Half of the 6 Million Internet-Facing FTP Servers Lack Encryption
Summary
A recent analysis reveals that approximately 6 million internet-facing FTP servers are in operation, with a concerning half of them lacking encryption. This widespread use of the outdated protocol leaves both enterprises and individual users vulnerable to various cyberattacks.
IFF Assessment
The lack of encryption on a significant portion of internet-facing FTP servers represents a major security risk, making data transfer vulnerable to interception and compromise.
Defender Context
Defenders should be aware of the prevalence of unencrypted FTP servers, as these can be easy targets for attackers seeking to intercept sensitive data. Organizations should prioritize migrating away from FTP to more secure protocols like SFTP or FTPS and ensure all file transfer services are properly secured and monitored.