CA-ARMIS
22.1.2024 14:01:31 CET | Business Wire | Press release
Armis, the asset intelligence cybersecurity company, today announced The Anatomy of Cybersecurity: A Dissection of 2023's Attack Landscape. The 2023 analysis of Armis’ proprietary data offers critical insight into the multifaceted challenges global organizations face when it comes to protecting the entire attack surface. Report findings serve as a blueprint to help security teams worldwide prioritize efforts to reduce cyber risk exposure in 2024.
The report found that global attack attempts more than doubled in 2023, increasing 104%. Utilities (over 200% increase) and Manufacturing (165% increase) were the most at risk industries. Attack attempts peaked in July, with communications devices, imaging devices and manufacturing devices experiencing intensified targeting during this period.
“Armis found that not only are attack attempts increasing, but cybersecurity blind spots and critical vulnerabilities are worsening, painting prime targets for malicious actors,” said Nadir Izrael, CTO and Co-Founder, Armis. “It’s critical that security teams leverage similar intelligence defensively so that they know where to prioritize efforts and fill these gaps to mitigate risk. We hope that by sharing these insights, global businesses and governments will leverage them to immediately pinpoint what they should be focusing on to improve their cybersecurity posture this year to keep critical infrastructure, economies and society safe and secure.”
Key findings of The Anatomy of Cybersecurity: A Dissection of 2023's Attack Landscape include:
Geopolitical tensions exacerbate the cybersecurity landscape
-
Cyberwarfare grew more widespread in 2023. Top industries exposed to attack from Chinese and Russian actors were those within Manufacturing, Educational Services and Public Administration.
- In manufacturing, .cn and .ru domains contributed to an average of 30% of monthly attack attempts, while attacks from these domains on Educational Services have risen to about 10% of total attacks.
Legacy technology steepens incline of cybersecurity pros’ existing up-hill battle
-
Older Windows server OS versions (2012 and earlier) are 77% more likely to experience attack attempts compared to newer Windows Server versions.
- This vulnerability is particularly evident in the server environment, with nearly a quarter of server versions facing end-of-support (EoS) scenarios. The Educational Services industry has a significantly higher percentage of servers (41%) with unpatched weaponized Common Vulnerabilities and Exposures (CVEs), compared to the general average of 10%.
- Industries still using end-of-life (EoL) or EoS OSs that are no longer actively supported or patched for vulnerabilities and security issues by the manufacturer: Educational Services (18%), Retail (14%), Healthcare (12%), Manufacturing (11%) and Public Administration (10%).
Businesses struggle with effective vulnerability prioritization and remediation
- There were over 65,000 unique CVEs discovered in 2023.
- Wearable devices have the highest percentage (93%) of unpatched CVEs.
- A third of all devices are still not patched for Log4Shell.
-
Patch rates for critical CVEs are not prioritized:
- Low CVEs: 11% patch rate
- Medium CVEs: 58% patch rate
- High CVEs: 64% patch rate
- Critical CVEs: 55% patch rate
- Irrespective of the weaponization status of a CVE, organizations consistently grapple with patch rates at 62% for non-weaponized and 61% for weaponized vulnerabilities.
“Blueprints like this report are invaluable as they help teams focus limited resources on efforts with the greatest impact and with the insights to tell data-driven stories in justification of cross-team priorities,” said Curtis Simpson, CISO, Armis. “Using hindsight and analyzed data could allow CISOs to focus 2024 efforts on segmenting legacy technology, prioritizing exposures of greatest significance, and utilizing AI-driven technologies that can assist security teams with defending and managing the attack surface in real-time.”
Proprietary data leveraged for this report was mined from Armis’ Asset Intelligence Engine. The Armis Asset Intelligence Engine is a collective AI-powered knowledge base, monitoring billions of assets worldwide, in order to identify cyber risk patterns and behaviors. It feeds the Armis Centrix™ platform with unique, actionable cyber intelligence to detect and address real-time threats across the entire attack surface.
