Tag Archives: Trend Micro Deep Security

How to beat cloud misconfiguration: Trend Micro @ Cloud Expo Europe

By Bharat Mistry

Cloud adoption is moving pretty fast. So fast, in fact, that sometimes organisations roll-out infrastructure without being able to fully support their end of the shared responsibility model. The bad news is that the vast majority of incidents still go unnoticed. That’s a compliance timebomb waiting to go off.

Fortunately, we have an answer. At Cloud Expo Europe this month, Trend Micro’s Cloud Security Architect, Ian Heritage, will be taking to the stage to explain all.

Clouds are everywhere
There was a time not so many years ago when the public cloud was only for the early adopters. It’s safe to say we’re well beyond that point now. In fact, Gartner predicts that the public cloud services market will grow 17% in 2020 to top$266 billion, and continue on to reach nearly $355 billion by 2022. 

However, as more firms build out hybrid cloud environments from multiple vendors, complexity rises. And as it does so, in-house teams find it increasing difficult to stay on top of the multiple competing protocols, policies and platforms they must manage. Sometimes they’ll have brought in different security vendors, which can create further complexity and allows coverage gaps to appear. 

Complexity means mistakes
The end result is inevitable: mistakes get made that can leave cloud data stores unprotected. You don’t have to go far to find an example. Whether it’s an online Elasticsearch database a MongoDB instance or an AWS S3 bucket, configuration incidents have impacted defence contractors like Boeing, big-name brands like Honda, and a whole host of companies and service providers in between.

The worrying news for CISOs is that, whereas over the past few years such leaks have usually been found and responsibly disclosed by security researchers, cyber-criminals are now starting to take notice. A growing number of cases have seen hackers probe for unsecured cloud databases, steal the data and hold it to ransom. One report even suggested that Magecart hackers are getting in on the act by trying to seed malicious digital skimming code in misconfigured buckets.

A cloud misconfiguration was also technically to blame for the mega-breach at Capital One which exposed data on 100 million customers and applicants.

Trend Micro at Cloud Expo
The cost to organisations could be massive. One vendor claims that over 33 billion records were exposed in leaks due to cloud misconfigurations in 2018 and 2019.

Fortunately, Trend Micro’s Cloud Conformity offers a solution: a cloud security posture management (CSPM) platform providing continuous monitoring, alerts and remediation of AWS and Azure environments. It will flag when configuration errors have been made and offer simple steps to get you back on track, all from a single pane of glass.

Join our Cloud Security Architect, Ian Heritage, at Cloud Expo Europe this month to hear how you can tackle the challenge of cloud misconfiguration, and in so doing drive DevOps and business growth. 

What: Cloud Misconfiguration Causes Breaches—How to Avoid it: Ian Heritage, Cloud Security Architect, Trend Micro. At Cloud Expo Europe.
Where: ExCel London, Keynote Theatre
When: Thursday, 12 March, 2020. 11.10-11.30 

As Server 2008 is retired, there’s an obvious alternative to Microsoft extended support

By Ross Baker

On the 14th of January 2020, Microsoft will be retiring its popular Windows Server 2008 and Server 2008 R2 products. This leaves businesses with a difficult choice: stick with the OS and pay for expensive extended support, spend time and resources on migration, or leave the company exposed to cyber-threats.

The good news is that there’s a better, lower cost option that will enable you to keep running Server 2008 whilst mitigating cyber risk and avoiding major disruption – invest in comprehensive server security.

Wait-and-see won’t do
Speaking to numerous businesses over recent weeks, a worryingly high number are prepared to adopt a wait-and-see policy (WASP) following the end of Server 2008 support on 14 January 2020. This amounts to an extreme hedging of bets and something we would definitely not recommend.  

Without Microsoft support, customers will no longer have access to security updates for Windows 2008. Unsupported servers will become be exposed to attacks exploiting vulnerabilities found after January 2020. This is more likely than you think: the black hats know there will be many organisations that may be running exposed servers and will be putting more resources into finding these bugs.  

To make matters worse, Microsoft will continue to release fixes for vulnerabilities in current versions of its server OS products which may also affect Server 2008. That’s an open goal for a hacker.

What are the alternatives?
One way out of this bind is to pay for Microsoft extended support, which will deliver security updates beyond the retirement deadline. But be warned, this is not cheap. An analysis of Microsoft’s End of Service FAQs from CRN reveals:
• The cost of Extended Security Updates will be 75% of the Enterprise Agreement or Server & Cloud Enrolment license prices of the latest version of SQL Server/Windows Server
• Firms will be covered for three consecutive 12-month increments following end-of-support, but must pay up-front for the first year
• Organisations that sign-up in the middle of a year must pay for the full year
• Companies that decide not to sign-up for a year and then do so the following year must pay for both years

Why go through all this when there’s an easier and more cost-effective alternative? 

