BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Configuration Mistakes Make for Costly Security Gaps

Posted May 25, 2012    Daniel Jacobowitz

Earlier this week, Brian Prince over at Security Week posted an article on a subject that we’ve always been passionate about here at eEye, now BeyondTrust, Research – and that’s configuration.  More specifically, the incredible impact that smart, effective configuration can have on reducing attack surface for any size organization.

From Brian’s article, I agree with the obvious point that, “…practically by definition, [configuration errors] happen because of poor configuration management…”. Despite the glaringly conspicuous causality concerning configuration complications, the problem is no doubt a large one. Configuration gaffes lead to data breaches time and time again, allowing nefarious ne-er dowells to waltz into your database and grab your customer, patient, employee, etc., data.  It’s the best example of “an ounce of prevention is worth a pound of cure” in IT security.

This article highlights the reason why we invested the time and resources to develop the In Configuration We Trust toolset, which includes a free scanner and original research into the topic.  You can access the toolset here; give it a try, the data on your machine will thank you.

You can find Brian’s article – Configuration Mistakes Make for Costly Security Gaps, here.

Tags:
, , ,

Leave a Reply

Additional articles

webinar_ondemand

On Demand Webinar – Why You Still Suck at Patching

Posted March 27, 2015    Lindsay Marsh

On Demand Webinar: Dave Shackleford recounts some of his personal experiences in patch management failure, and breaks down the most critical issues holding many teams back from patching more effectively.

Tags:
,
dave-shackleford-headshot

Why You Still Suck at Patching…and How to Turn Your Life Around

Posted March 25, 2015    Dave Shackleford

Live webinar | March 26, 2015 | 10am PT/1pm ET | Dave Shackleford, SANS Instructor | Why You Still Suck at Patching…and How to Turn Your Life Around

Tags:
, ,
infographic

Privilege Gone Wild 2: Over 25% of Organizations Have No Privileged Access Controls

Posted March 24, 2015    Scott Lang

BeyondTrust recently conducted a survey, with over 700 respondents, to explore how organizations view the risk of misuse from privileged account misuse, as well as trends in addressing and mitigating those risks.

Tags:
,