The flurry of security patches the last few days has lots of IT proefessionls wuite busy. Microsoft has released nine critical/important security updates (with exploits already in the wild) and Apple and Adobe have also released a string of patches. Given this breadth of "Patch Mania” among top tier software vendors used by nearly everyone, it’s a perfect opportunity to highlight the role of managed services and how it integrates with good security and patch management.
Did you go sleep last night with your doors open? Your IT network may have…….Large software companies like Microsoft spend lots of time and money to fix security holes in their software called
"Vulnerabilities" (e.g. Greek myth of Achilles and his vulnerable heel). These flaws are frequently discovered by unlucky victims and are inevitable in the world of software.
See Wikipedia Article. The fixes generated by the vendors for these vulnerabilities are called
"Patches." Patches should not be considered optional and are frequently misunderstand as simple software upgrades. Vendors attempt to highlight the significance of these patches using jargon that may add confusion (at least to the average person). Vendors label these “bug fixes” as security patches, rank the severity of the vulnerability (e.g. how damage can be done) and rank the level of importance of the patch as Critical or Important.
See Wikipedia Article.
Hackers develop
“Exploits” to capitalize on these vulnerabilities. Exploits are essentially the tools of the black hat hacker to do the dirty work and break into systems. Exploits can be launched when using software applications (e.g. Word, Excel, Adobe, etc.) or directly as network layer traffic that is invisible to the end user and many low grade firewalls. Exploits are rapidly distributed and easily available across the Internet through a series of underground websites and chat rooms.
See Wikipedia Article.
Hackers who develop and utilize these Exploits are financially motivated. They steal private data to access accounts (e.g. credit cards, bank accounts, etc.), hijack IT resources, host illegal content (e.g. pornography and stolen software) or commit fraud through fake transaction. This is big business and involves organized international crime. Their objective is to hack the vulnerable network or computer before it is patched.
See Wikipedia Article. Example. A parallel example in the world of physical security can help explain. Leaving computers and software unpatched is like leaving the windows or door of a retail store on the first level of a New York City (or Charlotte) high rise unlocked and wide open during after hours. In the case of the Interent, the entire online world might be able to access the vulnerable IT network.
Solution. Don’t be the low hanging fruit or easy victim. Practice good corporate IT hygiene and follow some basic best practices:
Avoid being an easy target for the bad guys by patching machines and software applications as soon as possible when alerted by key vendors.
Implement proactive patch maintenance to accelerate and streamline the process to eliminate employee downtime and shorten the window of vulnerability.
Implement a layered defense that provides adequate user level control and reporting, network visibility and security and diagnostic tools.
Serguei Beloussov, CEO of Parallels, believes SMBs represent a major opportunity for hosting companies. For a review of his comments at a gathering of hosting companies in Washington, DC this week at HostingCon 2009 check out this article . You can also see a preview of the SMB offering here.
