FireEye, a leading network security company, just released an analysis of security systems. Find out what key findings were and what actions you need to take to ensure your network’s security in this post.
Today, network security has become a necessary practice in organizations all over the world. Companies depend on various systems such as firewalls, intrusion prevention systems (IPS), intrusion detection systems (IDS), and endpoint systems to protect them from malicious attackers. But what happens when these systems are misconfigured?
Network Security Analysis Findings
A recent analysis by FireEye revealed sizable flaws in multiple organization’s infrastructure. The data was extracted from organizations testing FireEye appliances that were installed behind their security systems. This meant whatever FireEye found had already bypassed all other security measures. According to FireEye, participants that had FireEye appliances include “1,216 organizations in 63 countries across more than 20 industries.”
Table 1: The top eight industries represented by concentration, from the FireEye analysis.
Key findings released by FireEye:
- Nearly all (97%) organizations had been breached, meaning at least one attacker had bypassed all layers of their defense-in depth architecture.
- More than a 1/4th of all organizations experienced events known to be consistent with tools and tactics used by advanced persistent threat (APT) actors.
- 3/4ths of organizations had active command-and-control communications, indicating that attackers had control of the breached systems and were possibly already receiving data from them.
- Even after an organization was breached, attackers attempted to compromise the typical organization more than once per week on average.
Our director had this to say about the findings, “A couple of things stand out for me when I read this report. First, the organizations that participated were testing advanced network protection devices and they still showed breach in 97% of the organizations. What is happening in all the places that don’t take these proactive measures?! Second, of over 1,200 devices, only 4% were placed in healthcare organizations. I think this speaks volumes.”
As seen from the information released by FireEye, security breaches happened all across the board. Attackers are continuously trying to gain access while organizations are trying their best to keep them out. In the security industry when you’re defending a network you have to get it right every time, an attacker only has to get it right once.
Boosting Your Network Security
An excellent way to identify flaws in a network is to get it tested by professionals. A network penetration test or a vulnerability analysis can assist in identifying an organization’s risk. At HealthPOINT we specialize in doing those tests and analysis for healthcare providers.
Get more information about the tests and analysis we provide to help improve your network’s security here.