Matt Kraning, chief technology officer and co-founder of San Francisco-based Expanse, has said government agencies need a centralized strategy to secure, govern and monitor all internet-connected devices.
“Agencies must strive for continuous technical validation of the internet-connected assets on their systems and those of their contractors and suppliers so they can constantly monitor them for potential vulnerabilities,” Kraning wrote.
He cited a ransomware attack on medical testing firm LabCorp and a data breach into a Navy contractor’s system as some of the examples of threat actors’ efforts to target unmonitored assets.
“The bottom line is you can’t protect what you don’t know about,” Kraning said. “If you’re validating the security of your department or agency but do not know where all your assets are, then your policies and procedures can have substantial and material gaps, leading to a false sense of confidence in your security posture.”
Kraning also mentioned how Expanse helps the Defense Information Systems Agency facilitate continuous discovery and track the internet attack surface for the Department of Defense Information Network.