73% of CISOs admit that unmanaged IT infrastructure leads to security incidents!

CSOonline.com reported that “According to a survey of more than 2,000 cybersecurity executives by security provider Trend Micro, nearly three-quarters (73%) of security leaders say they have experienced a security incident because assets in their IT infrastructure were not managed or simply unknown.”  The May 12, 2025 article entitled "73% of CISOs admit security incidents due to unknown or unmanaged assets” (https://www.csoonline.com/article/3980431/more-assets-more-attack-surface-more-risk.html?utm_campaign=editorial&utm_medium=browser_alert&utm_source=subscribers) included these comments:

Approximately nine out of 10 managers surveyed stated that attack surface management directly impacts their company’s business risk. A large proportion of respondents also admitted that a lack of risk management for exposed assets could have significant negative consequences. Negative consequences are feared for the following areas, among others:

• Business continuity (42% of respondents)

• Competitiveness (39%)

• Customer trust and brand reputation (39%)

• Supplier relationships (39%)

• Employee productivity (38%)

• Financial performance (38%)

Despite the obvious dangers, the survey shows that enterprises are doing too little. Forty-three percent of companies employ special tools for proactive risk management of their attack surface. The majority (58%) admitted they have not implemented processes for continuous monitoring. “However, this would be necessary to proactively mitigate and contain risks before they impact operations,” Trend Micro stated.

Unfortunately no one can be surprised!