Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Whitepaper

SecurityCenter Continuous View:安全性威脅營運監控中心 – 捕獲弱點,解除威脅 (ZH-TW)

某大公司的安全人員在其網路中發現人力資源資料遭到了入侵。該公司已運行例行弱點掃描並且定期執行滲透測試。但是,由於發現了上述入侵,說明很明顯目前的措施還不夠完善。

企業可能會將靜態掃描和每季度一次的滲透測試視為最佳做法,但是隨著當今不斷出現的進階攻擊數量的上升,這些做法已不足以保證安全性。使用靜態掃描工具存在以下一些主要挑戰:

  • 侵入性工具:某些掃描工具可能會構成影響,原因在於它們可能需要在資產上配置代理,或者可能會消耗網路頻寬以進行掃描,進而影響業務營運。
  • 未監控資產:難以發現和審查臨時資產(例如:手機和虛擬環境)以及傳統工業控制系統,這些資產和系統上可能存在很容易被利用的弱點。
  • 未知應用程式/服務:很多資產可能沒有強化/安裝修補程式以消除弱點(例如心臟出血弱點)。惡意程式碼可能會將這些資產用作惡意程式碼“發射台”來滲透到企業中。
  • 缺乏網路可視度:如果網路監測工不具備應用層(第 7 層)可視度,則可能無法檢測出入侵僵屍網路和命令與控制 (CnC) 伺服器的任何可疑網路流量。

要即時檢測出進階攻擊,就需要持續進行網路監測,而且不受制於固有靜態安全掃描工具盲點。SecurityCenter Continuous View 可以提供真正的即時可視度,從而防禦網路弱點和威脅,提供切實可行的結果。

Try for Free Buy Now

Try Tenable.io Vulnerability Management

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets
Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Purchase your 1-, 2-, or 3-year license today.