- The 15 best Black Friday Target deals 2024
- This fantastic 2-in-1 laptop I tested is highly recommended for office workers (and it's on sale)
- This Eufy twin-turbine robot vacuum is a steal at $350 for Black Friday
- The robot vacuum that kept my floors free of muddy paw prints this fall is $600 off
- Here's how to get the ultimate Kindle bundle for $135 this Black Friday (plus more ways to mix and match deals)
Misconfigurations drive 80% of security exposures
A report from XM Cyber analyzes more than 40 million exposures in order to provide a thorough understanding of the current exposure landscape. The report found that 80% of exposures are caused by identity and credential misconfigurations. Out of these exposures, one-third of them put critical assets at risk of a breach.
According to the report, a majority of the exposure is within an organization’s active directory, a critical component for connecting users to network resources. However, it is also a target for malicious actors seeking access and elevated privileges. Misconfigurations and credential attacks are the top exposures, creating blind spots that conventional security tools can often miss. This includes issues with resetting login information or managing members. Furthermore, inadequate endpoint hygiene is an issue in many environments with cached credentials or lacking EDR coverage on more than 25% of devices. This provides malicious actors with initial entry points.
Cloud environments are also at risk of exposure. The report found that 56% of exposures that impact critical assets are within cloud platforms. Malicious actors can travel between on-premises systems and cloud environments with relative ease, thus compromising critical cloud assets.
