Host-based intrusion prevention may be last best defense
Patching is supposed to secure your organization from the latest batch of malicious code. But try telling that to the state of Alaska's IT department. Staffers were working diligently to stay up-to-date on patching, despite the sheer size of the territory they serve and the limited bandwidth available in remote areas. But what if no patches existed?
"We were expending a huge amount of effort cleaning up the infections in our machines," says Darrel Davis, chief security officer for the state. "Some exploits were out there yet no patches were available."
[ Read more ]