The Google Hack and Endpoint Security Fundamentals

By Marc Solomon, Fiberlink.

“Google hacked.” “Google Hack Hits 33 other Companies.” Headlines like this are a not-so-subtle reminder that security is not fail-proof. If Google and some of the biggest companies can be compromised, so can any company. There is a debate about whether the hack exploited a flaw in Internet Explorer or one in Adobe Acrobat. Does it matter which one is to blame? Either way, companies need to protect their systems.

The defense-in-depth strategy that most companies have deployed has been effective, but not perfect. Of all the layers of security employed, the hardest to manage and control has been the endpoint (and the users using them). Make that a mobile endpoint and the problem becomes amplified.

Mobility is changing the way we think about IT. Endpoint security was adequate when the devices were always on the network. However, when they leave the network, the efficacy of traditional tools reduces significantly. Not only from the ability to reach them to ensure applications are running, up-to-date, and protecting the system, but also from the ability to report and provide evidence of coverage. A brief illustration of the problem: when analyzing laptops, it is not uncommon for a company to find between 30 and 50 percent did not have their anti-virus definitions up to date!

So how do you protect the endpoints, especially mobile laptops? The following list of software and actions is one that you have seen many times, but it does have some tweaks. End user training and education is not on the list, but is obviously critical. Adding tools to your images like McAfee’s SiteAdvisor can help educate end users about dangerous places to surf.

The new fundamentals of (mobile) endpoint security:

1. Ensure all Windows critical patches are applied correctly. Even with automatic updates, there are instances where patches get corrupted. Windows will see the patch as applied, but if you analyze the actual files associated with the patch, some may not be the newest patched version. Make sure you have a patching tool that analyzes patch application at the file level.

2. Ensure common applications are updated. This one is newer. We have been talking for a decade that companies need to patch their systems. And for all that time, the focus has been on patching Windows. However, current headlines tell it all – “Skip Microsoft’s critical patch, focus on Adobe’s, experts urge.” The bad guys are compromising systems any way they can . Applications, not the OS, are a common target these days. Companies need to make sure common applications are patched and updated.

3. All devices need to have anti-virus software. Companies need to make sure that anti-virus software is installed and running, with up-to-date definitions. End users sometime complicate this. When installing software, many programs request that anti-virus and firewall software to be turned off. The problem is that many end users forget to turn them back on after installation is complete.

4. All devices need to have a personal firewall. Companies need to make sure that personal firewall is running. As stated above, some software installations can request a user to turn off anti-virus and firewall applications. Sometimes the end user does not turn it back on.

5. Ensure you have centralized management and reporting. For 1-4 above, companies need to have centralized management and reporting. Without this, a company cannot see where there may be issues and take action. Without centralized reporting, they cannot respond to management or an auditor and provide evidence that all is working correctly. For example, if a company is using Microsoft firewall or WSUS, they would be deficient in this area.

6. Ensure you can reach all devices, both on- and off-LAN. Traditional management tools were built to work on the LAN. However, devices are spending more time on the Internet and being mobile. The best way to reach these mobile devices is to treat the Internet as your corporate network. There are many X-as-a-Service companies out there. Mobility as a Service is key to the new mobility age of computing. Being able to reach and report on all devices quickly, from anywhere. Now that is taking control.

Tags: anti-virus, endpoint, Google, hack, laptop, Mobility, patch, security, smartphone

This entry was posted by MaaS360 on January 18, 2010 at 9:38 pm, and is filled under Emerging Trends and Technology. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site.

Related Posts
Comments (0)

No comments yet.

No trackbacks yet.

