Prevention: the key to success in cyber attacks
Companies cyber attacks are constant and one of the most effective methods against such harm are correcting and updating their systems. Despite vigorous endorsements SANS Institute, specializing in information security, why do so many companies insist on not fix them and update them?
Many organizations are reluctant to patch their systems because they consider the time consuming process, a tiring exercise that jeopardizes productivity. Also simply leave the automatic update do its work is risky – what assurance do you have that the applications were actually corrected?
Firewalls, antivirus and even intrusion detectors or prevention systems are effective only about 50% of the time. The rest of the time, some malware is about to invade servers and desktops – unfortunately often users are subject to “welcome” virtual and end up making downloads of programs and clicking on broken links via fake emails or websites apparently legitimate .
Once fixed, hackers become a huge problem for organizations. Like almost everything in life, it is much easier to prevent entry of bad element than trying to solve the problem that is already installed. An innocent click of a user in a social or damaged link in the email sent by a virtual criminal who undergoes any known cause devastating damage to money and media time. The situation is so serious that several warnings about crypto malware by US CERT, American organization that leads efforts to improve the cyber security posture of the country were issued.
The sad reality is that outdated systems led to some of the largest data breaches with serious economic consequences for organizations worldwide. A once exploited, a more acute attack pave the way directly to the company or financial subjects. The last set of attacks as CryptoLocker and ransomware was profitable but frustrating at the same time for network security professionals and system administrators.
From the perspective of a virtual criminal, if your organization is committed to automate vulnerability scanning and patch continuously, it becomes a much more difficult target. The return on investment in adopting a patch management solution means saving your company from financial ruin.
Full article: http://corporate.canaltech.com.br