India, April 21 -- A new threat intelligence report from cybersecurity leader Sophos underscores a harsh reality for India's small and mid-sized businesses (SMBs): their own outdated infrastructure is becoming their greatest vulnerability. According to Cybercrime on Main Street: Sophos Annual Threat Report 2025, misconfigured and aging edge devices-firewalls, routers, VPNs-accounted for nearly 30% of initial network compromises in 2024.

The report identifies what Sophos calls "digital detritus"-end-of-life (EOL) devices still exposed to the internet-as a growing problem in the SMB ecosystem. These devices, often overlooked in patching schedules, are a low-hanging fruit for cybercriminals. "Over the past several years, attackers have aggr...