A recent report by security researchers at Censys has revealed a concerning discovery: 50 different US agencies are utilizing unsecured devices, thus violating the Cybersecurity and Infrastructure Security Agency's (CISA) Binding Operational Directive. This news was reported by Prajeet Nair, Assistant Editor at the Global News Desk, ISMG.
The researchers discovered hundreds of federally owned devices - including routers, access points, firewalls, VPNs, and other remote server management technologies - exposed to the internet, accessible through IPv4 addresses and loaded with potentially vulnerable MOVEit and Barracuda Networks' ESG software. This exposure is in direct violation of a recently released CISA policy.
Censys identified approximately 13,000 distinct hosts at risk at federal civilian agencies, many of which were running remote protocols such as SSH and Telnet. Even more concerning, they found more than 150 instances of end-of-life software, and over 10 hosts running HTTP services that exposed directory listings of file systems - a common cause of potential data leakage involving sensitive information.
Such risks and violations highlight the increasing need for stringent cybersecurity measures. This is where BlastWave’s BlastShield can make a significant impact. BlastShield is ideal for protecting remote management interfaces which are found on networking equipment and other types of remotely accessible hosts. As a zero-trust network access solution, BlastShield helps organizations implement a zero-trust architecture to ensure comprehensive cybersecurity.
By leveraging Software-Defined Perimeter (SDP) architecture, BlastShield offers more granular access controls and reduced risks from stolen credentials and complex management. Moreover, with its phishing-resistant MFA, data-in-motion encryption, micro-segmentation, granular access controls, and device cloaking, BlastShield ensures that your organization's network is both secure and undiscoverable to potential attackers.
In light of these alarming findings, there's no better time to prioritize your organization's cybersecurity.
Visit our product page today to learn more about BlastWave’s BlastShield and start your FREE trial at:
Your organization's security is too important to leave to chance. Ensure the best secure remote access, network segmentation, and network cloaking with BlastShield. 🔒
#BlastShield #Cybersecurity #ZeroTrustArchitecture
Experience the simplicity of BlastShield to secure your OT network and legacy infrastructure.