As we are more than halfway through the year, we have seen that the Covid Pandemic has accelerated the need of many companies to provide a better remote access solution not just for sales, but for many other divisions. Although many have been concerned with performance of their applications with this new setup, many are also starting to see the need to improve their security for these solutions as well.
A global study was done by Cybersecurity Insiders which showed that many are already looking into incorporating it into their Secure Access Architecture. Below are a few key findings from the study:
Over 60% of participating organizations find the Zero Trust tenets of continuous authentication and authorization, trust earned through entity verification, and data protection as most compelling for their organization
Over 40% of participating organizations expressed privilege management, insecure partner access, cyberattacks, shadow IT risks, and vulnerable mobile and at-risk device resource access as top challenges to secure access to applications and resources
45% of participating organizations are concerned with public cloud application access security, and 43% with BYOD exposures
70% of organizationsplan to advance their identity and accessmanagement capabilities
30% of organizations are seeking to simplify secure access delivery including enhancing user experience and optimizing administration and provisioning
41% of participating organizations are looking to re-evaluate their secure access infrastructure and consider Software Defined Perimeter (SDP) – with the majority requiring a hybrid IT deployment and a quarter adopting a SaaS implementation.
On a global scale, we can see that the trend of remote access solutions is becoming the new norm for many organizations. While we move forward, our IT Security team has to deal with the increased security risks as we open new security flaws with unauthorized and non-compliant devices.
This is where security vendors with Zero Trust Security products and solution providers like us can help your organization. We have been helping many clients throughout the lockdown to find the right solution for them whether it has been for improving remote access performance or security.
The Zero Trust Model can be summarized by the following questions: Can the user prove their identity and of the device they are using? Are they allowed to access this application? Is the network they are using secure? If they cannot answer yes to either of these questions, they should not gain access to the network.
If you are interested to learn more about the solution, you may read more here, or you may contact us directly at 88939515 for us to better assess your situation and find the right solution for you!
The threat landscape used to be black and white – you kept the bad stuff out and the good stuff in. Now its harder to tell the good from the bad, and traditional signature-based antivirus approaches alone are a weak defense against ransomware and unknown threats, which often slip through. Next-generation technologies help with some threats but is in no way foolproof, and adding multiple anti-malware tools on a single endpoint results in too many products that don’t work together.
Trend Micro Apex One uses a blend of advanced threat protection techniques to eliminate security gaps across any user activity and any endpoint. It constantly learns, adapts and automatically shares threat intelligence across your environment.
We invite all our existing OfficeScan customers to join us this coming June 26, 2019 from 11:00 AM – 2:00 PM at Perfect Pint Greenbelt 2 to learn more about the benefits of migrating to Apex One. To learn more on how to register for this event, you may contact your existing Account Manager or contact us directly at 893-9515!
In case you didn’t hear, another big vulnerability was reported by Microsoft on May 14, 2019 known as “BlueKeep” which takes advantage vulnerabilities of Remote Desktop Services (RDS), Remote Code Execution (RCE), and Remote Desktop Protocol (RDP). However, BlueKeep only affects older version of Windows, so users of Windows 10 and 8 can rest easy. The severity of the vulnerability though has forced the hand of Microsoft and they have actually made and released a security patch for its unsupported versions. They have classified this vulnerability as a critical level threat.
This is why as of June 4, 2019, Microsoft once again urged its customers to apply the patch as soon as possible as more than 1 million devices are still vulnerable to the attack. This is to avoid another widescale malware attacks like those of the WannaCry ransomware attack back in 2017. Many companies were affected by the attack and caused many business operations to stop, more notably hospital operations.
What can you do to avoid being affected?
Microsoft has already provided the solution to BlueKeep, make sure you download the latest security patch for your corresponding OS (you can find the patches here). You may need to reboot your servers to ensure the patch is running properly.
For those who are Trend Micro users, specifically those who use Deep Security, if you are unable to apply the patch due to other reasons, such as being unable to reboot your servers, please make sure that you apply the correct policy for the virtual patching of Deep Security to ensure the security of your servers. Below is the Deep Packet Inspection (DPI) rule:
1009749 – Microsoft Windows Remote Desktop Services Remote Code Execution Vulnerability
You can view the official Trend Micro article on it here.
For those who are looking into a longer-term solution, you can consider solutions such as Citrix Gateway and Virtual Apps to secure your remote connections to Windows servers.
To learn more about these solutions, you can contact us at 893-9515 and we will help introduce you to different options that you have to help prevent these kinds of vulnerabilities!
With data mobility’s rise, you would expect that security of data would increase as well. However, many of the controls to mitigate the risk of data exposure still rely on traditional protection. Direct attacks, simple mistake, and even negligence are still major reasons as why data is lost. Below are some of the most common examples of common security pitfalls:
Loss or destruction of endpoints
Using consumer-grade collaboration and file sharing tools
Transferring files over insecure media including USB drives
Emailing sensitive information to personal email accounts
Social engineering (i.e. phishing) – the human factor and malware
These days, we use new IT services built on multiple cloud infrastructures to work in conjunction with the legacy and custom applications (business critical apps) built on-prem, this results in business data sprawled across multiple devices and locations. This makes the traditional enterprise perimeter almost completely eroded. The industry’s response has been to solve each gap in security with slew of security products, which each have their own unique policies, capabilities and limitations. This creates even more complexity in the already complex problem which can do ultimately do more damage than help.
In the global study from Citrix and The Ponemon Institute, they discovered that:
64 percent of respondents say their organization has no way to effectively reduce the inherent risk of unmanaged data (e.g. downloaded onto USB drives, shared with third parties, or files * with no expiration date)
79 percent of respondents are worried about security breaches involving high-value information
52 percent of respondents do not feel that their security infrastructure facilitates compliance and regulatory enforcement with a centralized approach to controlling, monitoring and reporting of data
That requires a purpose-built architecture, one that is designed and hardened for security from the ground up. Integral to this architecture is the inherent security Citrix provides by:
The solution to the problem? Control must be given back to IT while delivering security to the business without affecting the users experience. This type of architecture is inherent in the security Citrix provides by:
Centralizing and keeping data off endpoints
Containerizing and encrypting data on mobile devices
Controlling access to data contextually
Using file level access and control (DLP and IRM) for data in motion
Enterprises and organizations are facing next-tier, multifaceted threats that are both familiar and uncharted. As the cloud and the Internet of Things (IoT) ecosystem become more interconnected, it is essential for organizations tore-evaluate and redefine their understanding of threats, risks, and solutions in an ever-changing landscape.
With that, organizations and enterprises must ask: what threats should they prepare for? What risks are involved? What processes and procedures should be implemented?
In the face of next-tier threats, businesses must step up their game and LEVEL UP their defence against these threats.
In lieu of this, CT Link Systems, Inc. has joined Trend Micro’s Security TRENDs 2017 Executive Threat Defence Summit as an exhibitor to help educate businesses in the Philippines on the importance of Cyber Security.
To learn more or register to the event, please visit the site Here!