It turned out that 96% of companies are not protected from the penetration of an external attacker, besides, in 90% of cases, a cybercriminal could gain access to confidential information, as well as trade secrets.
It also turned out that 85% of companies use weak, easily vulnerable passwords, 60% have found vulnerabilities of critical and high level of danger due to the use of outdated software.
In addition, 35% of vulnerabilities were related to configuration, 15% — to the code of web applications.
Experts also proved that in 100% of the companies participating in the testing, it is possible to obtain domain administrator privileges by an illegitimate user. A cybercriminal will be able to perform any actions in the organization’s infrastructure, including organizing a connection to all servers and computers.