Pentesters breach 92 percent of companies, report claims
Findings from a new report by Positive Technologies imply that nearly all organizations can be breached. A whopping 92% of all the penetration tests carried out by the firm’s researchers last year, resulted in the researcher breaking into the internal network of the organization under scrutiny.
In most cases, Internet-connected web applications were the weakest link in an organization’s security infrastructure. In fact, 75% of the breach pathways uncovered during pentests went through a vulnerable web application. Another worrisome finding is that in half of all cases, the pentester could very easily access the internal network after breaching the external security perimeter, which points to the prevalence of outdated security models that focus primarily on perimeter security.