Security's 'Perfect Storm' Leaves IT Ragged

Download our in-depth report: The Ultimate Guide to IT Security Vendors

Share it on Twitter  
Share it on Facebook  
Share it on Google+
Share it on Linked in  
The end of April is leaving IT and security administrators exhausted.

While there were actually fewer viruses and vulnerability announcements in April than inother recent months, the alerts that did come out affected more companies than usual.Microsoft Corp. alone issued eight new or updated alerts that were rated as important orcritical. Those alerts patched holes in all current versions of Windows -- affecting nearlyevery enterprise IT shop.

''Generally, there are a lot of alerts but each one usually affect products that only somany people have on their networks,'' says Kevin Nelson, a co-founder of Threat Focus Inc.,a security company based in Tustin, Calif. ''When you have eight big announcements fromMicrosoft, that's pretty much covering everybody out there.

''April happened to be the perfect storm with so many alerts coming from major vendors allat once,'' he adds.

Nelson also notes that his customers have to deal with an average of seven to 10 alerts ina typical month. But this month, many have been slammed with 20, and some of the largestenterprises had to handle upwards of 50 alerts.

Besides the eight Microsoft alerts, Cisco and Sun issued several of their own in the past30 days.

''All of this takes a lot of time to deal with,'' says Nelson. ''An administrator has toevaluate the alert and what the vendor is saying about it, and then they have to downloadthe patch, test it and then deploy it. We talked with several IT administrators and theywere distinctly overwhelmed.''

Steve Sundermeier, a vice president at Central command, a security company based in Medina,Ohio, says a continuing flood of variants from the Netsky and Bagle families of worms arekeeping administrators hopping. And on top of that, they're still dealing with the ObjectTag vulnerability in Windows.

''There is no sign of these two worms slowing down anytime soon,'' says Sundermeier. ''Andevery variant means a new update to our software and every update means it's one more thingfor IT managers to download and deal with.''

And with all of these alerts, patches and viruses to deal with, it's getting pretty hard toget anything else done.

''Anytime you have security issues that you have to deal with, you go into fire fightingmode,'' says Nelson. ''You're not able to work to the plan you had prior to that. All ofthat gets pushed to the side.

''IT administrators are tired,'' he adds. ''And the month of April has made them moretired.''

Submit a Comment

Loading Comments...