Stats & Trends
The Barkly Team
Oct 2018

New Report Highlights Biggest Risks to Endpoint Security


The 2018 State of Endpoint Security Risk Report, conducted by the Ponemon Institute, shows endpoint security at a crossroads, with the majority of organizations suffering increasingly costly attacks.

With cyber attacks continuing to pose an increasingly frequent and costly threat to organizations worldwide, Barkly has once again teamed up with the Ponemon Institute to evaluate the current state of endpoint security. This year, the Ponemon Institute independently surveyed 660 IT security professionals and found that, while the threat landscape is indeed rapidly evolving, the majority of successful attacks still have one key thing in common — they begin by compromising an endpoint.

Here are some of the key findings from this year’s report. They highlight the biggest challenges organizations are grappling with in their attempts to secure their endpoints, plus the growing costs associated with successful endpoint compromises.  The findings also detail how, for the first time, traditional security solutions appear to be missing more attacks than they are blocking.

You can download the full report here. 

Key findings from this year's State of Endpoint Security Risk Report

1) The frequency of attacks against endpoints is increasing.

Sixty-three percent of respondents say the frequency of attacks has increased over the past 12 months. The increase in successful attacks is taking a toll on endpoint security confidence. According to respondents, an average of 52 percent of all attacks cannot be realistically stopped.

2) The cost of successful attacks has increased from an average of $5 million to $7.1 million.

Costs due to the loss of IT and end-user productivity and theft of information assets have increased. The average cost per compromised endpoint is $440. Small-and-medium-sized (SMB) companies have a much higher cost of $763.

3) Majority of respondents say their organizations were compromised in 2018.

More respondents in 2018 say their organization has experienced one or more endpoint attacks that successfully compromised data assets and/or IT infrastructure (64 percent vs. 54 percent).

4) Zero-day attacks are four times more likely to compromise organizations.

Of the 64 percent of respondents in organizations that were compromised, 76 percent say the type of attack was a new or unknown zero-day attack. This is four times the 19 percent of respondents who say their organizations were compromised by an existing or known attack.

5) Antivirus products missed an average of 57 percent of attacks.

Confidence in traditional antivirus (AV) solutions continues to drop. On average, respondents estimate their current AV is effective at blocking only 43 percent of attacks. In addition to the lack of adequate protection, respondents cite high numbers of false positives and alerts as challenges associated with managing their current AV solutions.

6) The average time to patch is 102 days.

The findings reveal the difficulties in keeping endpoints effectively patched. Forty-three percent of respondents in organizations that have a patch management process say they are taking longer to test and roll out patches in order to avoid issues and assess the impact on performance.

7) Organizations that have purchased EDR solutions cite a lack of proactive protection and adoption challenges as top frustrations.

The majority of organizations adopting these solutions use them to detect early signs of an attack and block them. However, on average, only 46 percent of all features or functionalities are actively used and 47 percent of respondents say it took more than three months to deploy.

Big takeaways and next steps

This year’s study confirms traditional approaches to preventing endpoint compromises are continuing to break down. Successful attacks are becoming increasingly common, and faith in antivirus solutions has reached an all-time low. As a result, many organizations are turning to supplemental solutions such as endpoint detection and response (EDR) products, despite continuing to cite prevention as their true top priority. With the average cost of successful endpoint attacks totalling over $7 million, however, using EDR products to respond to attacks after they have taken place is untenable.

Based on this research, the biggest gap organizations need to address is proactively blocking zero-day and fileless attacks, which are responsible for the majority of today’s endpoint compromises.

To restore faith in the effectiveness of endpoint security and help the organizations most in need, new solutions need to be sophisticated enough to block these attacks without adding unnecessary complexity to endpoint management. That's exactly what we've built Barkly to do.

Learn more about how Barkly is providing organizations with stronger, smarter endpoint security that's easy to manage and use. See how Barkly works.

For the complete findings from this year's State of Endpoint Security Risk Report, download the full report here.

The Barkly Team

The Barkly Team

Providing the latest security alerts and updates with context that makes them useful.


Close the gaps in your security

Stop paying for AV, get the strongest protection instead. See how Barkly blocks attacks that are getting past AV.

See a demo


Stay informed!

Get the latest security news, tips, and trends straight to your inbox.

Stay informed!

Get the latest security news, tips, and trends straight to your inbox.