Venafi | December 27, 2021
Venafi, the inventor and leading provider of machine identity management, announced the findings of a global survey of more than 1,500 IT security decision makers that reveals that almost two-thirds (60%) of security almost two-thirds (60%) believe ransomware threats should be prioritized at the same level as terrorism. These opinions echo the U.S. Department of Justice, which raised the threat level of ransomware following the Colonial Pipeline attack earlier this year. The study also found that less than one-third of respondents have implemented basic security controls that break the ransomware kill chain.
Other key findings include:
Over two thirds (67%) of respondents from organizations with more than 500 employees experienced a ransomware attack over the last 12 months—a figure that rises to 80% for respondents from organizations with 3,000-4,999 employees.
Over a third (37%) of respondents would pay the ransom but more than half of these (57%) would reverse that decision if they had to publicly report the payment, as required by the Ransomware Disclosure Act, a U.S. Senate bill that would require companies to report ransomware payments within 48 hours.
Despite the rising number of ransomware attacks, more than three-quarters (77%) say they are confident the tools they have in place will protect them from ransomware attacks. Australian IT decision makers have the most confidence in their tools (88%), compared with 71% in the U.S. and 70% in Germany.
Twenty two percent believe paying a ransom to be “morally wrong.”
Seventeen percent of those breached admitted they paid the ransom, with U.S. respondents paying most often (25%) and Australian companies paying least often (9%).
The fact that most IT security professionals consider terrorism and ransomware to be comparable threats tells you everything you need to know; these attacks are indiscriminate, debilitating and embarrassing. Unfortunately, our research shows that while most organizations are extremely concerned about ransomware, they also have a false sense of security about their ability to prevent these devastating attacks. Too many organizations say they rely on traditional security controls like VPNs and vulnerability scanning instead of modern security controls, like code signing that are built-in to security and development processes.”
Kevin Bocek, Vice President ecosystem and threat intelligence at Venafi
The study shows that most organizations are not using security controls that break the ransomware kill chain early in the attack cycle. Many ransomware attacks start with phishing emails that include a malicious attachment—but just 21% restrict the execution of all macros within Microsoft Office documents. Less than a fifth (18%) of companies restrict the use of PowerShell using group policy, and only 28% require all software to be digitally signed by their organization before employees are allowed to execute it.
About the research
Conducted by Sapio Research, Venafi’s survey evacuated the opinions of 1,506 IT security officers across the U.K., Australia, France, Germany, Benelux and the U.S.
Venafi is the cybersecurity market leader in machine identity management, securing machine-to-machine connections and communications. Venafi protects machine identity types by orchestrating cryptographic keys and digital certificates for SSL/TLS, SSH, code signing, mobile and IoT. Venafi provides global visibility of machine identities and the risks associated with them for the extended enterprise—on premises, mobile, virtual, cloud and IoT—at machine speed and scale. Venafi puts this intelligence into action with automated remediation that reduces the security and availability risks connected with weak or compromised machine identities while safeguarding the flow of information to trusted machines and preventing communication with machines that are not trusted.
With over 30 patents, Venafi delivers innovative solutions for the world's most demanding, security-conscious Global 5000 organizations and government agencies, including the top five U.S. health insurers; the top five U.S. airlines; the top four credit card issuers; three out of the top four accounting and consulting firms; four of the top five U.S. retailers; and the top four banks in each of the following countries: the U.S., the U.K., Australia and South Africa.
VIRTUAL SERVER INFRASTRUCTURE
Wind River | August 30, 2021
Wind River, a global leader in delivering software for intelligent systems, announced that the companies are jointly developing a 5G vRAN solution that integrates Intel® FlexRAN reference software for systems fueled by 3rd Gen Intel® Xeon® Scalable processors with built-in AI acceleration, and also features Intel® Ethernet 800 Network Adapters and the Intel vRAN Dedicated Accelerator ACC100 in concert with Wind River Studio. The collaboration will further expand on these innovations by optimizing new capabilities delivered with future next generation Intel Xeon Scalable processors (Sapphire Rapids). The joint solution builds on work by Intel and Wind River on Verizon’s 5G milestone to complete the world’s first end-to-end fully virtualized 5G data session.
