U.S. Businesses Struggling to Prioritize Under Weight of Cyber Intelligence Information
New trend analysis for 2023 compiled by Armis, the leading asset visibility and security company, shows organizations are struggling to prioritize and focus on key security projects against an onslaught of alerts, rising threats and an ever-increasing attack surface.
Competing requests from the board and executives alongside a rapid progression in digital transformation projects and compliance regulations are causing hidden risks in organizations. Business and IT leaders don’t believe they have these blind spots, and exhibit a false sense of confidence in their real-time awareness of these areas of vulnerability.
“Some of the trends we are seeing don't bode well in combating the escalation of global threats organizations are facing,” said Curtis Simpson, CISO, Armis. “A lot of progress has been made in bringing awareness and insights to organizations about the threats posed by different device types and threat actors. However, teams are struggling to effectively consume these insights in an agile manner, let alone prioritize tactical and strategic efforts with the greatest business value. The strategy of applying best practices at scale to every asset, everywhere with limited business context is no longer viable nor is it what businesses need today."
Analysis of Armis’ 2023 Cyber Security Trends and Cyber Asset Visibility survey showed the following key trends:
- The biggest cyber challenges identified this year by respondents were:
- Keeping up with threat intelligence (70%)
- Allocating cybersecurity resources and budget (47%)
- Visibility into all assets connected to the network (44%)
- Compliance and regulation (39%)
- Convergence of IT and OT (32%)
- 94% of respondents said they had a live view of all their connected assets yet when asked how often they updated the inventory, 46% said weekly, 30% said daily, 15% said monthly and 5% said quarterly.
- When asked how many devices they think are on their organization’s network, 34% said 5,000 - 15,000, 29% said 15,001-25,000, 26% said 25,001-35,000, and 10% said 35,001+. According to proprietary data from the Armis Asset Intelligence and Security Platform collected between January 1, 2023 and March 27, 2023, 60% of Armis' U.S. customer base has more than 35,000 devices on their network, while nearly a third (32%) have more than 100,000 network devices.
- 64% of respondents said they had suffered a breach or ransomware attack in the last 5 years, with 43% stating that it had been caused by employee phishing and 26% as a result of an IoT device hack. 20% of respondents said that they had suffered a breach due to a known vulnerability that had not been patched, while 12% indicated the breach was caused by an unpatched device.
- 62% of respondents registered growing concern over the threat of China-made devices in their network. However, respondents consistently ranked connected Chinese or Russian-made devices last in a list of ten challenges their organization experienced in terms of cybersecurity over the past six months.
- With the escalation in nation-sponsored cyberwarfare and given guidance from CISA, 76% of respondents stated that they will prioritize gaining full visibility into their organization’s attack surface.
- However, nearly half (48%) of respondents still use spreadsheets, like Excel or Google Sheets, to track their connected asset inventory, with 55% saying they use multiple tools.
- 6% of respondents admitted that they do not actively track unmanaged devices that are connected to their organization’s networks.
- 21% of respondents said they only monitor corporate devices.
- 33% of respondents also stated that they had 10 or more different tools to monitor their asset landscape, with 58% saying they used 5-10 different tools.
- 83% of respondents expect to connect non-traditional devices, like operational technology (OT), to their corporate network in 2023.
- Respondents ranked in order of priority the importance of securing network infrastructure equipment such as routers, switches (38%), personal devices such as laptops, mobile phones (28%), IoT devices (25%), building systems like HVAC (24%) and lastly medical.
“Organizations need to think about their cyber/tech resiliency strategy in three key steps: firstly they need a single source of asset truth across every device that is connected to their network, not just the managed devices,” continued Simpson. “Secondly, visibility provides clarity into the technical and operational debt with the greatest potential for business impact and then lastly, action the intelligence so the technology environment can be optimized in support of resiliency. Regularly repeat the final two steps to ensure a continued focus on what is most likely to disrupt critical business operations and strategies.”
The Armis Collective Asset Intelligence Engine is the world’s largest asset knowledge base tracking over three billion devices – and growing. This massive, crowd-sourced, cloud-based asset behavior knowledge base provides unique device information such as how often each asset communicates with other devices, over what protocols, how much data is typically transmitted, whether the asset is usually stationary, what software runs on each asset and more. These real-time, contextual insights enable Armis to understand not only what the asset is and what it is doing, but what it should be doing, comparing asset behavior to “known-good” baselines. When an asset operates outside of its baseline, Armis issues an alert or can automatically disconnect or quarantine an asset.
Armis will be attending the RSA Conference in San Francisco at the Moscone Center on April 24-27, 2023 and will be located in booths S-1127 & S-4411. For more details of what the company has planned at the event or to book a meeting, please visit: https://www.armis.com/rsac-2023/
Methodology
Armis gathered insights from 230 senior IT decision-makers from organizations with 500+ employees across industries including manufacturing, government, healthcare, financial services, retail, telecommunications and more. Responses were collected in March 2023.
