XM Cyber Reveals Widening Gap Between Security Efforts and Threat Landscape

XM Cyber Reveals Widening Gap Between Security Efforts and Threat Landscape

By Greg Tavarez

The battle against cyber threats intensifies, marked by an arms race between malicious actors and defenders. Cyberattacks range from sophisticated state-sponsored espionage to opportunistic ransomware schemes and pose significant risks to individuals, businesses, and even national security. For example, ransomware affected 66% of organizations in 2023, according to Sophos' "The State of Ransomware 2023" report.

So, ask yourself this. Is your organization making headway against cyber threats? The answer for most will be no, and XM Cyber goes into detail with how organizations struggle to keep pace with threats in its 2024 State of Security Posture Survey

One concerning trend found in the report is that increased remediation efforts falling short. While 87% of organizations plan to ramp up vulnerability and exposure remediation in the coming year, 82% report a widening gap between identified threats and their ability to address them.

This discrepancy is fueled by the sheer volume and sophistication of modern cyberattacks, coupled with the burden on existing security teams and the prevalence of outdated legacy systems.

What's also hurting holistic defenses are technological silos. Nearly half of organizations manage exposures separately for on-premise and hybrid cloud environments, according to the report. Technological silos result from the compartmentalization of technology systems, data and processes, often stemming from legacy infrastructure, disparate departmental priorities, or vendor-specific solutions.

Silos also inhibit the comprehensive visibility necessary to identify and respond effectively to emerging threats, as insights and intelligence remain confined within isolated pockets rather than being shared and integrated across the enterprise. There is clearly a need for integrated, holistic security strategies. This siloed approach that is common today creates vulnerabilities and hinders effective defense.

Another concerning trend is communication. Roughly 68% of companies highlight the importance of clear communication with leadership about security posture. However, discrepancies in processes between different organizational levels point to potential disconnects in understanding and addressing cybersecurity challenges.

"The data highlights two crucial gaps that need to be bridged: the expanding gap between exposures and remediations, and the communications gap between security operators and leadership," said Boaz Gorodissky, Chief Technology Officer and co-founder of XM Cyber. "It's a call to action for organizations to not only invest in advanced solutions but also to foster a culture of cybersecurity awareness and collaboration." 

The findings highlight the critical need for organizations to evolve their cybersecurity strategies. Threats are more sophisticated. There is no denying that. Therefore, organizations must shift away from traditional threat management to a more comprehensive approach that encompasses cloud environments, identity management and effective communication.

Edited by Alex Passett
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

Related Articles

Partner Confidence and Fast Support: Why MSPs Choose Wildix

By: Greg Tavarez    2/21/2024

At MSP Expo 2024, a meeting with Tim TrueLove in the exhibit hall led to a discussion of what Wildix brings to MSPs.

Read More

MSPs Must Better Educate Clients Against Cyber Threats

By: Greg Tavarez    2/20/2024

Walt Czerminski, partner, Fortium Partners, led a panel discussion at MSP Expo 2024 featuring Ragav Khosla, manager, channel solutions consultants Ame…

Read More

Cybersecurity Preparedness Gaps Remain

By: Stefania Viscusi    2/20/2024

More than half of companies faced significant security incidents in the past year.

Read More

Despite AI's Capabilities, A Help Desk is Needed

By: Greg Tavarez    2/20/2024

Mostafa Razzak, CEO, JMR Connect, led a panel discussion at MSP Expo 2024 featuring Robert Isaacs, CEO, Nine Minds; and Oren Rosen, CEO, eProc Solutio…

Read More

Compliology's Jesse Tuttle Shares His Story During Keynote at ITEXPO 2024

By: Greg Tavarez    2/20/2024

Jesse Tuttle, chief hacking officer, Compliology, aka Hackah Jak, told his story that he kept secret for three decades.

Read More