In the endless battle to secure endpoints, companies are still emphasizing user training to avoid phishing and other social engineering gambits. However, rapid growth in tools like endpoint detection and response (EDR) and user and entity behavior analytics (UEBA) reveal the understanding that educating employees isn’t sufficient to protect against hacks — you need to find advanced solutions to counteract new attack techniques.
The results come from Dark Reading’s “2022 Endpoint Security Survey,” which polled 190 cybersecurity and IT professionals on how pandemic-related changes affect their endpoint security strategies.
In the above graphic, the darker blue bars represent results from the 2022 survey, while the lighter blue shows 2021 numbers. At first glance, user training is clearly the top choice for defending against attacks; not only is it the most universally adopted countermeasure, at 73% of respondents implementing it for 2022, but it’s grown from 2021’s 70%. But the funny thing is, almost every category has also grown.
EDR has displaced remote access management as the second-most implemented measure. Last year, remote access management was used to secure endpoints by 52% of respondents, with only 37% using EDR to detect and respond to threats. This year, remote access management was the only technique to fall in popularity; it dropped to 46%, while EDR rose to 54% in 2022.
To protect against misuse of credentials, 43% of respondents apply privileged access management (PAM), up six points from 2021’s 37%, and 41% segment their networks to prevent lateral movement