sb-au logo
Story image

Unprotected machine identities costing firms billions - report

03 Mar 2020

Organisations worldwide could recover a collective total of between US$51 billion to as much as US$72 billion just by repairing their poorly protected machine identities.

Those figures are just some of the statistics from a new report by Venafi and AIR Worldwide, which illustrates that proper management of machine identities could prevent billion-dollar losses.

According to the two companies, machines are critical to the fundamental operation of a business and the flow of many different data types.

Cybercriminals target these machines because organisations don’t take the time to protect these machines and their machine identities properly.

“When machine identities are poorly managed and weakly protected, they become prime targets for cyber attackers who can use them to gain and maintain unauthorised access to network assets and data, impersonate trusted machines and applications, hide malicious activities and exfiltrate stolen data while remaining undetected. Any of these activities by cyber attackers can result in economic damage to organisations,” the report claims.

Of the largest companies with revenues more than US$2 billion, as much as 25% of cyber losses could be due to machine identity compromise. Amongst smaller companies (revenues less than $2 billion), machine identities could account for as much as 16% of cyber losses.

Venafi’s vice president of security strategy and threat intelligence Kevin Bocek says that many businesses still rely on processes and techniques from 20 years ago. These processes are terrible at protecting machine identities and can cause billions of dollars in losses.

“Digital transformation is dependent on cloud, microservices and APIs, and all of this requires the authentication and privacy that machine identities provide. Cybercriminals understand that breaking this link means hitting the jackpot.”

AIR Worldwide used a combination of cyber event datasets, including event datasets, filmographic datasets, and technographic datasets to produce its findings.

The research also assessed more than 100,000 firms for their performance in various cybersecurity areas, such as SSL/TLS certificates, user behaviour (for example, file sharing services and torrents) and indicators of compromise (for example, communications to any botnet command and control servers).

Estimating the financial impacts of cybersecurity practices is always a challenging problem, requiring a combination of data, models, and subject matter expertise. We were able to leverage our experience when we developed a model estimating the impact of cybersecurity practices on data compromise event frequency. The results of this study show that there are very real costs when failing to adequately protect machine identities,” says AIR Worldwide senior scientist Eric Dallal.

The report points out that organisations depend on secure machine-to-machine connections and communications. These, in turn, rely on machine identities for authentication and encryption. As such, organisations should adopt a strong machine identity protection program as part of their overall cybersecurity programs.

Story image
Why it’s essential to re-write IT security for the cloud era
Key components of network security architecture for the cloud era should be built from the ground up, as opposed to being bolted on to legacy solutions built for organisations functioning only on-premises or from only managed devices.More
Story image
Exabeam and Code42 partner up to launch insider threat solution
The solution will give customers a fuller picture of their environment, and will leverage automated incident response to obstruct insider threat before data loss occurs.More
Story image
Fortinet’s ‘zero trust’ approach redefining security
Cornelius Mare, Fortinet A/NZ Director, Security Solutions, explains why taking a ‘zero trust network access’ approach to cybersecurity requires fully-integrated and comprehensive security services and policies.More
Story image
5 ways to use data science to predict security issues - Forcepoint
Data science enables people to respond to problems in a better way, and to also understand those problems in a way that would not have been possible 50 years ago.More
Story image
Ripple20 threat has potential for 'vast exploitation', ExtraHop researchers find
One in three IT environments are vulnerable to a cyber threat known as Ripple20. This is according to a new report from ExtraHop, a cloud-native network detection and response solutions provider. More
Story image
Kaspersky finds red tape biggest barrier against cybersecurity initiatives
The most common obstacles that inhibit or delay the implementation of industrial cybersecurity projects include the inability to stop production (34%), and bureaucratic steps, such as a lengthy approval process (31%) and having too many decision-makers (23%). More