Cloud security company Zscaler said an analysis of the networks of 1,500 firms uncovered 60,572 exposed cloud instances, 392,298 exposed servers and 214,230 exposed ports, all discoverable on the internet and which are likely linked to the widespread shift to remote work within organizations, ZDNet
Zscaler said the discovered vulnerabilities included 468 exposed servers among the largest firms and 209 among big companies. The researchers also found unpatched systems that have 202,000 Common Vulnerabilities and Exposures, amounting to 135 CVEs for every organization, and nearly half of which are in the critical or high severity categories.
The increase in remote workers has left many enterprises unable to closely monitor for vulnerabilities that can lead to a compromise of a worker’s credentials. Cyber criminals may easily discover these vulnerabilities online, enter their target enterprises and conduct data theft, malware, ransomware and other types of cyberattacks.
“The sheer amount of information that is being shared today is concerning because it is all essentially an attack surface,” Zscale Vice President for Emerging Technology Nathan Howe said.