Over a Quarter of Enterprise Devices have Unhealthy Cybersecurity Controls

Report reveals OS fragmentation, endpoint and network complexity creating false sense of security for enterprises

New research has revealed that over 25% of enterprise devices have unhealthy cybersecurity controls, according to endpoint cybersecurity provider Absolute Software. The firm attributes this issue to the rise of hybrid and remote working with enterprise devices connecting from over 4 locations on average, a 15% price from last year.

London, 24th April – Absolute Software, the only provider of self-healing, intelligent security solutions, has revealed new research highlighting that 25-30 per cent of enterprise devices have unhealthy security controls.

The findings in Absolute’s ‘2023 Resilience Index’ contract the long-held belief that having more security solutions directly equates to more protection. The report leverages the analysis of over 14 million anonymised customer devices to benchmark for organisations looking to strengthen their resilience in today’s widely distributed, hybrid workplaces.

The data revealed that essential security tools, such as anti-virus, Endpoint Protection Platforms (EPP) and Endpoint Detection and Response (EDR) are often not functioning effectively, with over a quarter of devices recording unhealthy security controls.


“Security that is not installed or working effectively cannot protect you,” said Christy Wyatt, President and CEO of Absolute Software. “The criticality of these security controls, especially among remote and hybrid workers cannot be overstated and the ability to keep them healthy is often oversimplified. Even market-leading, world-class software requires repairing for many reasons: changing in the environment around it, or new forms of risk introduced by adversaries or even by the use. By applying intelligence and automation to heal them, we can remediate the risk, restore the user experience, and ensure compliance.”

The work-from-anywhere model is exacerbating the strain on IT and security teams – compounding existing device health and security challenges with a broad mix of networks, hardware, OS versions, and patches. More than 80 percent of devices analysed use the Microsoft® Windows® OS, with the large majority on Windows 10 – and within that device population, there are 14 different versions and more than 800 builds and patches to manage. Absolute’s telemetry data also shows there are 67 applications installed on the average enterprise device, with 10 percent of those devices having more than 100 applications installed.

Other key insights from the ‘2023 Resilience Index’ include:


Distributed, highly mobile users compound complexity: The average number of enterprise device locations across Absolute customers has grown 15 percent year-over-year, with an average of four locations per device observed in February 2023.


Hybrid working means heavy reliance on third-party networks: In hybrid work models, critical applications like Virtual Private Networks (VPNs) and Zero Trust Network Access (ZTNA) need to be deployed, installed, and up to date. However, Absolute data shows this critical tool is either not installed or is not at the required version level on more than 30 percent of devices.


Embedded in the firmware of more than 600 million devices, Absolute enables visibility and control across endpoints, applications, and network connections. Leveraging our unique self-healing capability, customers can protect devices, data, and users and ensure that critical security controls operate at maximum effectiveness, while also delivering an optimal remote and mobile user experience. Leveraging our patented Absolute Persistence® technology and Absolute Application Resilience capabilities, both enterprises and security vendors can optimise application efficacy and strengthen security and compliance posture.

Read the full ‘2023 Resilience Index’ hereTo learn more about Absolute Software and the company’s intelligent, self-healing security solutions, visit here.

Leave a Reply

Your email address will not be published. Required fields are marked *