Your biggest problem isn’t Zero Days: it’s the other 365 (methods of attack)

Security personnel are worried about Zero Days, when in reality simple mistakes are their biggest downfall.

A CISO’s face might turn a ghostly white when hearing “Zero Day Exploit,” out of fear that the network is about to be (or already has been) compromised. But while the security team is battening the cyber hatches in anticipation of a DEFCON 1 level attack, it often neglects basic IT hygiene practices, leaving organisations exposed to simple and unsophisticated attacks and lateral movements within the environment. In fact, according to Gartner, “By 2025, more than 85 per cent of successful attacks against modern enterprise user endpoints will exploit configuration and user errors, rather than make use of advanced malware.”