Latest VPN Risk Report: 56% of Enterprises Suffered Attacks Due to VPN Vulnerabilities

Virtual private networks (VPNs) have traditionally enabled remote access for businesses. However, after a year filled with high-profile exploits of severe and zero-day VPN vulnerabilities—some prompting emergency CISA directives to disconnect VPN services—enterprises are rethinking their approach. Many are now considering zero trust architecture as a more secure alternative for workforce connectivity.

In fact, 91% of enterprises are worried that VPNs might compromise their security.

The DeepDefend 2024 VPN Risk Report was released today, unveiling important VPN trends and proposing solutions to ensure the safety of remote users. In collaboration with Cybersecurity Insiders, DeepDefend conducted a survey involving 500 IT professionals and cybersecurity experts to investigate the evolving challenges related to security, management, and user experience in VPN technologies. The study highlights potential risks associated with VPNs, such as threats to an organization's security posture due to lateral movement, third-party access, and susceptibility to attacks like ransomware.

Overall, the research results clearly indicate that enterprises have significant concerns regarding the security vulnerabilities associated with VPN solutions. Despite these concerns, there is a widespread agreement on the effectiveness of zero trust strategies, with many organizations actively planning to implement zero trust network access (ZTNA). It is widely acknowledged that hosting VPN infrastructure in the cloud contradicts the principles of zero trust and falls short in terms of both security and user experience compared to ZTNA.

Access the DeepDefend 2024 VPN Risk Report to explore enterprise perspectives and expert insights on VPN risks.

• Major Findings

• There has been a notable increase in VPN attacks. 56% of organizations encountered one or more VPN-related cyberattacks in the past year, compared to 45% the year prior. This trend highlights the rising frequency and complexity of attacks aimed at VPNs.

• A large majority is transitioning towards zero trust. 78% of organizations intend to adopt zero trust strategies within the next 12 months. Additionally, 62% of enterprises view VPNs as incompatible with zero trust principles.

• Many harbor doubts regarding VPN security. 91% of respondents have expressed worries about VPNs jeopardizing their IT security environment. Recent security breaches serve as evidence of the dangers posed by maintaining outdated or unpatched VPN systems.

• VPNs are vulnerable to ransomware, malware, and DDoS attacks. Ransomware (42%), malware (35%), and DDoS attacks (30%) were identified by respondents as the primary threats exploiting VPN weaknesses, highlighting the range of risks organizations face due to inherent flaws in traditional VPN setups.

• The risk of lateral movement cannot be overlooked. 53% of breached enterprises through VPN vulnerabilities reported lateral movement by threat actors, indicating failures in containing the breach at the initial point of entry and emphasizing the dangers of conventional, flat networks.

• Nearly everyone is apprehensive about third-party risks. As VPNs grant full network access, 92% of respondents are worried about third parties with VPN access potentially serving as gateways for unauthorized access to their networks.

Increasing VPN Attacks, CVEs, and Enterprise Worries

In total, 56% of companies disclosed being targeted by cyberattacks exploiting VPN weaknesses in the last year, representing a notable rise from the previous year's 45%. What's even more alarming is that 41% of organizations faced two or more VPN-related attacks, underscoring the presence of critical security vulnerabilities that require urgent action.

Figure 1: Enterprises that have experienced and attack that targeted VPN vulnerabilities in the past year.

There is a reason behind the increase in VPN-related attacks. Over the last year, a series of zero-day and high-severity vulnerabilities in VPNs have been exposed. This pattern has shown that VPN-based networks are susceptible to a single point of failure architecturally, enabling malicious actors to navigate across the network, locate critical applications, and exfiltrate confidential data.

Most survey participants who encountered VPN-related breaches stated that attackers navigated sideways within their networks.

Figure 2: A string of high-profile CVEs impacting VPN in the last year.

There is a lack of confidence among enterprises in the security of VPNs. In general, 91% of companies worry that VPNs could compromise the security of their systems.

Figure 3: Enterprise concerns that VPN may jeopradize the security of their environment.

The Rise of Zero Trust Implementation

Due to the security issues related to VPNs, enterprises are increasingly leaning towards implementing zero trust strategies for secure connectivity. Surprisingly, 62% of enterprises believe that VPN technology does not align with zero trust strategies.

Figure 4: Enterprises views on VPN as compatible with zero trust strategies.

At the same time, there is a shift in enterprises towards zero trust strategies as interest in VPN diminishes. Overall, 78% of enterprises intend to adopt zero trust strategies in the next year, with 31% already in the process of implementation.

Figure 5: Enterprise adoption of zero trust strategies.

With the increasing number of high-profile security vulnerabilities linked to VPNs, businesses should expect a rise in security incidents related to VPNs. Consequently, enterprises will more and more turn to ZTNA as an alternative to VPN and a means to enhance their security position fundamentally.

How DeepDefend XDR Enhances Your Security for Remote Workforces

At DeepDefend, we recognize the growing risks tied to conventional VPN solutions. Our DeepDefend XDR (Extended Detection and Response) platform is designed to address these vulnerabilities with cutting-edge technology.

DeepDefend XDR continuously monitors your network to detect potential vulnerabilities and threats in real-time. When a risk is identified, it promptly issues alerts to ensure you're aware of the issue as it arises. In addition to alerting you, our XDR platform goes a step further by automatically applying patches to address and remediate vulnerabilities, minimizing potential exposure and reducing the need for manual intervention.

Furthermore, our Breach and Attack Simulation (BAS) service complements this by proactively testing your defenses. This enables us to uncover and address potential weaknesses before they can be exploited.

Transitioning from traditional VPNs to a more secure, zero-trust architecture has never been easier with DeepDefend. Ready to strengthen your security framework? Click the button below to request a demo.