Gartner: Responding to New SSL Threats ReportTweet
Global enterprises have a gaping hole in their security strategy for defending against rampant cyber attacks on the trust established by cryptographic keys and digital certificates. Cyber criminals understand that the easy targets are those organizations that have little visibility into their threat surface and cannot respond quickly. As an industry we need to gain control over trust, we need to plug the gap related to key & certificate-based exploits. Unprotected keys and certificates create security vulnerabilities and the attackers are taking full advantage as a result.
Whether they’re exploiting trusted SSL connections, unprotected self-signed certificates to exfiltrate data or stealing SSH keys to gain privileged, root access to servers and clouds, these attacks are increasing at an alarming rate. The Heartbleed vulnerability unequivocally demonstrates the impact a single vulnerability has on organizations worldwide when keys and certificates are exposed. In fact, “Gartner believes that, in 2017, more than half of the network attacks targeting enterprises will use encrypted traffic to bypass controls, up from less than 5% today.”
Read “Responding to New SSL Cybersecurity Threats” now to:
- Understand current gaps and open doors in your enterprise security
- Learn why cybercriminals are targeting unsecured SSL certificates for malicious use
- Learn strategies to protect your enterprise from increasing trust-based attacks
- Understand recommendations for building an SSL traffic decryption strategy