BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

The 3 Pillars of Desktop Vulnerability Protection

Posted April 26, 2011    Peter McCalister

Talking to many people last week about our 2010 Microsoft Vulnerability report, I realized just how much most people in IT underestimate the importance of properly limiting administrative privileges in protecting desktops for vulnerabilities. It’s certainly not because of a reduction in the risk from vulnerabilities. Our survey revealed that in 2009, Microsoft published nearly 75 security bulletins documenting and providing patches for nearly 200 vulnerabilities while in 2010 Microsoft published over 100 security bulletins documenting and providing patches for 256 vulnerabilities.

So in today’s environment good security requires using all possible means to deal with these threats Everyone understands the importance of good patch management and nervously awaits Microsoft’s release on patch Tuesday . Virus protection software is near universally deployed in enterprise and most SMB environments.

So what role does properly limiting administrative privileges play? Well, as important as patches and virus protection are they can’t address increasingly frequent zero day attacks. However, limiting the use of administrative privileges reduces the attack surface for malware and reduces their potential impact until a patch or virus detection signature is available. Our analysis showed that removing administrator rights will better protect companies against 64% of all Microsoft vulnerabilities reported in 2010 and 75% of Critical Windows 7 vulnerabilities reported by Microsoft to date
So if you are worried about the vulnerability of your desktops then use all three pillars of desktop protection – patch management, virus protection and implement a secure least privilege solution.

Leave a Reply

Additional articles

flash-logo

Adobe Patches Zero-Day Flaw Being Exploited in the Wild

Posted January 22, 2015    BeyondTrust Research Team

Earlier this week, French malware researcher Kafeine reported on a new Adobe Flash zero-day vulnerability that was being exploited in the wild using the latest versions of the Angler Exploit Toolkit. “Any version of Internet Explorer or Firefox with any version of Windows will get owned if Flash up to 16.0.0.287 (included) is installed and enabled”…

Tags:
, , , , ,

Your Data Security Strategy Starts with Deploying a Least Privilege Model (part 2 of 2)

Posted January 22, 2015    Scott Lang

In last week’s blog, we talked about how controls and accountability must be put into place so that only the right folks can access data and the systems on which that data resides, and that employing a least privilege model helps to achieve that and more. We’re using conclusions and data from a recent report…

Tags:
, , , ,
Larry-Brock-CISO

Basic Blocking and Tackling for Defending Against Advanced Targeted Attacks

Posted January 22, 2015    Larry Brock

With football season at its pinnacle at both the college and professional levels, the best teams continually focus on the fundamentals that make them successful. In security, we need to do the same.  It is okay for us to have a few key plays, especially in certain industries where we have to focus on unique…

Tags:
, , , , ,