navigation bar left navigation bar right

Secunia CSI7
navigation left tab About us navigation right tab
navigation left tab Careers navigation right tab
navigation left tab Memberships navigation right tab
navigation left tab Newsroom navigation right tab
navigation left tab Contact us navigation right tab

SC Magazine Article: Automated patches necessary for true endpoint security

Get this blog as an RSS Feed
11:20 CET on the 11th November 2010
Entry written by Secunia.

The threat environment has evolved from the era of script kiddies out for personal fame to its current iteration where specialists develop codes offered for sale on underground markets, according to a presentation on endpoint security at SC World Congress on Wednesday.

"Cybercrime now is all about profit or politics," said Stefan Frei, research analyst director at Secunia, a vulnerability management and tracking firm.

In one recent study he cited, 100 percent of enterprises analyzed had bot infections. The cause, he said, was unpatched programs.

"A perfectly patched world is far, far away," he said.

Attackers are no longer going after the obvious targets, such as Microsoft software, he said, because there are too many ripe options available in the form of third-party applications.

A process is needed to identify third-party programs because attackers are going after non-Microsoft applications, he said.

"A patch provides better protection than thousands of signatures," Frei said. "It eliminates the root cause."

A multilayered defense is necessary, he said, as well as controlled identity and timely patching.

To illustrate some of these concepts, Jonathan Sweeny, incident response manager and lead security analyst at Indiana University, provided a case study which demonstrated how a Secunia tool identifies anomalies on the university's network to help him and his IT team stay on top of attacks and abuses.

Greg Masters
SC Magazine US

Article Link:

Discuss this news entry
A new thread in our forum is created. Activate the thread by commenting/discussing below.
Subject: SC Magazine Article: Automated patches necessary for true endpoint security
No posts yet


You must be logged in to post a comment.

 Products Solutions Customers Partner Resources Company
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
Technology Partners
 About us

Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
Secunia © 2002-2015 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+