新浪香港

SINA HONG KONG LIMITED

GlobeNewswire 

Survey Reveals that Half of U.S. Enterprises Have Immature External Attack Surface Management Programs Despite 90% Indicating Increases in Impactful Incidents

GlobeNewswire

66% of Respondents Claim Only Nominal Effectiveness with Current Threat Intelligence Tools

IRVINE, Calif., Oct. 09, 2024 (GLOBE NEWSWIRE) — TacitRed today announced new survey findings in its “2024 State of Attack Surface Intelligence report.” The research, conducted by Cybersecurity Insiders, a community membership of over 600,000 information technology (IT) security professionals, found that half of U.S. enterprises have immature external attack surface management (EASM) programs despite nearly all respondents indicating an increase in impactful attack surface incidents. Organizations are investing in new technologies and applications to drive digital transformation, but in doing so, have enabled cyber adversaries means to exploit external attack surface exposures.

The 2024 Attack Surface Threat Intelligence report, which aimed at getting a better understanding of the key cyber security microtrends impacting businesses today, provides insights into the challenges, advances, maturity, and best practices for managing external attack surface risk. A findings summary infographic can be downloaded at www.tacitred.com/asm2024inf. To obtain the full report, visit www.tacitred.com/asm2024rpt.

“Given increased threats, operational deficiencies, and limited resources, the survey results underscore ample room for growth in maturing the people, processes, and tools necessary for effective EASM,” said Holger Schulze, CEO and founder of Cybersecurity Insiders. “Organizations should evaluate how to move beyond inconsistent and reactive measures and invest in more efficient, proactive, and responsive approaches to attack surface management to enhance their overall cyber posture and resiliency.”

Attack Surface Intelligence Insights and Challenges

Findings indicate that changes in attack surface infrastructure and external-originated incidents are steadily growing, but current tools are not effectively serving security operations teams. include:

  • 90% of organizations experienced an increase in impactful attack surface incidents.
  • 84% of respondents expressed attack surface dynamics contributing to security incidents.
  • Over a third of respondents expressed challenges of coping with too much threat noise (39%) and poor threat intelligence (37%) — contributing to analyst burnout, missed detections, and delayed response.
  • Similarly, more than half of respondents (66%) claimed only nominal usefulness in their attack surface threat intelligence tools while 40% expressed challenges in identifying third-party exposures, maintaining accurate internet-facing asset inventory, and detecting active threats.
  • Security analysts were a third less positive about tools supporting EASM programs compared to senior management — indicating a gap between tool perception and hands-on efficacy.  

EASM Programs Lack Maturity, Not Budget  

The maturity of EASM programs varies significantly across organizations. Nearly 50% of respondents report that their programs are in the early stages of development, either in the Initial or Repeatable phases, where risk management remains unstructured and reactive. Only 33% of respondents are in more advanced stages of maturity, having more defined, automated, and optimized capabilities. Technology and healthcare industries claim slightly (10%) stronger maturity compared to government and financial services organizations.

Large organizations (over 2,500 employees) appear twice as likely to have mature programs than smaller organizations – which may be attributed to having more resources and investment. Fortunately, budgets for EASM programs are on the rise with 90% expecting increased investment in EASM tools and threat intelligence. 40% of respondents anticipate a budget increase over 20% compared to the previous year. The findings have major implications for EASM providers as organizations seek to improve processes and evaluate new technologies to address operational gaps.

Additional findings include:

  • 90% of organizations experienced an increase in impactful attack surface incidents
    • Smaller companies (<2,500 employees) had 60% more incidents than larger companies
  • 49% of organizations currently have immature EASM programs
    • Near-term program objectives are to improve threat responsiveness (65%) and asset inventory accuracy (59%)
    • Over half of respondents anticipate security tool convergence and the application of Generative AI to positively impact EASM programs
  • 66% of respondents rated their attack surface intelligence tools as nominally useful
    • Professionals (65%) are seeking multi-source, curated, and prioritized threat intelligence
  • 90% anticipate budgets increasing for attack surface management and threat intelligence tools – 40% expect an increase of over 20%

Join Cybersecurity Insiders, TacitRed, and an expert practitioner panel as they examine key survey findings, share insights, and explore best practices on the “state of attack surface threat intelligence” webinar to be held on October 22nd at 11am EST. Register for the webinar at http://www.tactired.com/asm24webinar/.

Tweet This: New research finds that 90% of organizations experienced an increase in impactful attack surface incidents and 66% find external attack surface threat intelligence tools ineffective. Download the report at www.tacitred.com/asm2024rpt. #tacitred #attacksurfacemanagement #threatintelligence

Survey Details
The research and report was produced by Cybersecurity Insiders, a community membership of over 600,000 information technology (IT) security professionals. The online survey was conducted in September 2024 and responses were compiled from 312 qualified security professionals in enterprises ranging from 1,000 to over 10,000 employees across multiple industries in the United States. All respondents manage external attack surface management programs and teams, or are security operations and analyst team members that use threat intelligence and EASM tools daily.

