Lessons from 21 Energy Providers
Discover where providers are uncovering hidden exposures, what their legacy tools miss, and how you can turn these insights into a stronger defense.
Key Takeaways
-
7% of exposures hide in plain sight
-
Legacy security tools are falling short
-
Every org evaluated has IPv6 assets
-
43 CVEs were found on >50% of orgs
-
Misconfigurations still create risks
Why These Findings Matter
Exposures appear in unexpected places
Non-standard ports and overlooked services expand organizational risk.
Systemic risks cut across providers
Shared CVEs show vulnerabilities ripple across the entire sector.
IPv6 is part of every network
Every provider had IPv6 in use, but hosts were left unmonitored and exposed.
“Out of thousands of Internet-facing assets, SixMap was able to automatically pinpoint the most pressing vulnerabilities that required immediate action based on quantifying the risk by correlating the threat actors and exploitable vulnerabilities. We’re glad they have partnered with AWS to deliver value to their customers.”