The 2020 Microsoft Vulnerabilities Report Has Landed! | BeyondTrust

Products

Privileged Password Management

Discover, manage, audit, and monitor privileged accounts

Password Safe DevOps Secrets Safe

Endpoint Privilege Management

Manage privileges on Windows, Mac, Linux, and Unix endpoints

Windows and Mac Unix and Linux Active Directory Bridge

Secure Remote Access

Centrally manage and secure remote access for service desks and vendors

Remote Support Privileged Remote Access

BeyondInsight Analytics

See All Solutions
Resources

Universal Privilege Management

Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.
Watch Video

Learn

Case Studies

Competitor Comparisons

Datasheets

Glossary

Product Demos

Whitepapers

Attend

Events

Go Beyond

Training

Webinars

Support

Changelog

Professional Services

Technical Documentation
Blog
Partners
Contact

Open

The seventh edition of our popular Microsoft Vulnerabilities Report has arrived. The unique research provides comprehensive insight into a year’s worth of vulnerability disclosures by Microsoft in 2019. Encompassing both platforms and products, we not only assess the number of vulnerabilities, but also their severity rating.

By performing this analysis, we can better understand how to mitigate most of the vulnerability-related risks - and doing so is actually a lot easier than you might think! At a time when organizations are under immense pressure to enable remote workforces without compromising security, the ability to achieve quick success is a key requirement when considering solutions that remove admin rights.

2020 Microsoft Vulnerabilities Report: Key Findings

One most striking findings in this year’s research is that vulnerabilities keep rising,. A total of Microsoft 858 vulnerabilities were published throughout last year, a record high since this report began. From a five-year perspective, this marks a 64% increase over the 524 discovered in 2015.

While the total vulnerabilities stat is certainly eye-opening, we place a particular focus on the Critical vulnerabilities. As defined by Microsoft, a ‘Critical’ vulnerability is one “whose exploitation could allow the propagation of an internet worm without user action, and possibly without even a prompt.” These are the most dangerous vulnerabilities as they could allow a remote attacker to execute commands on a vulnerable computer and essentially take full control over it.

“You should remember that removing admin rights is not just about security. It will also allow your computers to run faster, better and longer, with less reinstallations. My customers have measured a 75% reduction in the amount of Helpdesk tickets after removing admin rights - meaning you can be more secure and productive for extended periods of time!”

Sami Laiho, Microsoft MVP & Ethical Hacker

In 2019 there were a total of 192 Critical Microsoft vulnerabilities reported. Interestingly, 77% of these could have been mitigated simply by removing administrator user rights from your end users. Other findings include:

100% of Critical vulnerabilities in Internet Explorer would have been mitigated through the removal of admin rights
80% of Critical vulnerabilities affecting Windows 7, 8.1, and 10 would have been mitigated by removing admin rights
80% of Critical vulnerabilities affecting Windows Servers would have been mitigated through the removal of admin rights

It’s obvious from this evidence that eliminating admin rights can greatly improve security around Microsoft products and reduce the associated risks from their vulnerabilities - but why are many IT leaders still hesitant to do so?

The main reason is a fear of being unable to balance adequate security measures with sufficient user productivity. However, this is no longer a compromise that needs to be made.

Kris Zentek, our Senior Product Manager, says “Our Endpoint Privilege Management solutions enable you to elevate privileges to applications, maintaining user productivity without compromising security. You can exert granular control over access to applications, tasks, and scripts in a way that makes this balance seamless, and the security invisible to the end user. These solutions elevate access as needed for applications—without elevating the user’s actual privileges—to ensure that users are productive and protected. Our solutions deploy quickly and easily for fast user adoption and immediate achievement of least privilege enforcement.”

The Microsoft Vulnerabilities Report reinforces the importance of establishing and enforcing least privilege, as well as applying patches in a timely manner. With an ever-increasing and evolving attack surface, efficiently managing their privilege universe is becoming a must-win battle for organizations.

Download the full Microsoft Vulnerabilities Report today for more insight, a detailed breakdown of the stats, and exclusive commentary from several cybersecurity experts and thought leaders.

DOWNLOAD REPORT

Jonathan Clarke

Content Marketing Manager

With a Master's Degree in English Language and Media, Jonathan has a genuine passion for producing compelling and thoroughly researched cybersecurity content. Coupled with a B2B agency background, he is adaptable to a wide range of industry topics, and also looks after BeyondTrust's Public Relations and social media channels. A huge animal lover, he is the proud 'father' of Simba, a very hyperactive German Shepherd dog.

You May Also Be Interested In:

Webcasts | February 09, 2021

Customer Webinar: Remote Support 21.1 Released!

Webcasts | February 24, 2021

Your PAM 2021 Blueprint: Securing Privileged Accounts for On-Premises and Cloud Assets

Whitepapers

Evolving Privileged Identity Management (PIM) In The 'Next Normal'

Copyright © 1999 — 2020 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.