About Cogility TacitRed™
Cogility TacitRed™ empowers security analysts to take immediate, decisive actions to mitigate impactful cyber exposures by taking advantage of unparalleled tactical attack surface intelligence – fully curated, prioritized, and detailed. The SaaS solution continuously analyzes global internet and threat intelligence of entities and adversaries to provide actionable insight on compromised and at-imminent-risk assets with complete visualization, scoring, attack chain stage, and threat context for over 18 million U.S. entities. As a result, organizations can optimize resources, mitigate data breach exposure, proactively improve their security posture, and help reduce supply chain risk. To obtain a free 30-day trial, visit www.tacitred.com.

Media Contact
Grace Halvorsen
gracehalvorsen@lightspeedpr.com

A PDF accompanying this release is available at http://ml.globenewswire.com/Resource/Download/375c7a18-bd47-490a-84ec-f572ac51977e

你可能喜歡

Portfolio Update: New Stock Picker Appointed for Alliance Witan

GlobeNewswire

Alliance Witan PLC LEI: 213800SZZD4E21OZ9W55 Portfolio Update: New Stock Picker Appointed for Alliance Witan Alliance Witan PLC announces that its investment manager, Willis Towers Watson , has appointed Jennison Associates as an additional stock picker for its multi-manager global equity portfolio, taking the

INE Security Alert: Learning From Cybersecurity Breaches

GlobeNewswire

5 Strategies to Reduce Cyber Threats Through Training Cary, NC, Oct. 09, 2024 — In the face of a seemingly endless onslaught of data breaches that bring even the largest companies to their knees, there is an opportunity within the cybersecurity industry to view these attacks not as

IBN Announces CryptoNewsAudio Production Featuring Jason Dehni, CEO of Credbull

GlobeNewswire

LOS ANGELES, Oct. 09, 2024 — IBN, a multifaceted communications organization engaged in connecting public companies to the investment community, is pleased to announce the release of the latest CryptoNewsAudio Production as part of its sustained effort to provide specialized content distribution via widespread syndication channels. CryptoCurrencyWire’s latest

Northrop Grumman Unveils the Next Generation of Bushmaster® Chain Gun®

GlobeNewswire

For the first time operators can change between advanced ammunition rounds with the flip of a switch PLYMOUTH, Minn., Oct. 09, 2024 — Northrop Grumman Corporation , a leading manufacturer of medium-caliber cannons, is introducing its next-generation M230 Link Fed Dual Feed Bushmaster® Chain Gun®, offering

PTX Metals Appoints Dave Bell as a Technical Advisor to Its 100% Owned W2 Copper, Nickel, PGE and Gold Project

GlobeNewswire

TORONTO, Oct. 09, 2024 — PTX Metals Inc.  , a mineral exploration Company focused on high-quality gold, copper, nickel and PGE projects in northern Ontario, is pleased to announce the appointment of Dave Bell to its technical team to further

Domo Tactical Communications (DTC) Launches BluSDR-90-UL: Long-Range, Ultra-Lightweight Communications for Uncrewed Systems and Military Operations

GlobeNewswire

Revolutionary SDR offering unparalleled long range mission critical connectivity with battlefield-proven MANET networking for today’s disrupted, denied and dispersed environments. DTC’s BluSDR™-90-UL DTC’s BluSDR™-90-UL is optimized for long-range communication on drone platforms, enabling reliable connectivity capable of over 150km in line of sight applications. Ashburn, Va and

VCI Global Unleashes Enterprise AI Solutions with V-Gallant, Leveraging NVIDIA’s Computing Infrastructure

GlobeNewswire

KUALA LUMPUR, Malaysia, Oct. 09, 2024 — VCI Global Limited , through its subsidiary, V Gallant Sdn Bhd , is offering end-to-end AI computing solutions to enterprises by integrating next-generation AI servers equipped with NVIDIA H200 Tensor Core GPUs and

Inhibikase Therapeutics Announces Pricing of $110 Million Private Placement to Advance IkT-001Pro, an Optimized Prodrug of Imatinib, into a Late-Stage Trial in Pulmonary Arterial Hypertension

GlobeNewswire

— Aggregate investment of up to approximately $275 Million by healthcare-focused investment funds, led by Soleus Capital — BOSTON and ATLANTA, Oct. 09, 2024 — Inhibikase Therapeutics, Inc. , a clinical-stage pharmaceutical company developing protein kinase inhibitor therapeutics to modify the course of

The Duke Endowment Commits $15 Million to Hurricane Helene Relief Efforts in Western North Carolina and Upstate South Carolina

GlobeNewswire

HURRICANE HELENE FLOODING Flooding on the edge of the River Arts District of Asheville HURRICANE HELENE FLOODING Asheville residents gather on a bridge overlooking the French Broad River after catastrophic flooding in Asheville’s River Arts District Charlotte, NC, Oct. 09, 2024 — The Duke Endowment announced today that

