Cybersecurity is an ongoing battle, and the latest figures from penetration testers prove that the fight is far from over. According to Positive Technologies, 93% of all networks are open to breaches due to common vulnerabilities. However, there are proactive steps business owners can take to stay on the right side of that ratio.

Take a look at some of the common vulnerabilities as outlined by the report. We’ll also address some important actions that businesses and agencies can take to reduce their attack surface and harden their networks.

Protecting Your Network

It’s easy to think that your network is mostly protected from common network threats. After all, you have a security operations center team already, right? They’re watching the network for anomalies and responding quickly to alerts. You also have some excellent software in place that helps you uncover malware attempts and malicious websites.

These are basic steps that any well-prepared enterprise should take if they’re serious about cyber defense. However, these measures may not be enough.

From July 2020 to June 2021, multiple pen testers across several different industries assessed organizations’ readiness. The compiled data painted a grim picture. 93% of those networks are poorly configured, even at the most basic levels. In 71% of these cases, attackers would be able to impact a business to an “unacceptable” degree.

The findings in this report showed that common vulnerabilities still exist in most networks today. Think poor password management, outdated and unpatched devices and software, poor security configurations and inconsistent user access protocols.

These statistics are a sobering reminder that no one is immune to digital attacks. It’s more important than ever for businesses to take proactive steps to secure their networks.

Avoiding a Defeatist Attitude

At the same time, though, people and tech solve problems like this all the time. It can be easy to feel overwhelmed and defeated. Protecting a network from all possible attack vectors is a daunting task. We can take simple, progressive steps to avoid being at risk, though.

In many cases, training and awareness for employees are the most overlooked yet impactful steps you can take. By teaching your team how to spot a phishing email or malicious website, you’re arming them with the knowledge they need to help protect your network from these threats.

In addition, it’s crucial to have a security policy in place that outlines norms for employee behavior and lays out best practices for protecting company data. This document should outline procedures for password management best practices and guidelines for device and software usage. Make sure you have this as you increase remote working and personal device use.

Applying Zero Trust Protocols and Hardening App Security

In addition to awareness training for employees, another best practice is using zero trust network protocols. Your team should deploy these protocols across all internal and external environments. That way, each user must prove who they are before accessing any network apps or data.

In an ideal world, a zero trust network also includes multi-factor authentication. This provides more layers of protection against unwanted access attempts. This can include biometric identification, facial recognition through supported webcams and traditional password management.

Another critical step you can take is to harden application security. Ensure you have proper visibility into known and unknown threats lurking in your networks. Threat intelligence gathering and proactive penetration testing can help your company gain this. From there, it helps find and address vulnerabilities in app security before a breach occurs.

Renewed Focus on Incident Response Plans

Having a thorough incident response plan (IRP) is also essential. It can help you to rapidly respond to any type of attack or data breach.

Your IRP should include step-by-step procedures for spotting and containing an attack. Also include protocols for informing impacted people and groups. You should have certain personnel assigned to each step of the response plan. In addition, perform regular testing and updates to ensure that the plan is up-to-date and effective.

A well-drafted IRP is a critical part of any cybersecurity strategy and should be considered a high priority. With the proper steps in place, your team can work to stay ahead of the curve and beat the odds.

Up to the Task

It can be a daunting task for security teams to patch network vulnerabilities before they become a problem, but it is possible to do. The report cited above is less of a grim truth and more of a call to action. There is still work to be done in reducing the attack surface. However, through proactive planning, the right level of awareness and the proper tools and technologies, you can increase the chances of remaining secure.

More from Network

X-Force Identifies Vulnerability in IoT Platform

4 min read - The last decade has seen an explosion of IoT devices across a multitude of industries. With that rise has come the need for centralized systems to perform data collection and device management, commonly called IoT Platforms. One such platform, ThingsBoard, was the recent subject of research by IBM Security X-Force. While there has been a lot of discussion around the security of IoT devices themselves, there is far less conversation around the security of the platforms these devices connect with.…

4 min read

Cybersecurity in the Next-Generation Space Age, Pt. 4: New Space Future Development and Challenges

4 min read - View Part 1, Introduction to New Space, Part 2, Cybersecurity Threats in New Space, and Part 3, Securing the New Space, in this series. After the previous three parts of this series, we ascertain that the technological evolution of New Space ventures expanded the threats that targeted the space system components. These threats could be countered by various cybersecurity measures. However, the New Space has brought about a significant shift in the industry. This wave of innovation is reshaping the future…

4 min read

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

4 min read - Deployment of backdoors was the number one action on objective taken by threat actors last year, according to the 2023 IBM Security X-Force Threat Intelligence Index — a comprehensive analysis of our research data collected throughout the year. Backdoor access is now among the hottest commodities on the dark web and can sell for thousands of dollars, compared to credit card data — which can go for as low as $10. On the dark web — a veritable eBay for…

4 min read

Cybersecurity in the Next-Generation Space Age, Pt. 2: Cybersecurity Threats in New Space

7 min read - View Part 1 in this series, Introduction to New Space. The growth of the New Space economy, the innovation in technologies and the emergence of various private firms have contributed to the development of the space industry. Despite this growth, there has also been an expansion of the cyberattack surface of space systems. Attacks are becoming more and more sophisticated and affecting several components of the space system’s architecture. Threat Actors' Methodology Every space system architecture is composed of three…

7 min read