Blog Data Security

58% of organizations have more than 100,000 folders open to all employees

Like a wardrobe malfunction during a live broadcast, no one wants to be overexposed – especially when it comes to your data. The surprising truth: most companies go about their...
Rachel Hunt
1 min read
Last updated January 17, 2023

Contents

    Like a wardrobe malfunction during a live broadcast, no one wants to be overexposed – especially when it comes to your data.

    The surprising truth: most companies go about their business blithely unaware that some of their most sensitive data is wide open. And by “some” we mean a lot. In fact, our latest research shows that 41% of organizations had at least 1,000 sensitive files open to all employees.

    As we know, it only takes one leaked file to cause a headline-making data breach. We’ve seen how one unpatched server can lead to a disaster; a single “unpatched” folder filled with sensitive files can be just as disastrous — and it doesn’t take an expert or sophisticated code to exploit it.

    That’s where Varonis Data Risk Assessments come in. Every year, Varonis conducts thousands of risk assessments for companies around the globe. Using the Varonis Data Security Platform (DSP), we identify where sensitive and regulated data resides, show what’s overexposed and vulnerable, and provide actionable recommendations to increase your data security posture. Think of a Data Risk Assessment as a reality check on your data – that friend who tells you you’ve got a button undone. And they’re free (but more on that later).

    We examined a random sample of Data Risk Assessments to understand just how exposed companies really are when it comes to their critical data. The results are now available in Data Under Attack: 2018 Global Data Risk Report from the Varonis Data Lab.

    Findings from the report include:

    • 58% of organizations have more than 100,000 folders open to all employees
    • 21% of folders were accessible to every employee
    • 41% had at least 1,000 sensitive files open to all employees
    • On average, 54% of an organization’s data was stale, which adds to storage costs and complicates data management
    • On average, 34% of user accounts are enabled, but stale, “ghost” users who still have access to files and folders
    • 46% of organizations had more than 1,000 users with passwords that never expire

    2018 Global Data Risk Report

    Read the full report Data Under Attack: 2018 Global Data Risk Report from the Varonis Data Lab.

    Did we mention Data Risk Assessments are free?* Learn more today and request yours at https://info.varonis.com/start

    *So you’re the kind of person who likes to read the fine print (so are we). Yes, they’re actually free.

    What should I do now?

    Below are three ways you can continue your journey to reduce data risk at your company:

    1

    Schedule a demo with us to see Varonis in action. We'll personalize the session to your org's data security needs and answer any questions.

    2

    See a sample of our Data Risk Assessment and learn the risks that could be lingering in your environment. Varonis' DRA is completely free and offers a clear path to automated remediation.

    3

    Follow us on LinkedIn, YouTube, and X (Twitter) for bite-sized insights on all things data security, including DSPM, threat detection, AI security, and more.

    Rachel Hunt
    Rachel Hunt Rachel Hunt is the Director of Media Relations at Varonis. When Rachel is not handling all things PR, she's exploring local hiking trails with her dog.

    Try Varonis free.

    Get a detailed data risk report based on your company’s data.
    Deploys in minutes.
    Get started View sample

    Keep reading

    Varonis tackles hundreds of use cases, making it the ultimate platform to stop data breaches and ensure compliance.

    how-to-be-your-own-best-password-generator
    How to Be Your Own Best Password Generator
    how-to-be-your-own-best-password-generator
    Michael Buckbee
    November 12, 2014
    Let’s face it people, we’re bad at coming up with our own passwords. They’re too short, too obvious, and hackers have gotten very good at breaking them —either by outright guessing...
    windows-10’s-security-reboot,-part-i:-authentication
    Windows 10’s Security Reboot, Part I: Authentication
    windows-10’s-security-reboot,-part-i:-authentication
    Michael Buckbee
    February 26, 2015
    There’s incredible excitement about the Windows 10 release. If you completely quantum leap over Windows 9, you’d expect big things. In December, I was talking with NYU-Poly’s Professor Justin Cappos....
    what-is-azure-active-directory?-a-complete-overview
    What is Azure Active Directory? A Complete Overview
    what-is-azure-active-directory?-a-complete-overview
    Michael Buckbee
    August 21, 2020
    Azure Active Directory is a new way to manage users in the cloud. Read on to learn some details and some how-tos as you migrate to Azure AD.
    speed-data:-the-impact-of-ai-on-attack-vectors-with-justin-michael
    Speed Data: The Impact of AI on Attack Vectors With Justin Michael
    speed-data:-the-impact-of-ai-on-attack-vectors-with-justin-michael
    Megan Garza
    July 25, 2023
    Corbin Capital Partners CTO Justin Michael discusses the hot topic of ChatGPT. Justin leads guarding sensitive data for the leading asset management firm.