Johannesburg, 19 Mar 2019
In 2017, we saw one of the largest data breaches in history, when the personal data of 147 million people was stolen from Equifax. The breach was enabled by an application that had not been updated. A vulnerability in the Web application, Apache Struts, allowed hackers to access the data. The most shocking part of this breach was that it could have been avoided by a simple patch, which had become available months before the attack.
Predictions from Gartner suggest that by 2020, 99% of the vulnerabilities that cause security incidents will be known before the incident takes place, meaning that a timely update will be enough to stop it from happening.
The difficulty in preventing this kind of attack lies in the mammoth task of keeping applications updated. Digital transformation has resulted in an increase in the number and complexity of vulnerable endpoints, systems and applications; as well as the decentralisation of organisations, and a siloed approach to managing IT infrastructure.
Organisations need to develop a comprehensive cyber security strategy, leveraging next-generation technology that has been built to purpose: solving today's complex cyber security issues.
Innovative cyber security company Panda Security has launched a solution that manages vulnerabilities and their corresponding updates and patches, both for systems and for hundreds of applications: Panda Patch Management.
Panda Patch Management is a key module in Panda Security's comprehensive cyber security architecture. It reinforces vital prevention capabilities, drastically reducing the attack surface on Endpoints. The module integrates seamlessly with Panda's Aether management platform, which facilitates rapid response to security incidents, enables isolation of compromised devices and applies updates in real time.
Panda Patch Management can be added on to the range of Panda protection solutions, including Endpoint Protection and the new-generation offerings: Adaptive Defense and Adaptive Defense 360.
Benefits of patch management
* Visibility of endpoints in real-time, indicating vulnerabilities, patches, pending updates.
* Identifies any software that is no longer supported by the manufacturer (EOL). This software no longer receives patches or updates, leaving it vulnerable.
* Audits, monitors and prioritises updates on operating systems and applications.
* Prevents incidents by systematically reducing the attack surface created by software vulnerabilities.
* Contains and mitigates attacks, immediately patching one or several endpoints.
* The central Web console is used to remotely launch updates and provide visibility across the network, drastically reducing operating costs.
* Aids regulatory compliance in terms of accountability.
"Today, 99.96% of active vulnerabilities in corporate endpoints are related to missing updates which, if installed, would greatly reduce the security risk. Additionally, 86% of corporate endpoints are missing critical patches for third-party applications," says Jeremy Matthews, regional manager of Panda Security Africa.
"In order to mitigate attacks, organisations must have visibility and control over their network. The ability to view all aspects of your IT infrastructure, and act remotely and automatically, is invaluable in securing your organisation from today's advanced threats," explains Matthews.
Panda Patch Management provides all necessary tools to manage, from a single console, the security and updates of the operating system and third-party applications.
Matthews will speak at the ITWeb Security Summit in May, sharing his insights into how Endpoint Detection and Response (EDR) technology can be used to protect organisations against advanced threats, and into the different approaches to EDR and how to decide which approach is best for your organisation.
Share