2021 Enterprise Network Security Report From Zscaler
The following is the 2021 Enterprise Network Security Report From Zscaler recommended by recordtrend.com. And this article belongs to the classification: ZScaler, research report, network security.
Zscaler released the “2021 enterprise network security report”, which revealed the actual exposure of the enterprise network. The analysis time span is from February 2020 to April 2021. The potential impact of remote work on attacks during the global new crown pandemic is observed for the first time.
Key figures:
202316 potential CVE vulnerabilities
95742 potential SSL / TLS vulnerabilities
392298 public servers
214230 exposed ports
60572 public cloud instances
85380 public namespaces
202316 potential CVE vulnerabilities were found worldwide and 750 individual vulnerabilities were identified.
The survey found that enterprises face an average of 135 known vulnerabilities, and each vulnerability will bring potential risks to the business. 49% of the discovered CVEs are classified as “severe” or “very severe”, and the five most common CVEs include:
CVE-2018-1312 – CRITICAL – 6.8 CVSS Score
CVE-2017-7679 – CRITICAL – 7.5 CVSS Score
CVE-2019-0220 – MEDIUM – 5.0 CVSS Score
CVE-2016-4975 – MEDIUM – 4.3 CVSS Score
CVE-2018-17199 – HIGH – 5.0 CVSS Score
Discoverable SSL / TLS risks
The survey found that 95742 web servers support the use of outdated and vulnerable SSL / TLS protocol, and each company has an average of 64 outdated web servers. According to NIST guidelines, enterprises should support current protocols, such as tlsv1.2 or tlsv1.3, to avoid harmful man in the middle attacks. However, 47% of the protocols supported on these servers are outdated, including SSLv3, sslv2, tlsv1 and tlsv1.1 protocols.
Exposed servers and ports
The highest level of exposure comes from servers. 392298 servers can be found on the Internet and may have vulnerabilities. This means that an enterprise has an average of 262 servers, which are not only exposed to the whole Internet. In addition, a total of 214230 ports in these servers are exposed to 68 unique ports. The three most common exposed ports are:
Port 443 (HTTPS): 56.8%
Port 80 (HTTP): 38.8%
Port 22 (SFTP): 1.98%
Not surprisingly, web applications with HTTPS and HTTP traffic represent the vast majority of exposed ports (96%); The second is port 22, which mainly carries the secure shell (SSH) service for transmitting hypertext and shared data.
If you want to get the full report, you can contact us by leaving us the comment. If you think the information here might be helpful to others, please actively share it. If you want others to see your attitude towards this report, please actively comment and discuss it. Please stay tuned to us, we will keep updating as much as possible to record future development trends.
RecordTrend.com is a website that focuses on future technologies, markets and user trends. We are responsible for collecting the latest research data, authority data, industry research and analysis reports. We are committed to becoming a data and report sharing platform for professionals and decision makers. We look forward to working with you to record the development trends of today’s economy, technology, industrial chain and business model.Welcome to follow, comment and bookmark us, and hope to share the future with you, and look forward to your success with our help.
