Lack of automated patch management a remote security risk

73% of organizations lack automated patch management, and 62% experienced incidents involving exploitation of a vulnerability for which a patch was available but had not yet been deployed.

Posted in Datacentre + Network Security Device Security Security + Compliance

Action1 Corporation has released its 2021 Remote IT Management Challenges Report. Based on the feedback from 491 IT professionals worldwide, the study explores how organizations patch and manage their remote and office-based endpoints and provide employees with remote IT support.

The report reveals that even though most organizations plan to keep at least some remote work in 2022, they struggle to secure and support their remote or hybrid workforce. 78% of respondents admitted experiencing delays in patching critical vulnerabilities during the past year, and 62% suffered security incidents involving a known vulnerability that had not been mitigated even though a patch was available. Indeed, most organizations lack robust patch management: 14% manage all patches manually and 59% automate OS patching only.

Other findings of the survey include:

•Patching takes 2.5 longer when endpoints are remote.

•The top barrier to effective patch management (cited by 38% of respondents) is the inability to manage updates in one place and prioritize them effectively.

•77% of organizations experienced security incidents during the past year; the most common causes were malware (41%) and phishing (31%) attacks.

•35% of organizations are unable to spot unwanted software on their remote endpoints.

•Resolving IT support requests takes twice as long when employees are remote.

89% of security leaders think traditional security approaches are failing in the face of modern threats

Research shows ‘game needs to be changed,’ with security innovation years behind that of the attackers, the board a decade behind security discussions and regulation needing more industry input.

Clearlake Capital to acquire Quest Software

Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with certain of its affiliates, “Clearlake”) to acquire the Company from Francisco Partners. Patrick Nichols, current CEO of Quest, will continue to lead the Company supported by the existing executive management team. Upon closing of the transaction, Clearlake will become the majority shareholder in Quest. The terms of the transaction were not disclosed.

Dell Technologies and AWS collaborate

Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to help secure, isolate and recover data from a ransomware attack.

Aqua Security acquires Argon

Aqua’s cloud native application protection platform becomes the only solution that protects cloud applications, their code, and their CI/CD infrastructure.

79% of European businesses already seeing savings from shift to cloud security

54% of organisations working on a security transformation project now or in the next 12 months.

Costs, cyberattacks and compliance - cause for concern

Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that the UK’s Mid-Market IT Leadership expects to see a shortfall in IT spend in 2022. While 52% of IT decision-makers believe their 2021 budget met the ambitions of their team, there seems to be less certainty and confidence about future finances — 61% think their budget will need to increase in 2022, but only 13% expect it to.

Renewable energy powers Zscaler

Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities compared to legacy on-premises hardware and appliance-based models.

Nuvias Group acquires Deltalink

Nuvias Group, the European high value distributor, is further accelerating its growth through a second investment this year, by acquiring Deltalink, the Value-Add Distributor (VAD) of cyber security and networking solutions, based in Belgium.