Increase Network Visibility And Segmentation
Customers need more visibility and segmentation within their networks to identify what assets are running where and ensure that critical assets are prioritized, according to Qualys President and CEO Sumedh Thakar. If there’s a system with a software binary running on it, organizations should know how quickly it can access the other systems in its environment, Thakar said.
Since the SolarWinds attack was publicized, Thakar said customers have tightened their security programs to identify their assets, mapped their criticality, prioritized what systems need to be protected, and doubled down on patching and spotting misconfigurations.
Given that adversaries have many innovative ways to get inside a victim’s environment, Thakar said the most effective way organizations can blunt attacks is by making sure the right mitigation and threat monitoring systems are in place. This will help prevent the adversary from moving laterally across their systems, according to Thakar.