Eight in 10 companies across the United States have experienced a data breach made possible by cloud misconfigurations, according to new research by IDC.
Misconfigured safeguards and protocols are a leading cause of data breaches today. A survey of 300 senior IT decision makers by IDC, on behalf of Ermetic, corroborates findings by Bitdefender researchers around the IT misconfigurations most leveraged by cybercriminals today.
According to the 300 CISOs that participated in the survey, security misconfiguration is a top concern associated with cloud production environments, as cited by 67% of respondents. Next in line was lack of adequate visibility into access settings and activities (64%), followed by identity and access management (IAM) permission errors (61%). One in 10 respondents also reported they are unable to identify excessive access to sensitive data in IaaS/PaaS environments.
An analysis by Bitdefender of the security misconfigurations most frequently leveraged by bad actors revealed that configuration errors related to accounts, password storage and password management are the most common individual endpoint misconfigurations.
Of the most common categories of endpoint misconfigurations reported by our engines, Internet Settings is by far the most error-riddled category, with a combined share of 73.1%. Passwords & Accounts take second place with 13.8% and Microsoft Apps & Components rank third, at 13.1%.
“Driven by the dynamic and on-demand nature of public cloud infrastructure deployments, users and applications often accumulate access permissions beyond what is necessary for their legitimate needs,” reads the Ermetic-sponsored report. “Excessive permissions may go unnoticed as they are often granted by default when a new resource or service is added to the cloud environment. These are a primary target for attackers as they can be used for malicious activities such as stealing sensitive data, delivering malware or causing damage such as disrupting critical processes and business operations.”
Traditional endpoint protection platforms can’t assess risk associated with misconfiguration, while security teams are overwhelmed with reactive, repetitive tasks, such as vulnerability management, incident triage, and patching. Bitdefender puts risk analytics at the core of its GravityZone endpoint protection platform, enabling administrators to reduce the attack surface and limiting potential compromise while providing visibility into risks associated with misconfiguration.
Bitdefender GravityZone provides endpoint risk management, risk analytics, protection and EDR, all through a common agent and console. Learn more here.