Backdoors, exploits, and Little Bobby Tables. Listen now! (Full transcript available...)
Category: "Edge"
Chrome 0-day patched now, Edge patch coming soon.
When Doug says, "Happy Remote Code Execution Day, Duck"... it's irony. For the avoidance of all doubt :-)
Wouldn't it be handy if there were a single version number to check for in every Chromium-based browser, on every supported platform?
Secure Service Edge works with a variety of network configurations. Is it right for yours?
By Chris Alberding & Evin Safdia
On the heels of another record number of cyberattacks in 2022, including an alarming 13% increase in ransomware attacks, according to a Verizon year-end report, shielding an organization from this very real and escalating risk requires protective measures that work across network configurations out to the network edge, even as the contours of that edge shift. It takes defenses that are as sophisticated, persistent, and adaptable as the would-be attacks and attackers themselves, without requiring or excessively relying upon specialized security talent. Security Service Edge (SSE) fits that profile.
Q-1: What is SSE?
SSE is the security portion of the SASE (Secure Access Service Edge) architecture, which converges networking and security together. SSE converges an organization’s disparate cybersecurity capabilities into a single, cloud-native software stack that protects all enterprise “edges” – sites, users and applications – worldwide. More specifically, SSE includes:
- Secure Web Gateway (SWG), which defends users against phishing attacks and malicious websites.
- Firewall as a Service (FWaaS), which provides end-to-end traffic segmentation, restricting access to locations, applications and resources.
- Zero Trust Network Access (ZTNA), which ensures secure remote access to applications on-premises and in the cloud for every user, device and location.
- Cloud Access Security Broker (CASB), which controls access to cloud applications, extending enterprise security policies to the cloud and enabling regulatory compliance.
- Next-Gen Anti-Malware (NGAM), which protects connected sites, cloud resources and users against known and unknown malware.
- Managed Detection & Response (MDR), which offers ongoing network monitoring and alerting on compromised endpoints.
- Data Loss Prevention (DLP), which prevents sensitive data and information from leaving the organization, while complying with industry regulations.
- Intrusion Prevention System (IPS), which monitors network traffic and blocks malicious content, providing protection against range of cyberthreats.
A managed service provider can seamlessly maintain the SSE engine, keeping it current against new threats. And the engine operates at line rate regardless of the traffic volume or if it’s encrypted, traditionally a major problem for security appliances.
Q-2: Which types of cyberthreats is SSE designed to protect against?
SSE defends enterprises and their networks against anomalies, threats and sensitive data loss. That includes phishing, malware, ransomware, data theft, and other forms of unwanted access to locations, applications, and resources.
Q-3: What kinds of enterprises are a good candidate for SSE and why?
SSE is for any organization that wants to improve its risk posture and reduce operational overhead, which is to say it’s for everyone. By converging security capabilities, SSE provides deeper security insight than possible with the traditional patchwork of security appliances. And it’s all maintained by a SSE provider, not the enterprise itself.
Q-4: What’s the business case for SSE? What are the benefits?
SSE protects the complete organization – users, sites, and cloud resources. As such, organizations like SSE because it:
- Establishes a global fabric of enterprise-level security connecting all network edges into a unified security platform, enabling consistent policy enforcement.
- Readily scales with business demands and the network.
- Provides line-rate inspection of all traffic, scaled vertically and horizontally, even when traffic is encrypted.
- Reduces IT workloads as a self-maintaining service.
- Fits into any existing network topology, allowing SSE to be adopted gradually.
Q-5: How is SSE different from SASE?
As the security portion of SASE, SSE is independent of the connecting device. Third-party SD-WAN devices, firewalls, or any IPsec-capable device can connect to SSE. With SSE, organizations can benefit from cloud security without impacting their existing network infrastructure. Because of that, SSE is viewed as a seamless migration path to full SASE (with SD-WAN) architecture, if and when an organization is ready.
Q-6: What’s the SSE implementation process like? How easy is SSE to implement?
SSE can be deployed very rapidly without disrupting network operations. In many cases, organizations can be up and running in days. No need for extra hardware to be shipped and installed, or excessive operational overhead.
Q-7: Who manages the various moving parts of SSE? Is that something our organization’s IT department does internally, or can day-to-day management be outsourced?
SSE usually comes as a managed service, which is good news for organizations and their IT and security teams, many of which are running extremely lean. As a single-vendor managed solution, SSE relieves organizations from the burden of integrating, configuring, implementing, monitoring and managing multiple layers of security themselves. Instead, they can hand these responsibilities over to the cybersecurity experts providing the service. Organizations with skilled security experts may opt to select an SSE provider that enables them to co-manage the security policies via a user portal.
With this unique combination of advanced cybersecurity capabilities and turnkey management, it’s no wonder that by 2025, according to Gartner, 80% of enterprises will adopt a strategy to unify web, cloud services and private application access from a single vendor’s SSE platform.
