News Feed

According to new findings from Tripwire, only around one-third of businesses actually have security strategies in place to protect the threats on their growing number of endpoints.

The Security Challenge Survey 2016 was gathered from 500 IT security professionals. Almost two-thirds of respondents (60%) admitted to not being ‘confident’ that all of their network devices receive updates in a timely fashion.

Tim Erlin, senior director of security and risk strategy for Tripwire quoted “Timely application of security updates is one of the most effective ways to reduce risk in any organisation, but it remains a widespread challenge”. He then went on to say “As more diverse devices are deployed, the availability and management of these updates becomes more difficult. Organisations need to have a strategy now, before an incident occurs”.

Devices classed as endpoints has changed dramatically in recent years. Endpoints used to be traditional devices such as desktops, tablets or phones, but now they have expanded into a much wider range: employee-owned devices, virtual machines, point-of-sale terminals, IoT devices and servers. Companies are starting to lose control of what devices they can manage, which creates significant security risks.

Dwayne Melancon, Tripwire’s vice-president of products, advised organisations that “the key to dealing with risks is to remember that foundational controls still apply, regardless of scale – know what’s on your network, understand how it’s vulnerable, keep it patched, keep it securely configured, and monito the heck out of it for suspicious activity.”