8 Big Changes Expected After The Colonial Pipeline Hack: RSA 2021
From new disclosure rules to the hardening of critical infrastructure systems to retaliatory actions from the U.S. government, here are eight big changes expected after the Colonial Pipeline hack.
Prioritize And Automate Patching
Customers want to be able to prioritize the patches that deliver the most value from a risk mitigation perspective and are looking for help triaging and fixing vulnerabilities rather than simply getting a list of issues, according to Qualys President and CEO Sumedh Thakar. The sooner an organization can bridge the gap and patch a vulnerability, the more quickly it can reduce its attack surface, Thakar said.
Certain patches are more helpful for fixing critical exploitable vulnerabilities, and prioritization work is therefore important to ensure that companies are getting the most bang for their buck, Thakar said. Attackers tend to push quickly after gaining entry into a victim to see what they can grab and strengthen their foothold in the organization, according to Thakar.
Most software can be patched automatically without adding significant risk since patches are typically safe, which in turn eliminates the need to patch systems manually, according to Thakar. But for more sensitive assets such as server software, Thakar said customers might want to have additional checks before applying the patches automatically.