Network giants unite to fight security risks

-

 


A group of industry stalwarts is banding together to help enterprises, services providers and telcos fight cyber foes.

The Network Resilience Coalition includes AT&T, Broadcom, BT Group, Cisco Systems, Fortinet, Intel, Juniper Networks, Lumen Technologies, Palo Alto Networks, Verizon and VMware. Its aim is to deliver open and collaborative techniques to help improve the security of network hardware and software across the industry.

The coalition was brought together under the Center for Cybersecurity Policy & Law, a nonprofit organization dedicated to improving the security of networks, devices and critical infrastructure. The Center has a broad security mission, but at least for now, it wants the Resilience group to focus on routers, switches and firewalls that are older, may have reached end-of-life vendor support, or have been overlooked for security patching or replacement.

Right now, it’s way too easy for malicious cyber actors – including nation states and criminal groups – to find open vulnerabilities, to run remote code execution, and to find end-of-life products that are no longer being maintained, said Eric Goldstein, the executive assistant director for cybersecurity for the Cybersecurity and Infrastructure Security Agency (CISA). These can provide “easy entry into the critical networks upon which you seek to achieve your objectives – you have a veritable buffet of options,” Goldstein said.

“We want to figure out a way to make it easier, frictionless, [and] scalable to upgrade to supported versions and minimize the prevalence of these sorts of vulnerabilities that we know our adversaries are exploiting at scale,” Goldstein said.

The Network Resilience Coalition will spend the next few months researching and detailing the core problems its members are seeing across the industry, and then by yearend, it will report its focus areas, the group said.

One of the goals of the coalition is to come together and talk through nuanced use cases to understand what sorts of things the vendors can change, said Brad Arkin, senior vice president and chief security and trust officer with Cisco Security.

“We put a lot of effort into mitigating problems, but it's not delivering the outcomes that we need,” Arkin said. “We're still seeing real-world attacks successfully go after vulnerabilities [for which] patches are available but not being used, or where things are misconfigured. Sometimes there are customers who aren't able to patch in a timely manner for reasons that make sense in the context of where they're operating.”

“Sometimes it's not as easy to manage these devices – a problem doesn't end when we tell you about a patch, it ends when the device either gets patched or the end-of-life device gets removed from a network,” said Derrick Scholl, director of security incident response at Juniper. “I'm looking forward to the opportunity to increase education and knowledge on this issue.”

Chief among the reasons for not fixing a problem included the inability to prioritize what needs to be fixed (47%), a lack of effective tools (43%), a lack of resources (38%), and not enough information about risks that would exploit vulnerabilities (45%), the report noted.

And when there is a breach, the cost to businesses is climbing. The global average cost of a data breach reached $4.45 million in 2023 – an increase of 15% over the last three years, according to IBM Security’s annual Cost of a Data Breach report. Detection and escalation costs jumped 42% over this same time period, representing the highest portion of breach costs and indicating a shift towards more complex breach investigations, IBM stated.




See more Info : - network.sciencefather.com

Nomination  :  https://x-i.me/prinom
Registration : https://x-i.me/prireg2
Contact us    : network@sciencefather.com


Social Media :

Instagram : https://x-i.me/net23m
Pinterest : https://x-i.me/net23p
Facebook : https://x-i.me/net23f
Linked in : https://x-i.me/net23l
Youtube   : https://x-i.me/NQGu



#network #protocols #networkanalysis #networkmarketing
#networkswitch #networkdiagram #gigabit #bandwidth
#firewall #fiberoptics #topology #ethernet #networksecurity 
#routing #scheduling #servers #bluetooth #networkawards

Comments

Post a Comment

Popular posts from this blog

VPN installations skyrocket over seven times since Dec

-
Image
         Virtual Private Network (VPN) adoption jumped manifold in India in the first half of 2021 as companies moved to secure communication networks as more employees worked from home. The number of VPN installations soared to 348.7 million as at June-end 2021 against 45.24 million as at December-end 2020, according to Atlas VPN’s Global VPN Adoption Index. VPN installation penetration went up from only 3.28 per cent population in 2020 to 25.27 per cent in the first six months of 2021. The VPN download data was extracted from Google Play Store and Apple App Store using Sensor Tower service and includes the 45 biggest VPN providers globally. Though Qatar, the UAE and Singapore held the first three positions, respectively, in terms of overall penetration, India surpassed all the countries on the list by the volume of downloads. Instagram: https://www. instagram.com/ angelinashiny123/ Youtube : https://www.youtube. com/channel/UCcIS_ QkrqCWuNpV5tZFcNVw #ethernet #fiberoptics #topolog
Read more

The six types of virtualization in cloud computing

-
Image
  Virtualization makes it possible for operating systems, applications and data storage from software or hardware to be represented in virtual form. Given the number of businesses moving their resources to the cloud, it becomes increasingly expedient for cloud providers to utilize virtualization to configure their services according to the individual needs of their customers, making their services more scalable and flexible. 1. Storage virtualization Storage management is one area of cloud computing that has been improved in recent years through virtualization. Storage virtualization involves collecting and merging several physical storage units and rendering them as one storage cluster over a network. This type often comes in handy for enterprises and individuals aiming to expand and scale their storage without investing in physical storage facilities. In addition, storage virtualization improves effective storage management by ensuring that multiple storage points can easily be acces
Read more