For additional insights and more information, please visit our website to read our blog about this survey here: https://www.armis.com/blog/2023-cyber-security-trends-and-cyber-asset-visibility-survey-insights-from-armis
About Armis
Armis, the leading asset visibility and security company, provides the industry’s first unified asset intelligence platform designed to address the new extended attack surface that connected assets create. Fortune 100 companies trust our real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS), and 5G. Armis provides passive cyber asset management, risk management, and automated enforcement. Armis is a privately held company and headquartered in California.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230411005515/en/
Contact information
Media Contact:
Rebecca Cradick,
Senior Director, Global Communications,
Armis
pr@armis.com
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Protectoria Venture Signs Agreement to Propose a Decentralised Digital ID to Indonesia.7.6.2023 09:00:00 EEST | Press release
Protectoria Venture AS, https://protectoria.com/ , has together with its local partner, PT Gimle Investment Group, signed an agreement with PT INTI (Persero), the state-owned enterprise acting as a strategic trusted adviser to the central government, on proposing a decentralised digital identity infrastructure services for public entities, companies, and citizens in Indonesia. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20230606005888/en/ Foto: Protectoria The companies commit to cooperate exclusively to design, build and operate a digital decentralised identity infrastructure that can be offered towards any service provider from any sector or industry in a national roll-out. Citizens will be able to control their own data and have easy and secure access to all types of digital services in society. Protectoria Venture will provide the decentralised digital identity services based on the firm´s technology platform with archi
Hillstone Networks named a Customers’ Choice in the 2023 Gartner Peer Insights™ Voice of the Customer for Network Firewalls7.6.2023 09:00:00 EEST | Press release
Hillstone Networks, a leading provider of cybersecurity solutions, announced today that it has been included in two Gartner Peer Insights “Voice of the Customer” reports Hillstone has been recognized as a Customers' Choice vendor for Network Firewalls and named a Strong Performer for its newly released Network Detection and Resolution (NDR) solution. Gartner Peer Insights Customers' Choice distinctions are based on voluntary and verified feedback and ratings from end-user professionals who have experience purchasing, implementing, or using the products or services. “Customers have spoken and recognized our unwavering commitment to providing integrative cybersecurity solutions that have effectively delivered coverage, control, and consolidation to over 26,000 of their peers globally, in a challenging and dynamic cybersecurity landscape,” said Tim Liu, co-founder & CTO, of Hillstone Networks. “We will continue to innovate and push the boundaries of cybersecurity to protect our customers'
ReNew Announces Results for the Fourth Quarter (Q4 FY23) and Fiscal 2023, both ended March 31, 20237.6.2023 00:00:00 EEST | Press release
ReNew Energy Global Plc (“ReNew” or “the Company”) (Nasdaq: RNW, RNWWW), a leading decarbonization solutions company, today announced its consolidated IFRS results for Q4 FY23 and the fiscal year ended March 31, 2023. Operating Highlights: As of March 31, 2023, the Company’s portfolio consisted of 13.7 GWs, a 28.2% increase year on year, of which ~ 8.0 GWs are commissioned and 5.7 GWs are committed. 101 MW of Purchase Power Agreements (“PPAs”) were signed in the fourth fiscal quarter of 2023 and only ~1% of our total portfolio have Letters of Award that await a PPA. Total Income (or total revenue) for Q4 FY23 was INR 25,916 million (US$ 315 million), an increase of 47.1% over Q4 FY22. Adjusted EBITDA(2) for Q4 FY23 was INR 12,010 million (US$ 146 million), as against INR 12,787 million (US$ 156 million) in Q4 FY22. Net profit for Q4 FY23 was INR 74 million (US$ 1 million) compared to a net loss of INR 3,554 million (US$ 43 million) for Q4 FY22. Cash Flow to equity(2)(“CFe”) for Q4 was
Kenvue to Announce Second Quarter 2023 Results on July 20, 20236.6.2023 23:30:00 EEST | Press release
Kenvue Inc. (NYSE: KVUE) (“Kenvue”), the world’s largest pure-play consumer health company by revenue, today announced that its financial results for the second quarter ending July 2, 2023, will be released before market open on July 20, 2023. The company will host a conference call and webcast at 7:30 a.m. Eastern Time to report its second quarter results. The conference call can be accessed by dialing 877-407-8835 from the U.S. or 201-689-8779 from international locations. A live webcast of the conference call will be available at https://investors.kenvue.com. A replay will be available approximately two hours after the live event. About Kenvue Kenvue is the world’s largest pure-play consumer health company by revenue. Built on more than a century of heritage and propelled forward by science, our iconic brands—including AVEENO®, BAND-AID® Brand Adhesive Bandages, JOHNSON’S®, LISTERINE®, NEUTROGENA®, TYLENOL® and ZYRTEC® — are recommended by health care professionals and can be truste
Bentley Systems Announces Allen Li has Joined as General Manager, China6.6.2023 23:01:00 EEST | Press release
Bentley Systems, Incorporated (Nasdaq: BSY), the infrastructure engineering software company, today announced that Allen Li has been appointed to the new role of General Manager, China, reporting to Chief Revenue Officer Brock Ballard. Allen Li has had a long executive career at enterprise software leader SAP, including as Chief Operating Officer, China. He earned a bachelor’s degree in Engineering and a master’s in Technology Management at Harbin Institute of Technology, and then an Executive MBA from University of Mannheim Business School. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20230606006011/en/ Allen Li has been appointed to the new role of General Manager, China. Image courtesy of Bentley Systems. While Bentley’s infrastructure engineering offerings have become well established in major design institutes and owner organizations, the company is also pursuing substantial growth opportunities as a platform for softwa
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom