– By: Dr. Gene Lloyd –
If you ask a group of cyber security experts how to secure a network, you are going to get a wide array of answers that may confuse you more than help. I have found, through many years of experience in this field, that there are a few common elements that hackers target and a few simple ways you can take your network off of their potential target list. So, here is my list of the top 3 reasons systems are hacked.
1. I have lost track of how many hacking incidents I have investigated in the past few decades, but I haven’t forgotten about the most common thing I encountered during those investigations. 90%+ of the victim systems were vulnerable because they were missing a readily available patch. If someone would have just taken a few minutes to patch the system, it probably would not have become a victim.
2. Almost every website you visit today has some type of web application running that provides you with different services or capabilities. These web apps provide a great deal of capability and functionality that isn’t available with straight HTML, so they are definitely needed in today’s computing environment. The problem though is that many of them are coded in-house and never go through any rigorous security testing to make sure they are not vulnerable to attack. These vulnerable web apps are one of the biggest targets of hackers today.
3. I tend to blame poor perimeter security for most hacking problems that get past a firewall, because my experience tells me that, if we shut down access at the perimeter, all the systems on the internal network instantly become more secure. Focusing a greater degree of attention on firewall management is a key strategy in stopping hackers. They can’t hack into what they are not able to connect to!
Deal with these three areas that don’t always get the most attention and you will greatly improve the security of your network, regardless of the size. If you don’t know where to start, we would love to help! Sign up below for free access to our expert video about saving time, money, and resources in cyber security and to schedule a free cyber security consultation with a proven expert in the field.
Sign up for a FREE consultation
Get a free 1-hour telephone consultation with a cyber security expert with no required commitments -- a $500 value!