Tuesday, December 6 2022

As remote workers prepare to return to the office—often bringing their personal devices—risk leaders face a new set of challenges in securing endpoints. A recent report warned that the amount of sensitive data contained on enterprise devices increased by 10% since the pre-COVID era.

Absolute Software analyzed data from approximately five million enterprise devices. The company’s endpoint risk report found 73% of the enterprise devices analyzed contained sensitive data such as Protected Health Information (PHI) and Personally Identifiable Information (PII). Of the devices containing high levels of sensitive data, 23% contained poor encryption controls. The amount of sensitive data contained per device on average increased by 10% as the pandemic prompted a transition to remote work.

The report warned of unaddressed vulnerabilities, increased sensitive data on devices, higher endpoint complexity, and compromised security controls.

Patching delays continue to plague enterprises. Researchers noted that over 40% of the Windows 10 devices analyzed were operating on version 1909. Last month, Microsoft ceased service updates for the version, which is known to have more than 1,000 vulnerabilities.

Many industries, including healthcare, rely on software that is still incompatible with current operating systems. As the FBI continues to warn of increased ransomware activity targeted the healthcare sector, among other industries, the report emphasized endpoint security control. The findings demonstrate the importance of “resilient endpoints and applications in the evolving ‘work from anywhere’ era,” said Absolute president and chief executive Christy Wyatt.

In 2020, the average number of security applications installed on enterprise devices surged as enterprises struggled to secure remote employees. Nearly two-thirds (60%) of the enterprise devices analyzed contained two or more encryption applications installed, while 52% contained three or more endpoint management applications installed.

Multiple security controls add friction to environment, increasing the risk of failure and non-compliance, possibly even making these additional efforts to secure endpoints redundant.

The threat to security operations has escalated due to the COVID-19 pandemic. Absolute asserts that simply deploying protections such as anti-malware, encryption, and VPM, is insufficient.

As security teams prepare for the next phase of pandemic-related security challenges, senior executives can take proactive approach to help their teams navigate the new environment. Appropriate budgets for anti-virus and anti-malware solutions are a start. Effective security controls are also vital to protect endpoints as threats continue to evolve.

Previous

Cybersecurity M&A and Funding Update: May 28

Next

Supreme Court Limits Scope of Federal Anti-Hacking Law

Check Also

Widget

Don’t Miss

Cyber Deals: Spin Technology, CyberArk, Mesh Security

James Hu

Cybersecurity Venture Funding and Mergers: This week’s deals involved cloud security services, data privacy, and industrial cybersecurity companies. Funding Cloud cybersecurity firm Mesh Security has secured $4.5 million in venture funding. The round was led by Booster Ventures with participation from other investors. Spin Technology, a firm providing SaaS security solutions, raised $16 million in […]

Cyber Deals: Cybrary, Ping Identity, Axio Global

James Hu

Cybersecurity Venture Funding and Mergers: Key investments were made in cybersecurity training, secure enterprise browser, and risk management companies. M&A activity this week involved identity security, zero trust, and threat intelligence firms. Funding Cybrary, a cybersecurity training platform, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula […]

Cybrary Secures $25 Million in Series C Funding Round

James Hu

Cybrary, a Maryland-based cybersecurity training platform provider, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula Tech Adventures, two of its current investors. Following its $15 million Series B round announced in November 2019, this latest investment brings Cybrary’s total funding to date to $48 million. Cybrary […]

Cyber Deals: Exterro, Naoris Protocol, Cybit Sec

James Hu

Cybersecurity Venture Funding and Mergers: This week, notable funding and M&A activity involved compliance, enterprise security, and vulnerability assessment firms. Funding Exterro, a legal governance, risk, and compliance software provider, completed a strategic recapitalization valuing the firm at over $1 billion. The company, currently owned by Leeds Equity Partners, is targeting a potential 2023 initial […]

Cyber Deals: Halborn, Irideos, Anvilogic

James Hu

Cybersecurity Venture Funding and Mergers: This week, cybersecurity venture funding and M&A activity involved blockchain, artificial Intelligence, and SaaS solution providers. Many of these deals will also be funding the future of cloud security. Funding Halborn, a blockchain cybersecurity firm, raised $90 million in a Series A funding round led by Summit Partners with participation […]

Huntress acquires Curricula for $22 million

James Hu

Huntress, a cybersecurity firm providing a security management platform to small and medium sized businesses, has acquired Curricula, a security awareness training service provider, for $22 million. Curricula is a freemium SaaS company offering solutions for employee cybersecurity training. Their methods incorporate behavioral learning techniques and engaging storytelling to maximize employee engagement. Small and medium […]