2010 Endpoint Risk Assessment: Internal Vulnerabilities

2010 Endpoint Risk Assessment: Internal Vulnerabilities indings of an impection of over100 endpoints in over 50 organizations of various sizes within a variety of 4th Annual Inspection Results of over 100,000 Endpoints industries confirmed that all of them were experiencing breaches in security and compliance. Typically, 10-35% of endpoints demonstrated some kind of threat or compliance issue. The most notable findings of the 2010 study were a dramatic rise in unmanaged machines and miss-configured anti-virus software and other third-party agents. The most notable changes observed in the 2010 compared with the 2009 findings was a dramatic rise in unmanaged machines and miss-configured anti-virus software and other third-party agents. Unmanaged workstations 9% Anti Virus Issues 21% Missinn C lifecyelemanagement ageat 23% 20% Unauthorized P2P (TD 18% 16% Missing Encryption Agent Missing Service Packs with hotfixes 4% Dual connectivity Unauthorizedmass storage devices 13% 10 15 20 25 Organizations without Promisec's checks and balances capabilities can expect that over 20% of endpoints will not be covered with the agent-based solutions they have purchased. In other words, it makes the resources an organization already owns work better, often by a factor of 20-30% or more. 179,915 incidents were identified on 99,990 endpoints. Most organizations found 10-35% of their endpoints had some type of threat or non-compliance issue. Unmanaged 13% Missing PC lifecycle management agent machines 11% Anti Virus Issues 10% Missing Encryption Agent 11% Everyone Share 2% Dual connectivity 9% Missing Service Packs with hotfixes 14% w Missing other Third-party agents 11% Unauthorized P2p 7% 7% Remote Control Unauthorized mass A storage devices and sync applications * The information in this report was aggregated from inspections performed at customer sites. No identifying information is included in this report. ** Read the entire Promisec Endpoint Risk Assessment Report for 2010 in http://www.promisec.com/resources/endpoint_risk_assessment_report2010/ PROMISEC