Ensure cybersecurity at the edge

Issue 9 2020 Cyber Security

Protecting devices at the edge of the network has become more pertinent than ever in this COVID-19 pandemic period. With so many more people now working from home rather than at the office, they are thus working outside the edge of the company network, with their cybersecurity not necessarily being managed by third-party security. We’ve therefore seen an increase in targeted attacks, and the risks have increased substantially.


Stefan van de Giessen.

At the same time, vulnerability types remain the same whether we are looking at the pre- or current COVID eras. Within the vulnerability management space, any PC arguably has vulnerabilities at any given moment, and so, whether at the endpoint, server or host, a malicious attack can come from anywhere.

For endpoint protection, it is therefore imperative to ensure that outdated software on your machine receives notifications to be patched, so the vulnerability does not lie with any device.

Some of the current vulnerable devices include headless IoT devices, meaning anything with an IP address that doesn’t need a monitor, keyboard or mouse to function. This could include online appliances such as CCTV, fridges and wearable tech such as watches: pretty much anything that can connect to the Internet without the necessary security elements being taken into consideration. These online devices and applications pose significant security risks.

The only way to protect them, as with your laptops working from anywhere, is via a next generation antivirus that is up to date, connecting to your corporate firewall that will steer all traffic through it and thereby protect your edge devices from the outside.

The ‘bare essentials’ around vulnerability management involves keeping all software updated. In a smaller environment this is an easy task to manage. However, when looking at enterprise networks with hundreds of IPs to manage, the organisation needs to invest in a leading vulnerability management tool that will allow you to take daily snapshots to allow your team to prioritise patching

Getting the fundamentals right from the very beginning should be sufficient to protect you most of the time – although of course a new threat will obviously need new technology to cover users. However, from the perspective of just ‘getting the fundamentals right’, our best practice advice is to make sure that your subscriptions are active to receive the latest updated threat protection. This should alleviate most of your risk associated with being outside the edge of the network.

Additionally, sandboxing could also be offered, but this is a very small vector to target. Similarly, web application firewalls need not be necessary for those organisations that are not offering online financial transactions.

At Networks Unlimited, we have obviously also embraced remote working for our employees and we took steps to keep the edge secure as follows:

• We have a proper mail system in place, which is subject to email scrubbing.

• We have applied endpoint protection from SentinelOne.

• We utilise the functionality of Fortigate to sanitise the connection before it enters the network.

Fundamental best practice dictates that whatever the circumstances, organisations should prioritise cybersecurity before an attack happens. Right now, this means being aware of the increased need to protect the edge of the network.

For more information contact Networks Unlimited Africa, David Wilson, +27 11 202 8400, david.wilson@nu.co.za, www.networksunlimited.africa




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Five ransomware predictions for 2021
Issue 9 2020 , Cyber Security
How to stay ahead of cyber criminals and protect your data

Read more...
Striking the balance between customer privacy and intimacy
Issue 9 2020 , Cyber Security
While secure IT infrastructure is a key component to keeping customer data secure, customers expect more than adherence to regulations and the latest technologies to help protect their data from falling into the wrong hands.

Read more...
A good future for tech in 2021 and beyond
Issue 9 2020 , Cyber Security
The pandemic drove technology adoption in amazing ways; networking, cloud, security, collaboration, and other digital technologies all played a huge role in keeping the world running.

Read more...
Cyber-industry collaboration through AI
Issue 9 2020 , Cyber Security
SophosAI advances the practices and language that will transform the cybersecurity industry with much-needed transparency and openness.

Read more...
Shifting security to the edge
Issue 9 2020 , Cyber Security
As applications move to the cloud and networks become increasingly complex, organisations require a comprehensive security solution designed to protect the WAN edge.

Read more...
Why security integration is important
Issue 9 2020 , Cyber Security
Adrienne Campbell says the integration of physical and network security is important and offers eight reasons why.

Read more...
Protecting ICS and SCADA systems
Issue 9 2020 , Cyber Security
Check Point Software´s new rugged gateway secures industrial control systems and critical infrastructures against the most advanced cyber-threats.

Read more...
Cyber defence in an era of digital dependency
Issue 9 2020 , Cyber Security
Businesses across the globe have typically taken an immature approach to cybersecurity, believing that a firewall is an adequate fortress to defend their intellectual property.

Read more...
Improved resilience and simplicity
Issue 9 2020 , Cyber Security
Cisco helps its customers and partners to reimagine the way they work, with security innovations across its portfolio designed to offer greater agility, simplicity and resilience.

Read more...
Internet of threats
Issue 9 2020 , Cyber Security
Internet-connected devices can make us more efficient, save time and money, and allow us connectivity from almost anywhere, but they also require that we share more information than ever.

Read more...