Do we really need endpoint protection?

With the plethora of cyber tools out there, is the endpoint still vulnerable?