Just yesterday, global cybersecurity training firm the SANS Institute released its 2018 SANS Endpoint Security Survey report. This study surveyed IT professionals from around the world about the current state of endpoint security and endpoint security solutions. Their findings were quite surprising.
Some of the key findings from the 2018 SANS Endpoint Security Survey report include:
- 42% of IT professionals said they had suffered a breach on their endpoints.
- 20% said they did not know if they had been breached.
- 82% of those that knew of a breach said it had involved a desktop.
- 69% cited corporate laptops as the target.
- 42% cited employee-owned laptops.
- Only 47% of antivirus capabilities detected threats.
- 26% were detected by endpoint detection and response (EDR) capabilities.
For those exploited endpoints, the top threat vectors were found to be web “drive-bys” (63%), social engineering and phishing attacks (53%), and ransomware (50%).
At the same time, the 2018 SANS Endpoint Security Survey report discovered a discrepancy between the deployment of endpoint security solutions and the use of their capabilities:
- Of the IT professionals that had acquired next-gen endpoint security solutions, 37% haven’t implemented their full capabilities.
- 49% of those next-gen security solutions possess fileless malware detection features, but 38% of IT professionals haven’t implemented them.
In a statement, Lee Neely—SANS Analyst and the survey’s author—said: “the diversity and quantity of endpoints in the modern enterprise are driving the need for more automation and predictive capabilities. While [organizations] are purchasing solutions to keep ahead of the emerging cyber threats, they appear to fall short on implementing the key purchased capabilities needed to protect and monitor the endpoint.”
Once a breach is detected, 63% of respondents said that it takes 24 hours or less to remediate a single compromised endpoint and 67% it takes under a week to remediate a full security incident.
You can read the full 2018 SANS Endpoint Security Survey report here.
- Endpoint Security Providers: Best of 2023 and Beyond - October 31, 2022
- Best Books for Defending the Digital Perimeter - September 14, 2021
- Apple Vulnerability Places All of Apple iOS at Risk - September 14, 2021