Each security program is betting on the identical assumption: as soon as a system is linked, the issue is solved. Open a ticket, rise up a gateway, push the information by way of. Carried out.
That assumption is mistaken. Additionally it is a serious purpose Zero Belief packages stall.
New analysis my group simply printed places numbers on it. The Cyber360: Defending the Digital Battlespace report, based mostly on a survey of 500 security leaders in authorities, protection, and demanding companies throughout the U.S. and UK, discovered that 84% of presidency IT security leaders agree that sharing delicate knowledge throughout networks heightens their cyber danger. Greater than half – 53% – nonetheless depend on guide processes to maneuver that knowledge between methods. In 2026. With AI accelerating the tempo of operations on either side.
That’s the Zero Belief hole no person talks about. Not identification. Not endpoints. The motion of information itself.
The Risk Quantity Is Rising Quicker Than the Controls
Cyber360 recorded a mean of 137 tried or profitable cyberattacks per week towards nationwide security organizations in 2025, up from 127 the earlier yr. U.S. companies noticed the weekly price surge 25%. Verizon’s 2025 Data Breach Investigations Report tracks the same trajectory on the enterprise facet: third-party involvement in breaches doubled yr over yr, reaching 30% of all incidents. IBM’s 2025 Value of a Data Breach Report put the typical value of a breach spanning a number of environments at $5.05 million, roughly $1 million greater than on-premises-only incidents.
The boundaries between IT and OT, between tenants, between accomplice and inside environments are the place the cash and the dwell time sit proper now.
Connectivity Is Not the Identical as Safe Data Motion
The second knowledge crosses a boundary, whether or not between an OT community and the enterprise SOC, between a accomplice tenant and your cloud, or between categorized and unclassified, it stops being a routing downside and turns into a belief downside. It must be validated, filtered, and policy-controlled earlier than something downstream can act on it. That’s the place trendy architectures decelerate.
The Cyber360 knowledge is blunt about the place the ache is concentrated:
- 78% of respondents cited outdated infrastructure as a main supply of cyber vulnerability, particularly pointing to analog methods and guide processes as weak hyperlinks.
- 49% named guaranteeing knowledge integrity and stopping tampering in transit as their single greatest problem when transferring info throughout categorized or coalition networks.
- 45% flagged managing identification and authentication throughout a number of domains as their greatest entry problem.
Integrity in transit, identification throughout domains, and guide processes are nonetheless within the loop. That may be a working description of the assault floor adversaries have been exploiting for 3 years.
The enterprise knowledge tells the identical story in a unique language. Dragos’ 2025 OT Cybersecurity Report discovered that 75% of OT assaults now originate as IT breaches, with roughly 70% of OT methods anticipated to connect with IT networks inside the subsequent yr. The standard IT/OT air hole is successfully gone. The managed file switch breaches drive the purpose residence. Cl0p’s exploitation of MOVEit compromised greater than 2,700 organizations and uncovered the non-public knowledge of roughly 93 million people. The identical playbook labored towards GoAnywhere and Cleo. Each a type of incidents was, at its core, an assault on the pipes that transfer knowledge between belief boundaries.
The Velocity-vs-Safety Commerce-off Is a Delusion
There’s a persistent perception that you could both transfer knowledge quick or transfer it securely. Decide one.
In apply, most groups choose security and settle for the delay. That works when determination cycles are measured in minutes. It doesn’t work when they’re measured in seconds, and it collapses utterly when they’re measured in milliseconds.
AI is accelerating on either side. Detection and response pipelines are shifting towards autonomous motion. They don’t anticipate a gateway to complete inspecting a file. When 53% of nationwide security organizations are nonetheless shifting knowledge manually, the delta between AI-speed demand and analog-speed provide turns into the assault floor. An AI mannequin, whether or not it’s working fraud detection, risk triage, or focusing on evaluation, is barely pretty much as good as the information reaching it. When that knowledge can not transfer freely, or can’t be trusted when it arrives, the mannequin runs on stale or partial context. The bottleneck just isn’t the intelligence layer. It’s the plumbing beneath.
The Function of Cross Area Applied sciences
That is the place cross-domain applied sciences earn their place, and never as a compliance checkbox.
Carried out correctly, they take away the pressured selection between pace and security. They implement belief on the boundary as an alternative of after it. They let methods function as a coordinated entire, as an alternative of as a set of remoted islands stapled along with point-to-point integrations that attackers have now demonstrated they’ll dismantle at scale.
The Cyber360 analysis factors towards a selected architectural reply: a layered mannequin combining Zero Belief, Data Centric Safety, and Cross Area Options. No single framework closes the hole alone. Zero Belief governs who and what. Data-centric security governs the information itself, wherever it goes. Cross-domain options govern the motion between environments. Collectively, they let safe knowledge sharing occur at near-real-time pace throughout categorized, coalition, and operational boundaries.
The precept applies nicely past protection: enterprise packages the place SOC knowledge crosses OT, IT, and cloud boundaries; essential infrastructure the place operational knowledge has to achieve decision-makers with out dropping integrity; multi-party investigations the place accomplice knowledge has to movement in each instructions beneath coverage.
The Backside Line
The belief that knowledge arrives trusted the second it crosses a boundary is the idea that attackers are most reliably exploiting proper now. The boundary is the assault floor. Motion is the place coverage collapses. And when greater than half of nationwide security organizations are nonetheless shifting delicate knowledge by way of guide processes, the hole between mission pace and management pace isn’t just a bottleneck. It’s the vulnerability.
That’s the house Everfox works in: securing the entry, switch, and motion of information throughout environments at mission pace.
For the structure patterns, management placements, and operational pitfalls, see our A Information to Safe Collaboration & Data Motion.
Word: This text is written and contributed by Petko Stoyanov, Chief Expertise Officer, Everfox.