How the iPad is Being Used Today

about 13 hours ago - No comments

by John Harrington, Fiberlink There is plenty of talk going around about Apple’s iPad–and why not? Since its initial release, Apple has racked up over 60 million users across the globe who have helped make the high-end device in its category the most popular. While we toss back and forth ideas about this device–its contribution More >

BYOD Statistics and Checklist [INFOGRAPHIC]

about 1 day ago - 1 comment

With the bring-your-own-device (BYOD) craze hitting enterprises, universities, hospitals, and everywhere between, IT administrators may find a checklist a good option to take charge of what’s coming their way. As millions of employees walk into the new year with devices received as holiday gifts, what better time to buckle down and successfully implement a plan for 2012? More >

Alleviating Your Mobile Security Woes

about 5 days ago - No comments

by John Harrington, Fiberlink This year, the security of confidential information on mobile devices is a top concern for companies across the world. Executives are being urged to finalize mobile security strategies while IT departments are in the drivers seat for implementation. Screw-ups will assuredly have a lasting backlash on the parties that fail to More >

Tips for Safe Banking from Your Smartphone

about 1 week ago - No comments

by Pragati Jain, Fiberlink Smartphone banking is today’s smart way of managing money on the go. We’ve all come to appreciate it for the simplicity and convenience it offers us. While the perks are great (quick access to funds, account balance summaries anytime, anywhere) safety and privacy have remained prime concerns. For this reason, I’ve come More >

Mobile Device Management for Financial Institutions

about 2 weeks ago - No comments

Employees are bringing devices to work in ever-increasing numbers. Gone are the days of IT handing out devices with just the company-approved software. Now more and more users want to use the devices they own and like, and these devices do double-duty for work and home. This brings up a lot of issues for any More >

BYOD Strategy and Expense Considerations

about 2 weeks ago - No comments

by John Harrington, Fiberlink The bring-your-own-device (BYOD) trend has picked up a lot of steam in recent months and doesn’t look to be slowing down any time soon. Technological advances, a growing number of mobile workers, and gadget affordability have all played a role in the takeoff process. In some ways this trend presents cause for More >

Ultrabooks Add to the Mobile Computing Revolution

about 3 weeks ago - No comments

by Pragati Jain, Fiberlink First smartphones, then tablets…now ultrabooks. The mobile computing space has never been as dynamic and exciting as it is now. Over the course of recent years, mobile computing has improved in such a way that it has almost become a lifestyle. Ultrabooks are nothing new, and by no means an innovation in mobile More >

Making the Transition from Program to App

about 3 weeks ago - No comments

by John Harrington, Fiberlink “One day, the tablet will reign supreme over the laptop and PC.” We’ve all heard the argument before. It could be years down the road, but that’s not to say it won’t happen… and the tireless work of Android and iOS application developers certainly isn’t hurting the tablet’s case. Today, app upgrades and More >

The What and When of a Next-gen iPhone

about 3 weeks ago - No comments

by John Harrington, Fiberlink Part of what made the iPhone 4S so great was timing. It was released right on cue with upgrades to iOS software and shortly before the passing of a legend in Steve Jobs (and unexpectedly so). One of many ways people chose to pay tribute to Jobs was by purchasing his More >

‘Tis the Season to Talk Technology

about 1 month ago - No comments

by John Harrington, Fiberlink Yep, it’s that time of year again. As people begin removing lights and ornaments from their trees and taking off those goofy Near Years Eve sunglasses, tech pundits across the web are relaying their forecasts and views of what enterprise technology landscape will look like in 2012… Unsurprisingly, enterprise mobility has More >

- Our Sites
- Blog Sponsor
  
  This blog is sponsored by Fiberlink. Fiberlink is the developer of MaaS360, the leading cloud-based, mobile device visibility and management platform. To learn more or take a test ride of MaaS360, please visit www.maas360.com.

Top
©2011 Fiberlink Communications. All Rights Reserved. All brands and their products, featured or referred to within this document, are trademarks or registered trademarks of their respective holders and should be noted as such.

MaaS360 Sites

MaaS360 Links

The Google Hack and Endpoint Security Fundamentals

No comments yet.

No trackbacks yet.

How the iPad is Being Used Today

Alleviating Your Mobile Security Woes

Tips for Safe Banking from Your Smartphone

Mobile Device Management for Financial Institutions

BYOD Strategy and Expense Considerations

Ultrabooks Add to the Mobile Computing Revolution

The What and When of a Next-gen iPhone

‘Tis the Season to Talk Technology

My latest tweets

Our Sites

Blog Sponsor