IT managers struggle to fix vulnerabilities
Dimension Data survey shows high percentage of devices still carry unpatched vulnerabilities
IT managers are still failing to tackle the large number devices connecting to corporate networks that carry vulnerabilities, according to research Dimension Data.
The solutions provider said that its 2013 Network Barometer Report showed that while the number of devices attached to corporate networks that carried vulnerabilities dropped from 75% in 2011 to 67% in 2012, it still showed the difficulties faced by administrators in keeping up to date with vulnerability patches and fixes.
Raoul Tecala, Dimension Data's Business Development Director for Network Integration commented: "There are certain vulnerabilities that have been around for many years which have not yet been fixed - despite vendors like Cisco Systems' proactive approach to patch alerts and on-going software and system upgrades.
"It can be a daunting and challenging task to eliminate all vulnerabilities from large and complicated environments. However, the disruption and effort required must be weighed against the potential impact and actions that must be taken. Although networks currently appear to have fewer vulnerabilities - the high percentage of devices carrying vulnerabilities will remain until the software is patched or upgraded to a newer, more secure version of code."
Tecala advises organisation to focus their efforts on vulnerabilities that represent the largest threats. "The closer a device is situated to the Internet, the higher the risk. Therefore, organisations must be vigilant and should implement a constant regime to evaluate, prioritise and patch network vulnerabilities.
"While IT networks currently seem to have fewer vulnerabilities - and many of these are difficult to eliminate completely - new vulnerabilities are identified each year, so it's unwise to be complacent." Tecala added.
The Network Barometer Report is intended to show the status of networks globally, and aggregates data from organisations and the Technology Lifecycle Management Assessments conducted by Dimension Data around the world during the last year. . The Report reviews networks' readiness to support business by reviewing the security vulnerabilities, end-of-life status and configuration variance from best practice of network devices.