DarkReading has an interesting writeup today that focuses on information that Duo has collected in its 2017 Duo Trusted Access Report that you can access in full by giving them your email.

To give you insight into the security health of enterprise devices, Duo analyzed our dataset of 4.6 million endpoints completing over two hundred million authentications a month.



While many times companies lay off security issues on holes left by end users, Duo thinks that is really not the case. I know we have a lot of [H] security specialists and admins around here as I see the complaints all the time about what is wrong at their places of work. The Duo report points out outdated OS, outdated plug-ins, outdated mobile OS, and outdated desktop apps.

The exercise revealed that many organizations are missing out on the security enhancements available in newer operating systems and software like Windows 10, Android 7, Adobe Flash, and Java by sticking to old versions of these technologies.

“The security industry takes the lazy approach of blaming users for not updating,” says Kyle Lady, senior R&D engineer at Duo. “That is not really fair.”

Discussion

Source: [H]ardOCP – Shocking! Outdated Software Commonplace in Enterprise