Chris Alberding is Senior Director for SD-WAN and Security at Windstream Enterprise (https://www.windstreamenterprise.com/). Evin Safdia is the Director of Product Marketing for the Americas at Cato Networks (https://www.catonetworks.com/).
The post SSE Decoded: Answers to Your Questions About Secure Service Edge appeared first on Cybersecurity Insiders.
The pandemic shook businesses to its core, forcing users to trade in their office chairs for home desks. The result? Users, devices, and data scattered across the world. And for those in the networking and security fields, this shift brought major challenges. The traditional castle and moat access approach was no longer enough, and even the most reliable security tools became obsolete.
Businesses are at a crossroads, trying to decide whether to stick with a familiar approach or embrace this new form of work. This presents a golden opportunity for businesses to improve and innovate. With this in mind, Axis collaborated with Cybersecurity Insiders to release the industry’s first 2023 Security Service Edge (SSE) Adoption Report. Here’s what you need to know from the report.
The new normal: A mobile workforce
As the pandemic recedes into the rearview mirror, the familiar bustle of office life is not quite as bustling as before. Companies have come to understand that a contented workforce is a productive one, and thus, many have allowed employees the freedom to work from home or opt for flexible work arrangements. A staggering 78% of companies have embraced the hybrid work model, while an additional 10% are fully committed to remote work.
This move towards a hybrid workforce ushers in our first report highlight: conventional access methods don’t cut it in this new world of work. With a plethora of tools created specifically for securing the hybrid workforce, businesses are re-evaluating their bulky hardware, software, and data center-centric solutions for modern ones that provide more ease and simplicity.
Streamlining security through consolidation
The numbers don’t lie – 63% of businesses are juggling three or more security solutions, with 22% dealing with a dizzying six or more. The task of managing this maze of solutions is not for the faint of heart – it’s complex, costly, and time-consuming. Teams must navigate multiple user interfaces, pay for new hardware with each renewal cycle, and spend countless hours learning and troubleshooting.
This leads us to our next report highlight – security and networking leaders will look for solutions that allow them to simplify and slim down their security landscape. They want to streamline their setup, save money, and find a single solution that can replace, not just augment, their existing security infrastructure. Enter Security Service Edge (SSE) platforms – the consolidating solution that businesses are turning to in droves.
As organizations explore the benefits of SSE, they’re eyeing the platform to perform some serious heavy lifting. 63% are looking to say goodbye to enterprise VPN, 50% are seeking to retire SSL inspection, and 44% want to eradicate DDoS, among other inbound and outbound security stack solutions. With SSE, the goal is to keep security simple, cost-effective, and streamlined.
SSE is actually driving strategy
The rise of Security Service Edge (SSE) has been nothing short of spectacular, captivating the attention of the cybersecurity world with its prowess and potential. In just two short years, SSE has garnered recognition among 71% of cybersecurity professionals, solidifying its status as a game-changer in the field.
As businesses look to the future, it’s no surprise that 65% have their sights set on adopting SSE in the next 24 months, with a staggering 43% planning to fully implement it by the end of 2023. SSE has quickly become a strategic priority, with 67% of businesses planning to launch their SASE journey with it versus WAN Edge Services.
But what makes SSE truly special? According to the report, it’s seen as the crown jewel of a zero trust strategy, outranking SSO, MFA, endpoint security, and SIEM providers in its importance. With 47% of respondents eager to begin their SSE journey with Zero Trust Network Access (ZTNA) technologies, it’s clear that organizations are ready to embrace this cutting-edge solution.
Prioritizing the right SSE project
The IT world is buzzing with excitement over SSE, but where to begin? What should be their starting point? The report revealed that a whopping 48% of organizations have their sights set on securing remote and hybrid access for employees, marking the starting line of their SSE journey.
The urgency to secure the workforce’s connectivity while keeping pace with the evolving business needs is the fuel that propels the SSE engine. This is where the SSE revolution truly roars to life, charging ahead towards a secure, connected, and adaptable future.
Explore the future of secure access with SSE
The future of work has arrived and it’s in the form of a hybrid workforce! This is a golden opportunity for IT and security experts to bid farewell to the hassle of multiple, outdated tools and welcome a more secure and advanced access system with open arms. Don’t let this chance pass you by! If your team hasn’t delved into the business implications of an SSE platform, it’s high time you did. Deep-dive into these findings check out the 2023 SSE Adoption Report for an in-depth look at the future of secure access.
The post The Rise of Security Service Edge (SSE): A Game-changer for the Modern Workforce appeared first on Cybersecurity Insiders.
Breaches, exploits, busts, buffer overflows and bug hunting - entertaining and educational in equal measure.
Ninth more unto the breach, dear friends, ninth more.
There isn't a rhyme to remind you which months have browser zero-days... you just have to keep your eyes and ears open!
We've said it before/And we'll say it again/It's not *if* you should patch/It's a matter of *when*. (Hint: now!)