The number and variety of threats that can infiltrate corporate networks and disable critical infrastructure are sobering. Take a look at our findings and analysis in the new Cisco 2014 Annual Security Report, and you’ll see that malicious actors are innovating just as fast as security professionals do. As threats proliferate, so do the solutions for responding. It’s a confusing, fragmented market. That’s why Cisco believes it’s time for a new security model: a model that’s threat-centric, providing better visibility across the entire attack continuum and across all attack vectors, so that your organization stands a better chance of stopping attacks, or minimizing the damage they cause.
As we explain in the Cisco 2014 Annual Security Report, today’s advanced attacks are too complex and sophisticated to be addressed by traditional technologies that only perform their analysis once at a specific point in time, versus technologies that work continuously. At the same time, the data protection needs of organizations have become incredibly multifaceted. Mobile users and reliance on the cloud have complicated the ways business networks need to be protected. There is no “silver bullet” to solve every security problem.
Our recommendation for meeting today’s security challenge is to move away from point-in-time solutions, to an any time, all the time, continuous approach:
- Before an attack: You can’t protect what you can’t see. Know what’s on your network—devices, operating systems, services, applications, users, and more. With this knowledge you can set up access controls, enforce security policies, and block applications and overall access to critical assets. This will help reduce the surface area of attack. But keep in mind that there will still be gaps attackers can exploit to achieve their objectives.
- During an attack: Deploy solutions that can address a broad range of attack vectors by operating everywhere a threat can turn up—networks, endpoints, mobile devices, and virtual environments, for example.
- After an attack: As much as we want to stop all attacks, it’s a given that on some occasions, intruders will succeed. Prepare for this eventuality with capabilities to determine the scope of the damage, contain the event, remediate, and bring business operations back to normal as quickly as possible.
The before/during/after approach to security avoids the problems associated with fragmented security solutions, such as lack of visibility and inconsistent enforcement. The Cisco 2014 Annual Security Report details today’s top security concerns and the value of this strategy.
Tags: 2014 annual security report, Annual Security Report, CASR, Cisco, security
I like to laugh. I find humor in all sorts of places and situations. Often unlikely ones. I’ve laughed in the most appropriate of situations and some of the most awkward. And I laugh at work. A lot.
Frankly, I think the Food and Drug Administration should have a recommended daily allowance for laughter along the lines of those identified for Vitamin C, Iron, and Riboflavin.
Peter Bregman recently had a great post on Harvard Business Review blog network. In “Why You Should Treat Laughter as a Metric,” Bregman writes about the lack of laughter as a symptom of a problem within organizations. And he suggests that increasing the opportunity for laughter should be a leadership priority. Read More »
Tags: Cisco, collaboration, corporate culture, employee engagement, leadership
Editor’s Note: This is the second of a four-part deep dive series into High Density Experience (HDX), Cisco’s latest solution suite designed for high density environments and next-generation wireless technologies. For more on Cisco HDX, visit www.cisco.com/go/80211ac. Read part 1 here. Read part 2 here.
The 802.11ac wireless networking standard is the most recent introduction by the IEEE (now ratified), and is rapidly becoming more accepted and reliable industry standard. The good news is that the client and vendor adoption rate for 802.11ac is growing at a much higher pace as compared to when 802.11n was introduced back in 2009. There has been an accelerated growth seen with the mobile and laptop devices entering the wireless market embedded with an 802.11ac WiFi chipset. Unlike in the past, laptop, smartphone and tablet manufacturers are now acknowledging the fact that staying up to date with the latest Wi-Fi standards is as important for the bandwidth hungry users as having a better camera or a higher resolution display.
With the launch of the new 802.11ac AP 3700, Cisco introduces the Cisco HDX (High Density Experience) Technology. Cisco HDX is a suite of solutions aimed towards augmenting the higher performance, more speed and better client connectivity that 802.11ac standard delivers today.
ClientLink 3.0 features as an integral part of Cisco HDX technology designed to resolve the complexities that comes along with the new BYOD trend driving the high proliferation of 802.11ac capable devices.
So what is ClientLink 3.0 technology and how does it work?
