On its latest Enterprise platform, security provider Syxsense hopes to secure endpoints. In particular, it has the capacity to combat vulnerabilities, apply patches and monitor compliance issues.
Could the latest security solution announced by Syxsense be a cybersecurity Swiss army knife? This offer still allows to track vulnerabilities and fix them on endpoint devices. “The Syxsense Enterprise Platform provides a unified solution that scans and manages all endpoints, resolves issues in real time, and reduces the risks associated with incorrect system configurations, to better businesses can effectively predict, identify, and fix vulnerabilities that affect desktops, laptops, servers and mobile devices, ”explains Syxsense.The launch comes shortly after the release of a global cybersecurity advisory that recommends timely vulnerability management, while attackers continue to target internet-connected systems to exploit old and new vulnerabilities.
The vendor says its Enterprise platform is the first Unified Security and Endpoint Management (USEM) solution on the market to address three key aspects of endpoint security: vulnerabilities, patches and compliance. “Syxsense Enterprise uses the Syxsense Cortex workflow automation tool to patch and remove endpoint security vulnerabilities through a cloud interface with hundreds of prebuilt workflows.” Plus: “The solution is able to identify software vulnerabilities in the operating system and third-party applications, detect open port incorrect configurations, disabled firewalls, ineffective user account policies and more “.
MDM is also in the game
The platform also includes the mobile device management (MDM) solution recently launched by Syxsense, which allows IT teams to manage smartphones and tablets running iOS, iPadOS and Android, in addition to Windows, Linux and Mac. “As threats become more complex, it is important for IT teams to have integrated IT management and endpoint security solutions,” said Ashley Leonard, Founder and CEO of Syxsense. “Our Syxsense Enterprise cloud platform provides a centralized solution to analyze, patch, identify and fix vulnerabilities that could lead to an endpoint attack or exploitation.” The platform has the following features:
– Vulnerability scanning to identify permission issues, security implementation issues and antivirus status;
– Automatic deployment of patches to correct vulnerabilities of endpoints within the network, and devices outside the network;
– Device health and compliance checks to patch documents and provide reports on risk assessments, vulnerable devices, and task summaries;
– Quarantine of devices and separation of endpoints:
– Remote device monitoring with the ability to push configurations, apps, and policies over the air.
Still behind in placement
A joint advisory recently released by global security agencies, including the US Cyber and Infrastructure Security Agency (CISA), the US National Security Agency (NSA) and the UK National Cyber Security Center (NCSC) ), lists the 15 most targeted. vulnerabilities in 2021. These include the embarrassing Log4Shell, ProxyShell and ProxyLogon exploits, as well as the three vulnerabilities referenced CVE-2020-1472, CVE-2018-13379 and CVE-2019-11510, which have been continuously exploited since 02 .
According to the advisory, “continued exploitation of these vulnerabilities shows that many organizations have failed to patch their software in a timely manner and remain vulnerable to attacks in the long term.” Also according to this same opinion, “the ability to quickly update software, operating system, applications and firmware is paramount”. It also promotes the use of a centralized patch management system, the replacement of end-of-life software, and the implementation of vendor workarounds in case the rapid application of a patch for a known vulnerability or critical has proven difficult or impossible.