Removing Admin Rights Key to Mitigating Microsoft Vulnerabilities: BeyondTrust

BeyondTrust’s latest 2021 Microsoft Vulnerabilities Report includes the latest annual breakdown of Microsoft vulnerabilities by category and product, as well as a five-year trend analysis, providing a holistic understanding of the evolving threat landscape. The BeyondTrust Microsoft Vulnerabilities Report, produced annually by BeyondTrust, analyses the data from security bulletins publicly issued by Microsoft throughout the previous year.

Approximately 1.5 billion people use Windows operating systems each day, with various applications for Microsoft’s products reaching into homes, businesses, and entertainment venues. The data in this report provides a crucial barometer of the threat landscape for the Microsoft ecosystem.

Now in its eighth edition, this year’s report identified the following highlights:

• In 2020, a record-high number of 1,268 Microsoft vulnerabilities were discovered, a 48% increase YoY
• The number of reported vulnerabilities has risen an astonishing 181% in the last five years (2016-2020)
• Removing admin rights from endpoints would mitigate 56% of all Critical Microsoft vulnerabilities in 2020
• For the first time, “Elevation of Privilege” was the #1 vulnerability category, comprising 44% of the total, nearly three times more than in the previous year
• 87% of Critical vulnerabilities in Internet Explorer and Microsoft Edge would have been mitigated by removing admin rights
• 70% of Critical vulnerabilities affecting Windows 7, Windows RT, 8/8.1 and 10 would have been mitigated by removing admin rights
• 80% of Critical vulnerabilities in all Office products (Excel, Word, PowerPoint, Visio, Publisher, and others) would have been mitigated by removing admin rights 
• 66% of Critical vulnerabilities affecting Windows Servers would have been mitigated by removing admin rights

“The sheer fact that patching must always occur is a cybersecurity basic,” said Morey Haber, Chief Technology Officer & Chief Information Security Officer at BeyondTrust. “However, deflecting an attack with good cybersecurity policies like the removal of administrative rights ultimately makes the environment, and home workers, even more secure. And, most importantly, honoring least privilege can buy your organisation time to patch when critical vulnerabilities are published.”

With the surge in Microsoft vulnerabilities, ensuring the endpoints in your organisation are secured is more critical than ever. The removal of administrative rights is critical to mitigating the risks outlined in this report. BeyondTrust Endpoint Privilege Managementenables organisations to achieve least privilege with a solution that not only deploys quickly, but also strikes the right balance between security and productivity.