A recent report analyzed various cyberattack patterns in the last year. The State of Exposure Management report by XM Cyber and Cyentia Institute found that 75% of security exposures do not put organizations’ critical assets at risk. 

However, while most of these exposures are not particularly relevant to an organization, there are a minimal amount of exposures that put more than 90 percent of their critical assets at risk.  

Two percent of security exposures are actually located on “choke points”, which are entities through which multiple attack paths converge enroute to critical assets. The report also conveys the importance of having strong security controls for both cloud and on-premise environments.

Seventy-one percent of organizations have exposures in their on prem networks that put their critical assets in the cloud at risk. The research also reveals that attack techniques targeting credentials and permissions affect 82% of organizations.