Posted by: Ken Harthun
Anti-virus, Endpoint protection, Vulnerabilities, Zero-day vulnerability
If your business is still relying solely on an anti-virus program to protect you from all the bad stuff out there, then it’s vulnerable on several fronts. AV software is designed for one thing and one thing only: to protect systems from threats that are already known or those that are as yet unknown, but whose patterns mimic other threats. It isn’t intended to be used as an all-in-one solution.
Let’s say, for example, that you allow your employees to bring their laptops or other devices to the office and use them on your network. This puts you at risk in at least three ways:
- You have no control over whether or not the employee is current will all security updates or AV updates. They could easily bring malware with them. Keeping systems fully patched is a first line of defense. Use network access control to make sure that any computer you allow on the network is fully patched.
- A rogue application let loose on your network can degrade performance and cause no end of problems.
- An infected thumb drive or other USB device completely bypasses your firewall and other filtering. Exercise some control over what’s allow to be plugged in. It’s easy enough to do.
Sophos has released a whitepaper that outlines at least eight threats that get past conventional AV. I suggest you check it out.
High-profile incidents that make big news might seem out of the ordinary. Yet businesses of every size face similar risks in the everyday acts of using digital technology and the internet for legitimate purposes. This paper outlines eight common threats that traditional anti-virus alone won’t stop, and explains how to protect your organization using endpoint security.