- Report Finds VPN Complexity and Poor Maintenance Lead to Increase in Ransomware Incidents
- Cloud-based VPN alternatives can reduce exposure to ransomware and direct attacks
- Complex on-premises VPN systems often result in outdated configurations
Businesses that rely on older on-premises VPN devices could face higher ransomware risks, findings show At-Bay InsurSec 2025 Report demanded.
Analysis of cyber insurance claims found that organizations using Cisco and Citrix VPN systems were 6.8 times more likely to be hit by ransomware than those without such devices.
The study, based on more than 100,000 policy years of data collected between January 2024 and March 2025, examined incidents among approximately 40,000 insured customers in the United States.
SonicWall VPN also in danger
At-Bay said it adjusted its analysis to account for the frequency of each product in customer environments.
Adam Tyra, CISO for At-Bay customers, said The register“We think the bottom line is clear: Companies that rely on on-premises VPN devices from vendors like Cisco and Citrix should seriously consider moving to modern, cloud-based remote access solutions.”
Businesses that want to be secure should check out our recommendations for the best VPNs and the best VPNs with antivirus.
The report found that SonicWall VPN users were 5.8 times more likely to encounter ransomware, following a 300% increase in Akira attacks during the third quarter, with Palo Alto Global Protect at 5.5 times and Fortinet at 5.3 times.
Businesses using any on-premises VPN were 3.7 times more likely to fall victim to an attack than those using a cloud-based VPN or no VPN, At-Bay reported.
“We are not suggesting that these products are not inherently safe, but they are complex and require constant maintenance,” Tyra said. “While many organizations can deploy them securely, far fewer are able to maintain them properly over time, leading to missed patches and outdated configurations. »
The report adds that 80% of ransomware cases began when attackers gained access through remote access tools, with 83% of them involving VPN devices. He attributed this to the increasing complexity of devices.
Tyra said: “Ultimately, traditional on-premises VPNs are often too difficult for most businesses to operate securely. He added that cloud-based Secure Access Service Edge products “significantly reduce exposure to direct attacks compared to traditional VPNs.”
Neither Cisco nor Citrix responded The register requests for comments.
The best antivirus for every budget
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
