{"id":198739,"date":"2026-03-24T09:15:00","date_gmt":"2026-03-24T13:15:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/24\/enterprise-cybersecurity-software-fails-20-of-the-time-warns-report\/"},"modified":"2026-03-24T09:40:15","modified_gmt":"2026-03-24T13:40:15","slug":"enterprise-cybersecurity-software-fails-20-of-the-time-warns-report","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/24\/enterprise-cybersecurity-software-fails-20-of-the-time-warns-report\/","title":{"rendered":"Enterprise Cybersecurity Software Fails 20% of the Time, Warns Report"},"content":{"rendered":"

Enterprise Cybersecurity Software Fails 20% of the Time, Warns Report<\/a><\/p>\n

https:\/\/www.infosecurity-magazine.com\/news\/cybersecurity-software-failure-20\/<\/a><\/p>\n

Publish Date: 2026-03-24 09:15:00<\/a><\/p>\n

Source Domain: www.infosecurity-magazine.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. Endpoint cybersecurity software fails to protect one in five enterprise devices, leaving organizations vulnerable to cyber threats, research by Absolute Security has warned.<\/p>\n

This protection gap means that organizations face the equivalent of 76 days a year in which they\u2019re providing cybercriminals which increased access to their network, potentially leading to data breaches and downtime.<\/p>\n

The findings come from Absolute Security\u2019s 2026 Resilience Risk Index. The report, published on March 23, is based on analysis of device-level telemetry across tens of millions of enterprise endpoints, which have been validated as using endpoint management and cybersecurity software.\u00a0<\/p>\n

Christy Wyatt, president and CEO of Absolute Security, commented, \u201cCyber-attacks are inevitable, downtime is optional.\u201d<\/p>\n

\u201cThe cybersecurity industry has rushed to provide innovations that detect and prevent threats, unfortunately it\u2019s lagging when it comes to ensuring that tools can remain operational when they are needed most,\u201d she added.<\/p>\n

Slow Patch Management Leaves Systems Vulnerable<\/p>\n

No single issue is the reason for this, but rather it is because of the growing complexity of enterprise IT environments.<\/p>\n

The report noted that delays in applying security patches and software updates remain common, with almost a quarter (24%) of endpoint vulnerability management platforms classed as operating outside of compliance, up from 20% in the previous year.<\/p>\n

This means that a growing share of enterprise endpoints are operating with software which is known to be vulnerable to potential security issues and exploitation but has not been remediated. These vulnerabilities expand the exploitation window which attackers can use to their advantage.<\/p>\n

This issue also persists at an operating system level. According to analysis by Absolute, the application of critical updates for Microsoft Windows were delayed by an average of 127 days, leaving devices vulnerable to downtime caused by zero-day vulnerabilities and other cyber-attacks.<\/p>\n

Meanwhile, nearly 10% of enterprise endpoints are now permanently unpatched \u2014 creating vulnerabilities that organizations may never be able to remediate. This is particularly the case if organizations continue to use Windows 10, which has been out of support since October 2025.<\/p>\n

Overall, some organizations are struggling to manage their cybersecurity posture. This \u00a0ultimately results in the enterprise being vulnerable to cyber-attacks as well as at a disadvantage because of downtime and remediation.<\/p>\n

However, enforcing policies around patch management, especially for enterprise security solutions and operating systems can go a long way to ensuring that networks are protected from cyber threats.<\/p>\n

\u201cIn modern enterprise environments, the question is no longer simply whether systems are patched. It is whether organizations retain the ability to enforce change across millions of endpoints before exposure turns into disruption. And that challenge is becoming more urgent as the endpoint\u2019s role continues to evolve,\u201d said the report.<\/p>\n

Endpoint cybersecurity software fails to protect one in five enterprise devices, leaving organizations vulnerable to cyber threats, research by Absolute Security has warned.<\/p>\n

This protection gap means that organizations face the equivalent of 76 days a year in which they\u2019re providing cybercriminals which increased access to their network, potentially leading to data breaches and downtime.<\/p>\n

The findings come from Absolute Security\u2019s 2026 Resilience Risk Index. The report, published on March 23, is based on analysis of device-level telemetry across tens of millions of enterprise endpoints, which have been validated as using endpoint management and cybersecurity software.\u00a0<\/p>\n

Christy Wyatt, president and CEO of Absolute Security, commented, \u201cCyber-attacks are inevitable, downtime is optional.\u201d<\/p>\n

\u201cThe cybersecurity industry has rushed to provide innovations that detect and prevent threats, unfortunately it\u2019s lagging when it comes to ensuring that tools can remain operational when they are needed most,\u201d she added.<\/p>\n

Slow Patch Management Leaves Systems Vulnerable<\/p>\n

No single issue is the reason for this, but rather it is because of the growing complexity of enterprise IT environments.<\/p>\n

The report noted that delays in applying security patches and software updates remain common, with almost a quarter (24%) of endpoint vulnerability management platforms classed as operating outside of compliance, up from 20% in the previous year.<\/p>\n

This means that a growing share of enterprise endpoints are operating with software which is known to be vulnerable to potential security issues and exploitation but has not been remediated. These vulnerabilities expand the exploitation window which attackers can use to their advantage.<\/p>\n

This issue also persists at an operating system level. According to analysis by Absolute, the application of critical updates for Microsoft Windows were delayed by an average of 127 days, leaving devices vulnerable to downtime caused by zero-day vulnerabilities and other cyber-attacks.<\/p>\n

Meanwhile, nearly 10% of enterprise endpoints are now permanently unpatched \u2014 creating vulnerabilities that organizations may never be able to remediate. This is particularly the case if organizations continue to use Windows 10, which has been out of support since October 2025.<\/p>\n

Overall, some organizations are struggling to manage their cybersecurity posture. This \u00a0ultimately results in the enterprise being vulnerable to cyber-attacks as well as at a disadvantage because of downtime and remediation.<\/p>\n

However, enforcing policies around patch management, especially for enterprise security solutions and operating systems can go a long way to ensuring that networks are protected from cyber threats.<\/p>\n

\u201cIn modern enterprise environments, the question is no longer simply whether systems are patched. It is whether organizations retain the ability to enforce change across millions of endpoints before exposure turns into disruption. And that challenge is becoming more urgent as the endpoint\u2019s role continues to evolve,\u201d said the report.<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Enterprise Cybersecurity Software Fails 20% of the Time, Warns Report https:\/\/www.infosecurity-magazine.com\/news\/cybersecurity-software-failure-20\/ Publish Date: 2026-03-24 09:15:00…<\/p>\n","protected":false},"author":1,"featured_media":198740,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/49418640-929f-48de-904b-d761f99da4f9.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,27],"class_list":["post-198739","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198739"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=198739"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198739\/revisions"}],"predecessor-version":[{"id":198741,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/198739\/revisions\/198741"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/198740"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=198739"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=198739"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=198739"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}