A third of companies are exposing unsafe network services to the internet – BetaNews

New research finds that 33 percent of companies within the digital supply chain exposecommon network services such as data storage, remote access and network administration tothe internet.

The study from RiskRecon and the Cyentia Institute also finds that organizations that expose unsafe services to the internet exhibit more critical security findings.

The research is based on RiskRecon's assessment of millions of internet-facing systems acrossapproximately 40,000 commercial and public institutions. Cyentia and RiskRecon analyzed thedata in two ways, the direct proportion of internet-facing hosts running unsafe services,as well as the percentage of companies that expose unsafe services somewhere across theirinfrastructure.

Within the top three unsafe network services, datastores, such as S3 buckets and MySQL databases are the most commonly exposed. Remote access is the second most commonly exposed service and the report's authors recommend that admins should consider restricting the accessibility of these services only to authorized and internal users.

Universities are a particular problem with 51.9 percent found to be running unsafe services.With a culture that boasts open access to information and collaboration, the education sector has the greatest tendency to expose unsafe network services on non-student systems,

"Blocking internet access to unsafe network services is one of the most basic security hygienepractices. The fact that one-third of companies in the digital supply chain are failing at one of themost basic cybersecurity practices should serve as a wake up call to executives third-party riskmanagement teams," says Kelly White, CEO and co-founder, RiskRecon. "We have a long wayto go in hardening the infrastructure that we all depend on to safely operate our businesses andprotect consumer data. Risk managers will be well served to leverage objective data to betterunderstand and act on their third-party risk."

The full report is available from the RiskRecon site.

Image credit: fotogestoeber/Shutterstock

See the original post:
A third of companies are exposing unsafe network services to the internet - BetaNews

Related Post

Comments are closed.