NetSPI Reveals Urgency for Enhanced Vulnerability Prioritization

NetSPI Reveals Urgency for Enhanced Vulnerability Prioritization

By Stefania Viscusi

NetSPI, a provider of offensive security solutions, released its 2023 Offensive Security Vision Report highlighting vulnerability trends in applications, cloud, and networks.

It analyzed over 300,000 anonymized findings from numerous pentest engagements and identified prevalent vulnerabilities across industries like healthcare, retail, finance, and manufacturing.

The findings are meant to help security and business leaders to prioritize discovery, management, and remediation efforts. 

"This report makes it abundantly clear that there's still a lot to be done to support and enable the industry to improve vulnerability management," said Cody Chamberlain, Head of Product at NetSPI. "We hope the observations and actionable recommendations throughout our inaugural Offensive Security Vision Report are a great data-driven starting point for security teams to harden their security."

The report revealed that the government and nonprofit industry had the most critical and high severity vulnerabilities, while the insurance industry had the least. It also found that internal networks have three times the number of exploitable vulnerabilities compared to external networks and that web applications had a higher occurrence of high and critical vulnerabilities compared to mobile and thick applications.

Standing in the way of combating these issues once and for all are 2 barriers the report uncovered: lack of resources (70%) and prioritization (60%).

"One narrative made evident from our Offensive Security Vision Report is that vulnerability prioritization is critical," said Vinay Anand, Chief Product Officer at NetSPI. "The reality is that we cannot fix every vulnerability discovered, but if prioritization and support continue to lack, the security industry will fall short. This realization, coupled with the industry experiencing rising burnout rates among developer teams, should evoke a sense of urgency. Our findings can help leaders grasp the severity of the situation to prioritize vulnerability management."

Edited by Greg Tavarez
Get stories like this delivered straight to your inbox. [Free eNews Subscription]
Related Articles

LogMeIn Rescue, to the Rescue: Forrester Studies GoTo's Support Capabilities

By: Alex Passett    9/22/2023

Over a period of three years, a Forrester Total Economic Impact (TEI) study examined the business and financial benefits of LogMeIn Rescue, a flagship…

Read More

Canadian Managed IT Services Gear Up for Cybersecurity Awareness Month

By: Contributing Writer    9/22/2023

October, prominently known as Cybersecurity Awareness Month, is an annual observance and an intensified rally for Canada's premier IT service provider…

Read More

ITEXPO Exhibitor RingLogix Looks to TeamMate to Open New Possibilities for MSPs

By: Greg Tavarez    9/21/2023

The RingLogix and TeamMate collaboration enables MSPs to get the most out of Microsoft Teams as a collaboration solution.

Read More

Acronis Introduces Advanced Automation for MSPs

By: Stefania Viscusi    9/21/2023

Acronis Advanced Automation addresses a common challenge faced by MSPs, the increasing complexities businesses face with so many different initiatives…

Read More

Comprehensive Cybersecurity Solutions: Rackspace Taps Palo Alto Networks

By: Alex Passett    9/20/2023

Strengthening organizations' abilities to stay ahead of progressively evolving cyber threats and attackers is key. That's why Rackspace Technology has…

Read More