To read the full report, The Anatomy of Cybersecurity: A Dissection of 2023's Attack Landscape, please visit: https://www.armis.com/anatomy-of-cybersecurity
Learn more about The Armis Asset Intelligence Engine here: https://www.armis.com/platform/armis-asset-intelligence-engine/
About Armis
Armis, the asset intelligence cybersecurity company, protects the entire attack surface and manages the organization's cyber risk exposure in real time. In a rapidly evolving, perimeter-less world Armis ensures that organizations continuously see, protect and manage all critical assets. Armis secures Fortune 100, 200 and 500 companies as well as national governments, state and local entities to help keep critical infrastructure, economies and society stay safe and secure 24/7. Armis is a privately held company headquartered in California.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240122998889/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Forrester’s 2027 Budget Planning Guides: After A Year Of Caution, Business And Tech Leaders Are Ready To Invest Again15.7.2026 11:00:00 CEST | Press release
While leaders are betting on growth, in the age of AI, spending more is no longer enough According to Forrester’s (Nasdaq: FORR) 2027 Budget Planning Guides, business and technology leaders are approaching 2027 with renewed confidence as they increasingly accept volatility as a permanent feature of the business environment. After a year of more cautious spending, more than 80% of leaders expect their budgets to increase over the next 12 months, with as many as one-quarter anticipating growth of 10% or more. But planning in the age of AI demands more than bigger budgets: Increasing investment without modernizing operating models, strengthening data foundations, and improving AI readiness will only accelerate fragmented data, duplicated work, and technical debt. To realize AI’s full potential, leaders must rethink their strategies and prioritize investments in operational foundations, governance, and experimentation that drive tangible outcomes. This year, optimism is widespread across f
Post-Quantum’s Algorithm - Classic McEliece - Achieves Global ISO Standardization to Protect the World From Quantum Cyber Attack15.7.2026 10:00:00 CEST | Press release
Ultra-secure encryption algorithm added to ISO standard for Asymmetric Ciphers Classic McEliece is first PQC algorithm to achieve global standardization Organisations in 177 ISO member states can now adopt Classic McEliece to remain secure from attack by both classical and quantum computers Governments including Germany and the Netherlands already recommend the highly secure Classic McEliece algorithm due to its unmatched security credentials It’s proven that today’s encryption is vulnerable to attack by a sufficiently mature quantum computer running Shor’s algorithm - a catastrophic event commonly known as Q-Day. Even before such a cryptographically relevant quantum computer emerges it is known that adversaries are stealing encrypted data now, which can be decrypted later - also known as Harvest Now, Decrypt Later (HNDL). Google’s recent use of Artificial Intelligence (AI) to optimise Shor’s algorithm reduces the number of physical qubits required to break today’s encryption, therefor
Thredd Joins The Visa Agentic Ready Programme, Bringing Agent Network Readiness To Issuers Across Europe, Starting With Zilch15.7.2026 09:00:00 CEST | Press release
Thredd, the AI-first issuer processing platform, today announced it has joined the Visa Agentic Ready programme, enabling issuers across Europe to participate in agent-initiated payments without rebuilding their payments infrastructure. Consumer payments platform Zilch will be among the first issuers on the platform to enable agent-initiated payments for its cardholders. As a processor and enabler, Thredd sits at the trust layer of the payments ecosystem. By joining the programme, Thredd is ready to support Visa and its clients as the market moves into agentic commerce. Agentic commerce introduces a new type of payment initiator: An AI agent acting on a cardholder's behalf. The core payments principles do not change. Cardholder permission, issuer approval, authentication and fraud monitoring all still apply. What changes is how trust is established and enforced at the point an agent transacts. Taking a Zilch customer as an example, a cardholder might ask an AI agent to find a product w
Surgerii Robotics Announces First European Installation of the SHURUI® Single-Port Surgical System at Vall d'Hebron University Hospital15.7.2026 09:00:00 CEST | Press release
Surgerii Robotics today announced the first European installation of its SHURUI Single-Port (SP) Surgical System at Vall d'Hebron University Hospital in Barcelona, Spain, one of Europe's leading academic medical centers. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260713209503/en/ The first pediatric procedure performed with the SHURUI SP system was a nephroureterectomy on a twelve-year-old boy whose kidney and ureter had become infected and non-functional due to multiple stones. The SHURUI SP system is CE-marked for adult and pediatric use, making it the only CE-marked single-port robotic surgical system currently indicated for pediatric procedures in Europe. The installation marks an important milestone in the international expansion of Surgerii Robotics and the introduction of the technology into a major European reference center. As part of this collaboration, Vall d'Hebron University Hospital has become the first hos
SES, Airbus and Dutch Municipality of Noordwijk to Build Satellite Optical Ground Station for EAGLE-115.7.2026 08:50:00 CEST | Press release
The parties signed a ground lease agreement allowing installation of the optical ground station (OGS) at the NL Space Campus SES, a space solutions company, jointly with Airbus Netherlands B.V. signed a ground lease agreement with the Dutch municipality of Noordwijk for a plot at the NL Space Campus, next to the European Space Agency’s (ESA) technical center ESTeC. The facility will host a dedicated optical ground station (OGS) to communicate with the EAGLE-1 satellite and receive quantum safe keys via laser technology. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260714786947/en/ Breaking the ground of the EAGLE-1 Optical Ground Station, Municipality of Noordwijk, the Netherlands. Pictured left to right: Pim van Strien, Alderman for the Municipality of Noordwijk; Rob Postma, President and Managing Director, Airbus Netherlands; Alan Kuresevic, Managing Director, SES Techcom, SES. The station, to be built by Airbus for SES,
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom
