Daily Archive June 9, 2009

ByDaniel Gottilla

How Well Are You Tracking Your Vulnerabilities?

Every network has them—the little weaknesses that an attacker could exploit to get in. Every business has to search for patches and implement basic security to fill the holes as they find them. Day after day, you find new holes, you fill new holes. But what if you could not only track the vulnerabilities you’ve found, but have access to a list of other known vulnerabilities? You could be proactive, and it would sure beat the regular grind of hunting and patching.

By working with an IT consultant, you can access a list of vulnerabilities from a wide range of businesses and networks. With this data at your fingertips, you can start hunting for vulnerabilities you didn’t know existed, and strengthen them before anyone can exploit them. Without vulnerability tracking it’s like trying to put a jigsaw puzzle together without the picture on the box. Sure, you can do it, but you waste a ton of time and resources along the way.

Vulnerability tracking data helps you know what the pieces look like when they are all put together. You can preemptively find and close security gaps when you know where to look, and that’s just good sense. Why spend time hunting when you can fairly and legitimately get the answers and put them to use? The data you compile can in turn help other companies find their own security holes. By sharing the vulnerabilities you’ve found, you can give the picture on the box so much more detail, and since your weaknesses have already been taken care of, there’s no risk to you. With all of these benefits, why not use the full picture to solve your security puzzle?