SAN FRANCISCO, March 26, 2025— ( ) –Horizon3. Ai, a world leader in insulting protection, today released its 2025 Cybersecurity Insights Report, which exposes the typical security gaps that organizations struggle to shut. The report provides compelling evidence of how existing security strategies are failing and what organizations must change to stay ahead of evolving threats by analysing exploit trends from 50, 000 NodeZero® intelligent safety tests conducted in 2024 along with insights from a review trial of nearly 800 security leaders and practitioners.
The information reveals:
-
Vulnerability scanning falls short – Only 34 % of organizations find vulnerability scanning to be highly effective due to false positives that prevent teams from focusing on actual risks. This is true for 98 % of organizations.
-
Credential-Based Attacks Be a Major Risk – NodeZero safely performed token dumping in more than 28, 000 cases, demonstrating the common risk of poor token policies and practices.
-
Patch Management Delays Leave Systems Exposed – More than a third of security leaders ( 36 % ) and over half of practitioners ( 53 % ) acknowledge delaying patches due to operational constraints, leaving crucial vulnerabilities vulnerable.
-
NodeZero exploited 229 known vulnerabilities almost 100 000 occasions in client environments, demonstrating how difficult it is for many organizations to fix even the most widely known threats.
Snehal Antani, CEO & Co-Founder of Horizon3, said,” Security isn’t about reacting; it’s about outpacing your adversary.” ai. ” Too many companies still misinterpret security with compliance, relying on stale assumptions and annual testing cycles. This record demonstrates what modern defenders are now aware of: having to evaluate and think like an attacker and create a security plan that can withstand pressure in the real world.
Why Is Offense-Based Protection the Only Way to Go Forward?
These issues are not just isolated issues; they reflect a wider structure that the report exposes. It demonstrates that organizations still rely on point-in-time tests, loud tools, and danger models built on assumptions rather than actual data across nine main themes.
Each area exposes a recurring failing, from delayed patching and vulnerability overload to inefficient pentests, cloud misconfigurations, and particularly credential weaknesses. Fixing these issues requires more than just restoration; it also calls for ongoing exposure, privilege, and identity visibility.
The conclusion is that only an offense-driven approach that consistently monitors preparation and validates defenses while utilizing fraud, detection, and real-world intruder perspectives can find and close the gaps that attackers rely on.
” This document serves as a reality check for security groups,” according to Stephen Gates, Horizon3’s Principal Security SME. ai. It “points to a better way frontward” rather than just highlights where threats are failing. This information makes it clear: it’s time to evolve if you’re still relying on assumptions, dynamic tools, or monthly tests. Unpleasant safety is not a nice thing to have; it is the distinction between the stable and the exposed.
Data-Driven Insight from Over 50, 000 NodeZero® Pentests are available for download now for the State of Cybersecurity in 2025. Discover how an offense-driven approach is assisting organizations in finally closing the gaps that attackers rely on to prevent future security failures as well as uncover the root causes of today’s most frequent security failures.
Around Horizon3 ai
Horizon3’s NodeZero® Program ai manages production facilities continuously across the board. Customers with NodeZero can overcome the limitations of the company’s unpleasant security staff and the cost of seldom, costly penetration testing. With unified data and monitoring, emerging risk intelligence, threat detection, and intelligent pentesting, they stay ahead of a rapidly evolving threat landscape. Horizon3 was established in 2019 by former rulers in the sector and soldiers of American regional stability. Ai has conducted more than 120 000 insertion testing and has successfully solved a variety of use cases across sectors.
Observe Horizon3. ai on on Linked In.
View source version on businesswire .com: https ://www.businesswire .com/news/home/20250326589938/en/
Contacts
Media:
Erin Christopher
SourceCode Communications