Trend Micro Deep Security features a next-generation intrusion prevention system known as “virtual patching” to protect servers and endpoints from threats that target vulnerabilities in critical applications. It will keep your Windows Server 2008 systems safe even from zero-day threats that Microsoft hasn’t yet encountered.  Virtual Patching will also:

Buy additional time: for security teams to assess vulnerabilities and test and apply the necessary patches. 

Avoid unnecessary downtime: by allowing enterprises to patch according to their own schedule. This mitigates the potential revenue loss caused by unplanned disruptions.

Improve regulatory compliance: such as Cyber Essentials and the Payment Card Industry Data Security Standard (PCI-DSS).

Provide flexibility: by reducing the need to roll-out workarounds or emergency patches. 

Given the current threat landscape, WASP is simply not a risk worth taking for your organisation. Whether you need to stick on Windows Server 2008 for financial reasons or because of legacy application support, look to third-party virtual patching to minimise cyber risk and support your business beyond January 2020.

Find out more and how much you could save by visiting https://resources.trendmicro.com/uk-windows-server-end-of-support.html and try out our Windows 2008 End-of-Support Cost Savings Calculator.

Tackling risk in a multi- and hybrid cloud world

by Bharat Mistry

Cloud computing sits front-and-centre of most organisations’ growth plans today. The sheer scalability and cost efficiencies that can be wrung out of on-demand compute services helpfirms to do more with less, respond with greater agility to meet market demands, support seamless DevOps processes, and run a leaner, greener business. It’s no surprise that the public IaaS market grew over 31% in 2018 to top $32 billion.

Yet cybersecurity is a perennial barrier to cloud success, and it’s getting harder as cloud deployments grow in scale and complexity. Put simply, organisations can no longer handle their cloud security needs with a collection of point products. They need a simple, unified platform for maximum visibility and control.

Fragmented and risky
The macro trend points to increased cloud adoption as digital transformation efforts taking hold across a range of verticals. But peer closer and the picture is much more nuanced. In reality, there are many different flavours of cloud adoption. No two organisations are alike and running the same kind of IT infrastructure. Legacy servers may sit alongside virtualised infrastructure and/or public cloud deployments. Then there are fast-emerging services like containers and serverless. Some organisations may be investing in multiple platforms from different providers, ramping the complexity up even further.

In dynamic hybrid and multi-cloud environments like these, CISOs need to ensure that workloads are protected wherever they are. At the same time, hackers are increasingly focusing their efforts on exploiting vulnerabilities in containers and the third-party code that is shared and reused in the developer community to accelerate DevOps. Then there’s the challengeof human error, with misconfiguration of cloud architecture a major risk.

The impact of security breaches could be catastrophic, leading to data theft, ransomware, and other cyber-threats that could undermine brand value and damage the bottom line.

Trend Micro unifies cloud security
Up until now, organisations have had no choice but to keep running multiple point products to secure various parts of their hybrid cloud infrastructure. But it doesn’t have to be this complicated. 

Cloud One from Trend Micro brings together the world’s leading workload security service and container image scanning/runtime protection with brand-new offerings for application security, network security, file storage security and cloud security posture management (CSPM). The latter comes from Trend Micro’s recent acquisition of Cloud Conformity – delivering a product designed to mitigate misconfiguration mistakes and enhance security compliance and governance in the cloud.

Whatever stage your cloud journey is at, you’ll get simplified, automated protection delivered from a single console, with single-sign on, common user and cloud-service enrolment, and a common pricing and billing model.

Available from Q1 2020, Cloud One will cover:• Trend Micro™ Cloud One – Workload Security• Cloud One – Container Image Security• Cloud One – File Storage Security• Cloud One – Network Security• Cloud One – Cloud Posture Management• Cloud One – Application Security

To find out more, please visit https://www.trendmicro.com/en_us/business/campaigns/cloud-one-services.html

VMworld Europe: Time to Simplify Cloud Complexity Through Unified Security

by Simon Young

Cloud is at the heart of any organisation’s digital transformation efforts today, with new DevOps practices driving innovation. But although these efforts promise faster time-to-market and greater agility, the truth is that with greater adoption comes potentially greater complexity and the danger of cloud siloes. According to the latest IDC stats out this week, 90% of organisations will look to migrate to hybrid and multi-cloud environments over the next six years. In this fracturing world, it’s important to ensure you have unified security which works across all major platforms.

That’s part of the message Trend Micro will be bringing to VMworld Europe next week. Continue reading