Duo Security has analyzed the security state of 4.6 million endpoint devices including 3.5 million mobile phones. The devices have been taken from various industries and world regions which makes the analysis quite comprehensive and indicative.
The study was based on indicators such as outdated operating systems, browsers and plugins typically exposing endpoint devices to vulnerabilities. Regarding mobile phones, the enabled security features have also been assessed.
The analysis also illustrates the results of the company’s simulated phishing campaigns. Phishing is still the most effective social engineering method often leveraged to steal user credentials and sensitive data, compromise outdated software and grant remote access to enterprise and business apps.
Overview of Duo Security’s Findings
31% of assessed endpoints are running Windows 10 whereas only 15% were using it last year. Enterprise security is slowly improving as companies are gradually moving to Microsoft’s latest. Unfortunately, 13% of endpoint devices are still running an unsupported version of Internet Explorer which directly exposes them to a range of malicious attempts.
As for mobile security, only 27% of Android devices are on the latest version of Google’s operating system, whereas 73% of iPhones are running iOS 10 or later. As to why there’s this major difference between Android phones and iPhones, Android devices are often designed to wait for manufacturers and carriers to roll out updates, researchers explain.
The EMEA region appears to be more intact with security when compared to North America. In EMEA 40% of devices are running the latest possible version compared to only 31% in North America.
What about the security of devices in various industries?
Not surprisingly, 87% of the endpoints in the technology segment are running Windows 10. Unfortunately, the healthcare and machinery sectors appear to be quite vulnerable with only 16% and respectively 6% of endpoints running the latest operating system.
Regarding the often targeted healthcare sector, data reveals that 76% of endpoints are running Windows 7. Windows XP is found on 3% of endpoints. We have discussed the dangers of running an unsupported version of Windows many times, and recent events have once again illustrated these risks in actual attacks.
Phishing Continues to Be a Major Threat
The 3,575 simulated phishing campaigns (with over 80,000 recipients) carried out by Duo Security reveal that 62% of the attempts obtained at least one user credential. 68% of them had at least one outdated device. 44% of the recipients in the simulated attacks opened the email, and 25% clicked on the provided link.
These numbers mean that about a quarter of recipients could have visited a malicious website.
Spy Hunter scanner will only detect the threat. If you want the threat to be automatically removed, you need to purchase the full version of the anti-malware tool.Find Out More About SpyHunter Anti-Malware Tool / How to Uninstall SpyHunter