How Vulnerability Assessments, Security Audits, and Penetration Tests Can Help Prevent Exploitation
What Is a Vulnerability?
To begin our discussion on the importance of developing a vulnerability management program, it’s helpful to start with understanding what a vulnerability is.
A “vulnerability” may seem like an ambiguous term, but it means something specific in the security industry. Vulnerabilities are defined as a known or unknown weakness that can be exploited by an attacker. The “known” ones typically receive a CVE identifier from Mitre, which look like this:
CVE-2017-5753 or CVE-[YEAR]-[COUNT]
Some of the most well-known vulnerabilities also receive mascots and logos:
The important thing to note here is this: if these vulnerabilities are disclosed and publicized, doesn’t that mean that your attackers are already aware of them? Are you aware of and tracking the latest vulnerabilities?
The solution, and what’s widely accepted as a best practice, is to implement a vulnerability management program.
How Do I Identify Vulnerabilities?
The common solution in the industry is to use an automated tool to identify these weaknesses before they’re exploited. The tools are often called Vulnerability Scanners. The solutions work a lot like conventional antivirus software.
- A signature is developed to identify the configuration and software version which present the vulnerability.
- A network scan is performed to find matches for these signatures.
- If detected, the signature is reported along with the IP, criteria for detection, and a CVSS score.
A CVSS score is important. It gives the admin an opportunity to asses just how great the risk is. Does this vulnerability disclose information, or does it provide immediate root access and privilege escalation to the system? In turn, scores rank from 0 to 10 with 10, being critical.
Candoris Security Offerings
Candoris has various security offerings. We have a team of security-focused engineers who can perform a Vulnerability Assessment, or a single scan and report on the findings and required remediation. Also, we can help you to implement a Vulnerability Management program to perform scans on a recurring basis. Either scenario is a step toward identifying an attack vector before it is exploited.
Candoris offers a range of assessments including Security Audits for compliance with industry frameworks, and Penetration Tests to see which kinds of attacks may be effective against your organization. Often an annual Penetration Test is also needed for compliance with regulation and best practices.
How can our team of experts help you prevent exploitation? We’d love to discuss that with you!