Remarkable Stories of Transformation to be Shared by Specialdocs and Affiliated Physicians at the Concierge Medicine Forum Oct. 17th – 19th

GlobeNewswire

Concierge medicine pioneer Specialdocs will take the stage with a select group of their physician clients at the industry’s annual signature event in Atlanta Specialdocs to present transformative view of concierge medicine at key industry conference Terry Bauer, CEO of pioneering membership medicine consultants Specialdocs, is a featured speaker at

Quaint Oak Bank Receives SBA Preferred Lender Program Designation

GlobeNewswire

SOUTHAMPTON, Pa., Oct. 09, 2024 — Quaint Oak Bank announced it has been granted the Preferred Lender Program designation by the U.S. Small Business Administration . This prestigious designation is a testament to Quaint Oak Bank’s expertise, experience, and commitment to supporting small businesses across the nation.

FloQast CEO Mike Whitmire and Accounting Operations Evangelist Stefan van Duyvendijk Publish New Book to Empower Controllers and Accounting Teams

GlobeNewswire

“Shift Happens: The Rise of the Operational Mindset and How Controllers Can Drive Real Value” unveils practical strategies for Controllers to elevate their impact on organizational success LOS ANGELES, Oct. 09, 2024 — FloQast, an Accounting Transformation Platform created by accountants for accountants, today announced the release of

Fleetio Named AutoTech Breakthrough Fleet Management Technology Company of the Year

GlobeNewswire

Award celebrates Fleetio’s recent advancements in electric vehicles, tire and warranty management, and Spanish language accessibility BIRMINGHAM, AL, Oct. 09, 2024 — Fleetio, the leading fleet optimization company, today was named “Fleet Management Technology Company of the Year.” Presented by AutoTech Breakthrough, a market intelligence organization, the award

Reinke Manufacturing Unveils E3™: The First Precision Series of Center Pivot Systems

GlobeNewswire

Irrigation System Market Leader Delivers the Innovation Growers Need to Manage Today’s Top Water Efficiency Challenges DESHLER, Neb., Oct. 09, 2024 — Reinke Manufacturing, a global leader in irrigation systems and technology, today unveiled E3™, the first precision series of center pivot systems. The patented irrigation system offers

Light Sail VR Scales Creative Business with OpenDrives Data Management Infrastructure

GlobeNewswire

Atlas high-performance software-defined storage platform optimizes workflow efficiency, enabling the company to scale as it grows Co-founder & Creative Director of Light Sail VR, Matthew Celia talks about immersive content, scalability and adaptability and the importance of technology not hindering the creative process. OpenDrives and Light Sail VR Atlas boasts

DeleteMe Sees Its Data Removal Services for Public Officials Double Ahead of Presidential Elections

GlobeNewswire

Company sees sharp rise in threats originating from exposed personal information online BOSTON, Oct. 09, 2024 — DeleteMe, a privacy leader that helps government employees, corporate employees, and individuals monitor and remove exposed, easy-to-find personal information, recently announced that the number of court systems, Secretary of State’s offices,

Verana Health Introduces Qdata Explorer in Advance of 2024 American Academy of Ophthalmology Annual Meeting

GlobeNewswire

The innovative platform accompanies the launch of Qdata Retinitis Pigmentosa for life sciences and the development of Practice Insights for clinicians SAN FRANCISCO, Oct. 09, 2024 — Today, Verana Health®, a digital health company dedicated to revolutionizing patient care and clinical research through real-world data , revealed several

ibex Partners with Parloa for Latest GenAI Capabilities

GlobeNewswire

Enabling the Next Generation of AI and Agent-Assisted CX Solutions for More Personalized and Engaging Customer and Brand Interactions at Scale ibex Partners with Parloa for Latest GenAI Capabilities Partnership to leverage Parloa’s AMP platform for ibex Wave iX solutions WASHINGTON and NEW YORK, Oct. 09, 2024 —

SAGA Metals Completes Field Program at Double Mer Uranium Project, Identifying High-Priority Zones for Expansion

GlobeNewswire

VANCOUVER, British Columbia, Oct. 09, 2024 — SAGA Metals Corp. , a North American exploration company focused on discovering critical minerals, is pleased to announce the completion of its maiden field program at the Double Mer Uranium Project in Labrador, Canada.

VanEck Launches $30M Fund to Support Innovation in Fintech, Crypto and AI

GlobeNewswire

VanEck Ventures, a $30 million early-stage fund, focuses on investing in fintech, digital assets, and AI startups in the pre-seed and seed stages. VanEck’s strategic expansion into venture capital reflects its long-standing investment philosophy of identifying transformative opportunities early VanEck Ventures Wyatt Lonergan, Juan Lopez The Fund is available to