Wind River Studio provides a cloud-native platform for the development, deployment, operations, and servicing of mission-critical intelligent systems. Its cloud infrastructure capabilities include a fully cloud-native, Kubernetes container-based architecture based on the StarlingX open source project for the deployment and management of distributed edge networks at scale. With an out-of-the-box, optimized, ultra-low-latency, small-footprint infrastructure, Studio offers operators the flexibility to grow new business and further improve total cost of ownership. Intel FlexRAN is a vRAN reference implementation for virtualized cloud-enabled radio access networks.
With 5G driving a shift to cloud-native approaches, operators are pursuing vRAN for greater agility. They are optimistic about the potential of vRAN as an anchor tenant for far-edge cloud and eager to move beyond past implementation challenges. According to a Heavy Reading study, operators have cited the following as typical key challenges for vRAN: systems integration (58% of responses), operational complexity of multi-vendor vRAN (46%), and edge cloud server performance (36%).1
Prospective customers and vRAN solution providers will be able to review evaluation packages consisting of Intel FlexRAN reference software pre-integrated with Wind River Studio to simplify and accelerate customer trials and deployments of 5G vRAN. This offering expands upon the recently introduced Intel Select Solutions for Virtual Radio Access Network (vRAN) on Wind River Studio.
“As 5G opens up new opportunities across industries, there will be an increasing need to put greater intelligence and compute to the edges of the network, where new use cases evolve and thrive. As such, operators must adopt a low-latency far-edge cloud architecture to enable these new use cases in an intelligent, AI-first world,” said Kevin Dallas, president and CEO at Wind River. “Together with Intel, we are providing a best-in-class differentiated solution to help customers deliver on high-reliability, ultra-low-latency, and highly efficient offerings for their next-generation networks.”
“As operators realize the benefits and embrace a virtualized, software-defined architecture, our products, ecosystem, and years of experience help accelerate this shift to flexible, agile networks,” said Dan Rodriguez, Intel corporate vice president and general manager, Network Platforms Group. “Working closely with innovators like Wind River, we offer operators a path to fast-track successful vRAN deployments with validated hardware and software that can accelerate their 5G objectives.”
Wind River is a leader in the early 5G landscape, powering 5G RAN deployments, and Wind River Studio capabilities address operators’ complex challenges in deploying and managing a physically distributed, ultra-low-latency cloud-native infrastructure.
About Wind River
Wind River is a global leader in delivering software for intelligent systems. The company’s technology has been powering the safest, most secure devices in the world since 1981 and is found in billions of products.
Effectual | January 31, 2022
Effectual announced it has received the VMware Cloud on AWS Growth Partner of the Year. Presented at the AWS Partner Excellence Awards at re:Invent, the award recognizes the company's growth using VMware Cloud on AWS to execute successful migrations on behalf of its enterprise and public sector customers.
An AWS Premier Consulting Partner and Principal Partner in VMware Cloud on AWS, the company has deep expertise helping customers clear a pathway to modernization with VMware Cloud on AWS that mitigates risks, improves agility, and maximizes the cost-effectiveness of the cloud. This includes accelerating data center evacuation and disaster recovery planning while unlocking the potential of the AWS Cloud. Running applications on VMware Cloud on AWS has proven to deliver less downtime, improved performance, more efficient IT infrastructure teams, and faster migrations.
Effectual leads with innovation, solving complex modernization challenges with cloud services. Early on, we saw the potential for VMware Cloud on AWS in migrating mission-critical workloads to the cloud with the flexibility and security our customers require. Building this practice, executing on behalf of our customers, and now earning this award from AWS is a recognition of our team, our expertise, and our passion to be leaders in VMware Cloud on AWS."
Robb Allen, Effectual CEO
Effectual holds 200+ AWS Certifications and has achieved the AWS Managed Services Provider (MSP) designation, AWS Migration Consulting Competency, AWS DevOps Consulting Competency, AWS Mobile Consulting Competency, AWS SaaS Consulting Competency, AWS Government Consulting Competency, and AWS Nonprofit Consulting Competency designations. The company is also a member of the AWS Well-Architected Partner Program and AWS Public Sector Partner Programs as well as the AWS GovCloud (US) and Authority to Operate on AWS Programs.
Effectual, is an innovative, cloud-first managed and professional services company that works with commercial enterprises and the public sector to mitigate their risk and enable IT modernization. A deeply experienced and passionate team of problem solvers apply proven methodologies to business challenges. Effectual is backed by Catalyst Investors and Lumerity Capital, private equity firms focused on investments in cloud and data infrastructure. Effectual is a member of the Cloud Security Alliance, and the PCI Security Standards Council.