WEBINAR: Live Event Date: September 20, 2017 @ 1:00 p.m. ET / 10:00 a.m. PT
Designing a Proactive Approach to Information Security with Cyber Threat Hunting REGISTER >
While there were actually fewer viruses and vulnerability announcements in April than in other recent months, the alerts that did come out affected more companies than usual. Microsoft Corp. alone issued eight new or updated alerts that were rated as important or critical. Those alerts patched holes in all current versions of Windows -- affecting nearly every enterprise IT shop.
''Generally, there are a lot of alerts but each one usually affect products that only so many people have on their networks,'' says Kevin Nelson, a co-founder of Threat Focus Inc., a security company based in Tustin, Calif. ''When you have eight big announcements from Microsoft, that's pretty much covering everybody out there.
''April happened to be the perfect storm with so many alerts coming from major vendors all at once,'' he adds.
Besides the eight Microsoft alerts, Cisco and Sun issued several of their own in the past 30 days.
''All of this takes a lot of time to deal with,'' says Nelson. ''An administrator has to evaluate the alert and what the vendor is saying about it, and then they have to download the patch, test it and then deploy it. We talked with several IT administrators and they were distinctly overwhelmed.''
Steve Sundermeier, a vice president at Central command, a security company based in Medina, Ohio, says a continuing flood of variants from the Netsky and Bagle families of worms are keeping administrators hopping. And on top of that, they're still dealing with the Object Tag vulnerability in Windows.
''There is no sign of these two worms slowing down anytime soon,'' says Sundermeier. ''And every variant means a new update to our software and every update means it's one more thing for IT managers to download and deal with.''
And with all of these alerts, patches and viruses to deal with, it's getting pretty hard to get anything else done.
''Anytime you have security issues that you have to deal with, you go into fire fighting mode,'' says Nelson. ''You're not able to work to the plan you had prior to that. All of that gets pushed to the side.
''IT administrators are tired,'' he adds. ''And the month of April has made them more tired.''