Logo

Trend Micro study reveals visibility and control gaps are undermining security

Trend Micro has published the findings of a new global study indicating that organizations are struggling to define and secure an expanding cyber-attack surface, hampering risk management efforts.

Trend Micro surveyed 6297 IT and business decision makers across 29 countries to compile the study.

 

The study revealed that three-quarters (73%) of global organizations are worried about their growing attack surface. Over a third (37%) said it is “constantly evolving and messy,” with only half (51%) able to fully define its extent.

 

Over two-fifths (43%) of respondents went further, admitting the digital attack surface is “spiralling out of control.”

 

Visibility challenges appear to be the main reason organizations are struggling to manage and understand cyber risk in these environments.

 

Almost two-thirds (62%) said they have blind spots that hamper security, with cloud environments cited as the most opaque. On average, respondents estimated having just 62% visibility of their attack surface.

 

These challenges are multiplied in global organizations. Two-thirds (65%) of respondents claimed that being an international enterprise that spans multiple jurisdictions makes managing the attack surface harder.

 

Yet a quarter (24%) are still mapping their systems manually and 29% do so regionally—which can create further silos and visibility gaps.

 

“IT modernization over the past two years was a necessary response to the ravages of the pandemic, but in many cases it unwittingly expanded the digital attack surface, giving threat actors more opportunities to compromise key assets,” said Bharat Mistry, Technical Director at Trend Micro. “A unified, platform-based approach is the best way to minimize visibility gaps, enhance risk assessments and improve protection across these complex, distributed IT environments.”

 

The study also revealed that over half (54%) of global organizations don’t believe their method of assessing risk exposure is sophisticated enough. This is borne out in other findings:

 

•       Only 45% have a completely well-defined way to assess risk exposure

•       More than a third (35%) only review/update their exposure monthly or less frequently

•       Just 23% review risk exposure daily

•       Keeping up to date with the ever-changing attack surface is the top area organizations struggle with

Forescout and Netskop: enhancing zero trust security for modern enterprises

Forescout and Netskope partner to provide integrated Zero Trust security solutions, focusing on...

Digital Space achieves Cisco 360 managed services expert status

Digital Space achieves Cisco 360 Managed Services Expert status, recognising its managed services...

Netskope introduces NewEdge AI fast path for AI networking

Netskope’s NewEdge AI Fast Path enables faster connectivity to AI applications while maintaining...

2026 OSSRA report: evaluating the risks in AI-powered open source development

The latest OSSRA report reveals rising challenges in AI-driven open source development,...

Ci Distribution partners with Axagon for enhanced UK market reach

Ci Distribution teams up with Axagon to deliver connectivity and storage solutions across the UK,...

Infosecurity Europe 2026 announces first wave of keynote speakers

Infosecurity Europe 2026 unveils keynote speaker line-up, linking military, sport, and tech...

Adapt or perish: SMBs and AI-driven cybersecurity challenges

AI is reshaping the cyber threat landscape for SMBs, with N-able's report Cybersecurity in the Age...

ISC2 launch a global code of conduct for cybersecurity professionals

The new global Code of Professional Conduct sets ethical standards for cybersecurity practitioners...

© 2026 - Angel Business Communications Limited

Made with by Angels