One Article Review
| Source |  AlienVault Lab Blog |
|---|---|
| Identifiant | 8312091 |
| Date de publication | 2023-02-21 11:00:00 (vue: 2023-02-21 11:06:32) |
| Titre | 7 reasons why Endpoint Security and Response shouldn\'t be ignored |
| Texte | The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. When strategizing a security approach for the coming year, many solutions will cross a CISO’s desk, all useful in covering some part of the network. Organizations must scrutinize every layer and each solution to make sure their security stack runs efficiently while still boasting a Defense-in-Depth approach. There cannot be an overload of alerts, the learning curve must be worth the cost, and all solutions must integrate with each other. Not surprisingly, the search can be tedious, complex, and confusing. Broadly speaking, cybersecurity defends the network and the devices on that network. Both are key and must be protected. Endpoint security and response includes “not only the automated monitoring and detection of threats on the endpoint, but also a combination of autonomous and manual investigation, remediation, and response.” While not every tool will make the cut, here are seven reasons why Endpoint Detection and Response (EDR) should not be ignored. Cybercriminals aren’t ignoring endpoints. It’s not surprising that in a recent study, 76% of IT decision-makers reported their company use of endpoint devices has gone up. This can include workstations, servers, tablets, smartphones and a host of IoT devices like cameras, smart speakers, and lighting. However, it is equally unsurprising that bad actors have capitalized on this gain, and consequently, 79% of IT teams have seen a rise in endpoint-related security breaches. The cyber talent crisis creates the need for autonomous response on the endpoint. With an increase of both endpoints and endpoint-related attacks, a proportional increase in endpoint security measures is needed; unfortunately, the ongoing cyber talent deficit hamstrings those efforts and makes whatever qualified cybersecurity experts are available difficult to attain for many small to medium-sized businesses. Endpoint security solutions use automatic investigation and monitoring techniques to spot threat 24/7/365 and often respond autonomously to mitigate them. This cuts back significantly on the work remaining for already-strapped security teams to do. EDR offers cloud-based security for end-user devices. One of the primary security problems facing fast-expanding, digitally native, and mid-transition companies is how to secure both on-premises and cloud-based assets. Endpoints, while not in the cloud, connect to it and bad actors can use vulnerabilities in device software to pivot to the rest of your network. State of the industry endpoint security platforms can deploy patches and run reboots from the cloud and offer enterprise-wide centralized cloud management. Remote device security trends downward as workers mix personal with professional. The rise of BYOD has been significant and ubiquitous in the wake of the remote-work migration, and a study by Gartner revealed that over 50% of workers used their own laptop or smartphone for work activity. Interestingly, a Ponemon study indicated that 67% of respondents reported that personal mobile devices have negatively impacted their company’s security posture, and 55% cite smartphones as |
| Envoyé | Oui |
| Condensat | “not 24/7/365 about activity actors additional additionally adopt aid alert alerts all already also any approach are aren’t article assets at&t attached attachments attacks attain attention author automated automatic autonomous autonomously available back bad based been before begin best bit boasting both breaches broadly burden businesses but byod cameras can cannon cannot capitalized cause centralized ciso’s cite clean click cloud code collecting combination coming companies company company’s complex confusing connect consequently consumer content continue cost covering creates crisis cross curve cut cuts cyber cybercriminals cybersecurity data days decision default defends defense deficit deploy depth desk detection detonating device devices difficult digitally directly disabled documents does domains downward each edr efficiently efforts either email end endorse endpoint endpoints engineering entering enterprise equally error even ever every evolve expanding experts exploited exploits exposed facing fast fileless firewall firewalls firmware foolproof freshly from gain gartner generation get goes gone hamstrings has have having here host how however html human ignored ignoring impacted imperative inboxes incidents include includes increase indicated industry ineffective infecting information integral integrate interestingly investigate investigation iot isolate it’s keeping key laptop largely layer learning leave leaves lessening lighting like links loose lurks macros make makers makes malicious malware management manual many measures medium messages method mid migration misconfiguration miss mitigate mix mobile monitoring more most must native need needed; negatively network new next not now offer offers offload often one ongoing only opening organization organizations other over overload own part parts patches personal phishing pivot platforms policies ponemon popularity positions post posture practice premises prevent primary prior proactively problematic problems professional professionals proportional protected provided qualified reach reasons reboots recent recompile related remaining remediation remote rendering reported represents require respond respondents response responsibility rest revealed rise risk run runs safety sandboxing scrutinize search secure secures security seen sensitive servers seven shortage should shouldn shouldn’t side signature significant significantly sites sized slip small smart smartphone smartphones social socs software solely solution solutions some source speakers speaking spot spun stack state strapped strategizing strategy struggling study sure surprising surprisingly susceptible tablets talent target teams techniques tedious than them these those threat threats time tool tools transition trends trust ubiquitous undetected unfortunately unsurprising upon use used useful user users various vetting victim views vulnerabilities vulnerable wake whatever when why wide widely will work workers workstations worth year your zero |
| Tags | Tool Threat |
| Stories | Deloitte |
| Notes | ★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.