65% of companies using client management tools put their data at risk due to haphazard patch management
Although there are dedicated technologies which can automatically download and install updates, these are rarely used – even by companies that have implemented client system management tools. Only 35% of all companies automatically install updates, according to a November 2012 study by market research specialists B2B International. Meanwhile, cybercriminals often use unpatched vulnerabilities in outdated software to penetrate a company’s IT infrastructure.
Although there are dedicated technologies which can automatically download and install updates, these are rarely used – even by companies that have implemented client system management tools. Only 35% of all companies automatically install updates, according to a November 2012 study by market research specialists B2B International. Meanwhile, cybercriminals often use unpatched vulnerabilities in outdated software to penetrate a company’s IT infrastructure.
Cybercriminals use a popular tool – exploits – to achieve these goals. Exploits are malicious objects that use vulnerabilities in operating systems and applications to infect computers. These exploits are often used to launch attacks on companies since even corporate security solutions often struggle to detect and destroy them. A good way to forestall threats is to eliminate vulnerabilities as fast as possible by installing software patches. However, it can be difficult for many companies to install updates promptly on a large number of workstations.
In November 2012, B2B International surveyed over 5,000 high-ranking IT managers working for different companies all over the world on behalf of Kaspersky Lab. Among other questions, the study asked about the use of any technology to automatically install updates on corporate workstations. The findings were surprising: even among companies with client management systems in place, only 35% used this technology.
Updates are generally designed to enhance software performance and stability. From a security standpoint, they are even more important – updates can eliminate vulnerabilities which might allow cybercriminals to infect corporate workstations. Here, the speed with which updates are installed is just as important as installing the update in the first place:the sooner the IT department updates vulnerable software on all corporate workstations, the less likely it is that cybercriminals can launch a successful attack exploiting a vulnerability. Incidentally, cybercriminals tend to choose the most widespread programs as an attack medium. According to Kaspersky Lab data, Java is the most popular with cybercriminals: 50% of all exploits in 2012 targeted this platform. Adobe Acrobat Reader is the second most popular, with a share of 28%. These are standard pieces of software installed on huge numbers of corporate workstations – and that means it’s not just a few machines, but most of the computers on any given network that are at risk.
To ensure that updates are downloaded and installed with absolute timeliness and regularity, one option would be to invest heavily in IT man-hours, manually installing every upgrade on every machine. This, of course, is both costly and potentially unreliable. Neglecting the problem entirely, on the other hand, is likely to weaken corporate security and could potentially lead to serious losses for the business. Implementing a dedicated automation tool is a far more practical solution.
Kaspersky Lab Patch Management
Kaspersky Lab fully understands the hazards associated with exploits, so the company’s key products incorporate tools to track vulnerabilities in the operating system and applications. Kaspersky Endpoint Security for Business, the new flagship corporate solution, incorporates two dedicated technologies: Vulnerability Assessment and Patch Management. Vulnerability Assessment is designed to detect and classify vulnerabilities on corporate workstations, while Patch Management is designed to centrally manage software updates. Together, these two ensure that vulnerabilities get patched as soon as possible, dramatically boosting corporate IT security levels. The advantage of these two technologies is that they are fully automated, reporting in detail on existing vulnerabilities and on any updates installed. Moreover, the product uses several vulnerability databases, including Kaspersky Lab’s own unique database, keeping corporate IT departments up to date on even the rarest vulnerabilities. Using technologies incorporated in the Kaspersky Endpoint Security for Business platform, a company’s security specialists can easily discover any weak points in corporate software infrastructures and take appropriate measures, without having to leave their workstations.
65% of companies using client management tools put their data at risk due to haphazard patch management
Kaspersky
Related Articles Press Releases
Innovation journey: Dubai welcomed Kaspersky's Cyber Immunity Conference
Leading cybersecurity experts, scientists, business leaders and government officials from more than 20 countries worldwide have come together for the inaugural international Cyber Immunity Conference. Exploring the complex and evolving cyberthreat landscape the conference provided invaluable insights into the future of our digital age and celebrated the pioneering efforts of the first Cyber Immunity Champions.Read More >Kaspersky Thin Client 2.0: Cyber Immune protection with enhanced connectivity, performance and design
Kaspersky has presented an updated operating system for thin clients that offers enhanced connectivity, higher speed of applications delivery, lower total cost of ownership, user-friendly graphical interface and quick deployment. Kaspersky Thin Client 2.0 is the main component of the Cyber Immune solution for building thin client infrastructure in a wide range of industries, including healthcare, finance, education and manufacturing.Read More >New DuneQuixote cyberespionage campaign targets governmental entities worldwide
Kaspersky researchers have discovered an ongoing malicious campaign initially targeting a governmental entity in the Middle East. Further investigation uncovered more than 30 malware dropper samples actively employed in this campaign, allegedly expanding the victimology to APAC, Europe and North America. Dubbed DuneQuixote, the malware strings incorporate snippets taken from Spanish poems to enhance persistence and evade detection, with the ultimate goal of cyber espionage.Read More >
We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.