ClientLink 3.0 is a Cisco patented 802.11ac/n/a/g beamforming technology Read More »
Tags: 802.11, access point, antenna, AP, beamforming, cell size, Cisco, client, client connectivity, ClientLink, device, downlink, hardware, HD, HDX, high density, IEEE, Industry Standard, LAN, mobile, mobility, network, rf, smartphone, software, solution, tablet, technology, wi-fi, wifi, wireless, wlan
Thanks to extensive detection telemetry and analytics, we have a clear view into the attackers and malicious actors that are infiltrating Internet infrastructure and using trusted applications as a foothold for gaining access to networks. As explained in the Cisco 2014 Annual Security Report, online criminals continue to develop more sophisticated methods for breaching security protections—all of which require extra vigilance and a holistic view of threats and how they’re managed.
Perhaps the trend of most concern is malicious actors’ ability to gain access to web hosting servers, nameservers, and data centers, and using their processing power and bandwidth to launch far larger exploits and attacks. This is sobering, because it means that now the very foundations of the Internet are at risk of exploitation. The 2013 DarkLeech attack demonstrates how the compromise of hosting servers can help attackers gather the resources they need for a much larger campaign: In this case, servers were compromised worldwide, allowing the perpetrators to take over 20,000 legitimate websites.
The broad reach of this malicious behavior and resulting compromises can be seen in the results of Cisco’s examination of Domain Name Service (DNS) lookups originating from inside corporate networks, as detailed in the Cisco 2014 Annual Security Report.
Cisco threat intelligence experts found that 100 percent of the business networks analyzed had traffic going to websites that host malware, while 92 percent show traffic to webpages without content, which typically host malicious activity. Ninety-six percent of the networks reviewed showed traffic to hijacked servers. The pervasiveness of malicious traffic indicates that organizations need to monitor network traffic closely (and continuously) for possible indicators of compromise.
Some of the most tenacious players in the network compromise game are launching targeted attacks, which are proving very difficult for organizations to oust from their networks. These attacks are persistent and disruptive, threatening the security of intellectual property, customer data, and other sensitive information. As a guide to understanding targeted attacks, the Cisco 2014 Annual Security Report offers insights on the “attack chain”—that is, the events that lead to and through the stages of such attacks, as seen in the graphic below:
The bottom line is that IT security professionals need to think like attackers and understand the methods and approaches they use to execute their missions.
The Cisco 2014 Annual Security Report has many more findings on security threats, gleaned from Cisco research and observations—including updates on mitigating Java exploits, threats observed in mobile device use, and the status of threats and vulnerabilities reported by Cisco. You’ll find it a valuable resource as you prepare to understand security challenges in the year ahead.
Tags: 2014 annual security report, Annual Security Report, CASR, Cisco, security
Consumers have a true love of mobile devices, as evidenced by recent Cisco mobile consumer research. Significant percentages of respondents reported using everything from laptops, smartphones, and tablets to eReaders and mobile gaming devices. Americans now own an average of three mobile devices each, up from 2.6 devices in the 2012 Cisco mobile consumer study. Perhaps more significant, our findings show that the number of smartphone users has grown by 21 percent in just one year, now reaching 68 percent of the population, at the expense of basic phones. Most remarkable is that the number of tablet owners has expanded by over 90 percent in just one year, with close to four out of ten consumers possessing one of these new devices.
The insatiable demand for mobile devices and new applications that use large amounts of bandwidth is generating staggering volumes of mobile data. In parallel, the use of Wi-Fi for Internet access is exploding, as more mobile devices are Wi-Fi enabled, the number of public hotspots expands, and user acceptance grows. Most mobile operators now realize that offloading data traffic to Wi-Fi can, and must, play a significant role in helping them avoid clogged networks and unhappy customers. Many service providers are now constructing extensive networks of public Wi-Fi hotspots for use by their mobile or home broadband customers. The networks allow mobile offload and help enhance and differentiate their offerings. In addition, service providers are struggling to understand new business models for making money from Wi-Fi. However, very little is currently known about how consumers are actually using public Wi-Fi and how they view the overall experience. Nor is there much information about mobile users’ appetite for these new services, their willingness to use them, or their privacy or security concerns surrounding these data-based services.
To learn more, Cisco conducted a survey of 620 U.S. mobile users to understand their needs and behaviors, use of devices, applications and mobile access technologies, and how they have changed since our 2012 mobile consumer study.
Top 10 Research Findings Read More »
Tags: Cisco, location based services, LTE, mobile, mobile consumer survey, mobile devices, monetization, public wi-fi, research, Service Provider, Smartphones, value-added services, wi-fi