BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

The 3 Pillars of Desktop Vulnerability Protection

Posted April 26, 2011    Peter McCalister

Talking to many people last week about our 2010 Microsoft Vulnerability report, I realized just how much most people in IT underestimate the importance of properly limiting administrative privileges in protecting desktops for vulnerabilities. It’s certainly not because of a reduction in the risk from vulnerabilities. Our survey revealed that in 2009, Microsoft published nearly 75 security bulletins documenting and providing patches for nearly 200 vulnerabilities while in 2010 Microsoft published over 100 security bulletins documenting and providing patches for 256 vulnerabilities.

So in today’s environment good security requires using all possible means to deal with these threats Everyone understands the importance of good patch management and nervously awaits Microsoft’s release on patch Tuesday . Virus protection software is near universally deployed in enterprise and most SMB environments.

So what role does properly limiting administrative privileges play? Well, as important as patches and virus protection are they can’t address increasingly frequent zero day attacks. However, limiting the use of administrative privileges reduces the attack surface for malware and reduces their potential impact until a patch or virus detection signature is available. Our analysis showed that removing administrator rights will better protect companies against 64% of all Microsoft vulnerabilities reported in 2010 and 75% of Critical Windows 7 vulnerabilities reported by Microsoft to date
So if you are worried about the vulnerability of your desktops then use all three pillars of desktop protection – patch management, virus protection and implement a secure least privilege solution.

Leave a Reply

Additional articles

red-thumbprint

Why big data breaches won’t always be so easy

Posted September 19, 2014    Byron Acohido

This blog post is republished with the permission of ThirdCertainty. See the original post here. – By: Byron Acohido, Editor-In-Chief, ThirdCertainty Some day, perhaps fairly soon, it will be much more difficult for data thieves to pull off capers like the headline-grabbing hacks of Home Depot and Target. That’s not a pipe dream. It’s the projected outcome…

Tags:
, , , , ,
pbps-blog2

8 Reasons Your Privileged Password Management Solution Will Fail

Posted September 18, 2014    Chris Burd

Leveraging complex, frequently updated passwords is a basic security best practice for protecting privileged accounts in your organization. But if passwords are such a no-brainer, why do two out of three data breaches tie back to poor password management? The fact is that not all privileged password management strategies are created equal, so it’s critical…

Tags:
, , , , , ,
pbps-customer-campaign-image

You Change Your Oil Regularly; Why Not Your Passwords?

Posted September 11, 2014    Chris Burd

There are many things in life that get changed regularly:  your car oil, toothbrush and hopefully, your bed sheets.  It’s rare that you give these things much thought – even when you forget to change them. But what if you’re forgetting something that can cost you millions of dollars if left unchanged for long periods…

Tags:
, , ,