ACCORDING to Bitdefender's analysis, Bitdefender’s Internal Attack Surface Assessment is a 45-day, low-effort engagement designed for organisations with 250 or more employees, delivering a precise, prioritized map of users, endpoints and tools you can safely remove from attackers. A clean Windows 11 install ships with 133 unique living-off-the-land binaries across 987 instances, and PowerShell is active on 73% of endpoints, much of it invoked silently by third‑party applications.
Early‑access customers have reduced their attack surface by 30% or more in the first 30 days, with one reporting almost 70% after locking down LOLBins and remote tools. The process uses GravityZone PHASR to generate an exposure score and a five‑category findings list, then offers an optional reduction sprint and a final reduction review to quantify shadow IT and unauthorized binaries surfaced along the way.
The approach argues this is an over‑entitlement problem rather than a malware problem, and Gartner projects that preemptive cybersecurity will account for 50% of IT security spending by 2030, with 60% of large enterprises adopting dynamic attack‑surface reduction by 2030.