[ad_1]
Seldom in the history of IT security have traditional tools and solutions in this area been as inadequate as they are today.
Over the past four years, numerous ransomware attacks have resulted in numerous data breaches and long run of embarrassing headlines such as Colonial Pipeline, JBS, and Kaseya. The current security crisis has many causes, but some of the problems can be attributed to the relatively complex and interconnected cloud environment.
In all the ways the cloud has revolutionized digital business, technology is pushing IT security into a much more murky and complex environment where attacks and vulnerabilities are harder to detect than ever before. Additionally, as enterprises rely more and more on their applications, too few security teams are equipped to prevent vulnerabilities from being introduced into production applications.
It reflects the many deficiencies in today’s security methods and the declining trust in them. In a global survey of 1,300 chief information security officers, (CISO) conducted by Coleman Parkes Research in April 2022. One of the most important findings, the survey found, despite deploying multi-layered security systems, 75% of CISOs still fear too many vulnerabilities permeating their app production. It indicates that you are stating that
Another factor highlighted by the survey is the growing need for greater automation and observability of IT security. With the rise of multi-cloud and hybrid cloud environments, we are faced with a much more complex environment, multiple coding languages ​​and open source software, CISOs say they need solutions that blend security and visibility. Vulnerability and attack.
IT teams and apps are under siege
Nearly 80% of surveyed CISOs say continuous, automated runtime vulnerability management is paramount to filling the many gaps left uncovered by current solutions. At the same time, however, research shows that only 25% of security teams have access to accurate, continuously updated reports of all apps and code libraries running in production. These teams operate in the dark.
Consider all the factors that hinder your security team’s ability to get an accurate and comprehensive picture of what’s going on with your apps in production today. As organizations strive to innovate faster, many third-party libraries harbor harmful vulnerabilities, but many are embracing open source code.
Meanwhile, the demand to accelerate digital transformation in enterprises around the world generally leads to less accountability during the application development process. Many developers simply lack the resources to accomplish this.
When asked to identify what makes it most difficult to identify and resolve application vulnerabilities, 61% of CISOs surveyed pointed to third-party code. More than half of CISOs say the speed of modern software delivery makes it easier for vulnerabilities to move back into production after remediation.
App vulnerabilities are here
In Log4Shell—Zero-day vulnerabilities discovered in late 2021 Impacted millions of live applications using Java librariesS—is a critical vulnerability, and threats of this kind are not uncommon.
Vulnerabilities discovered years ago are still being exploited today. Patches created for these vulnerabilities were sometimes applied improperly. Alternatively, patching may have been rolled back for various reasons. Some vulnerabilities were resurrected by incorrectly merged code. Other vulnerabilities were introduced by new code written in older version branches. While the media speculates about Log4Shell’s potential to become endemic, the reality is that vulnerabilities in applications of this scale will always be endemic.
Like vampires, vulnerabilities rarely stay dead. Perhaps that’s why 95% of his survey respondents said he was exposed to risk from Log4Shell, and 35% admitted the risk was “high” or “serious.”
Security teams need modern tools
Eliminating or mitigating vulnerabilities during the development phase is important, but the available tools are not designed for the level of complexity that cloud environments introduce. It is also very deficient in assessing and prioritizing the risk level of vulnerabilities.
There are two ways to protect your application. It’s about building a protective perimeter during or around your application. A web application firewall tries to screen traffic coming into your application from the internet and checks for malicious code, but it has no way of catching everything. Most of the time, they lack the runtime context needed to understand the difference between low risk and potentially catastrophic exposure. Without these distinctions, current tools flood teams with countless alerts of little value combined with false positives, duplicates, or low-priority alerts. They are digital “wolf boys”.
When surveyed CISOs were asked to name the top benefits associated with the increased use of AI and automation in their security practices, 63% said prioritizing vulnerabilities enabled their teams to use their time most effectively. Now available, 44% reduce alert storms and minimize false positives, allowing teams to focus on critical vulnerabilities.
Zero vulnerabilities and attacks
In a security environment full of compromises and breaches, the CISO needs to understand and report on what is running in the environment, provide performance metrics, and provide visibility into how various components relate to each other. You need a tool that provides It’s imperative that CISOs know exactly what’s going on in the making of their apps, and pinpoint vulnerabilities and attack points.
Finally, not all vulnerabilities pose the same level of risk. Not all are exploitable. Security teams should determine the risk level associated with the vulnerability. Adding a security layer that provides a blend of security and observability is one of the most strategic moves they can make.
[ad_2]
Source link
