohen, co-founder and CEO, Skybox Security. “To advance change, it is integral that everything, including data and talent, is working towards enriching the security program as a whole.”
Sophos has published the Sophos 2021 Threat Report, which flags how ransomware and fast-changing att...
2020 (ISC)2 Cybersecurity Workforce Study chronicles the resiliency, outlook and perseverance of thi...
The importance of an integrated IT security strategy is steadily increasing, especially in current p...
The Internet is the new enterprise corporate network as revealed in Zscaler’s State of digital trans...
Survey results released by Enterprise Management Associates and Pulse Secure reports that 60% of org...
Sophos has introduced Sophos Rapid Response, thought to be an industry-first, fixed-fee remote incid...
BeyondTrust experts forecast future threat vectors most likely to affect organizations worldwide in...
Positive Technologies performed instrumental scanning of the network perimeter of selected corporate...