VendorsZero Networks
Zero Networks
Cybersecurity reports and statistics published by Zero Networks
8 categories1 reports
Research Reports
Reports and publications from Zero Networks
Recent Statistics & Reports
East–West internal traffic represents more than 70% of a company’s communications and remains unprotected.
6/15/2026•
Network TrafficNetwork SecurityInternal Communications
87% of enterprise servers accept inbound RDP or SSH connections from broad internal sources, giving attackers wide access pathways once inside the network.
6/15/2026•
Remote AccessNetwork SecurityRDP
78% of enterprise servers are reachable over SMB or WinRM, administrative protocols commonly exploited for ransomware spread and lateral movement.
6/15/2026•
SMBWinRMRansomware
80% of enterprise servers are reachable from anywhere inside the network, creating greenfield conditions for ransomware, operational disruption, and full-environment compromise.
6/15/2026•
Network SecurityRansomwareLateral Movement
43% of internal authentication traffic still relies on NTLM, a legacy protocol frequently abused for credential replay and privilege escalation attacks.
6/15/2026•
Internal Authentication TrafficNTLMCredential Theft
12% of organizations maintain direct user-to-server administrative pathways, meaning a single compromised employee device can provide immediate access to high-value systems.
6/15/2026•
Access ControlInsider RiskPrivileged Access
Roughly 80% of enterprises have deployed internal AI agents while two-thirds lack governance policies for those agents.
6/15/2026•
AI AgentsAI Governance