Forescout’s Erik Floden: Ripple20 Security Risk Underscores Need for Granular Device Visibility

Forescout’s Erik Floden: Ripple20 Security Risk Underscores Need for Granular Device Visibility
Erik Floden Director Forescout Technologies

Researchers recently discovered a series of cyber vulnerabilities dubbed Ripple20 in a common networking stack that poses risks to mission-critical devices and Erik Floden, director of federal civilian agencies at Forescout Technologies, said security teams at agencies should take steps to address the risk.

One of the measures Floden suggested is identifying all vulnerable devices.

“Unfortunately, many agencies don’t know all the devices connected to their networks. But that needs to change because the inability to identify characteristic network signatures of devices using Treck can be a huge weakness,” Floden wrote.

Other measures agencies should conduct are applying a patch from the device’s vendor, continuously monitoring a vulnerable device’s behavior until a patch is ready and automating response and remediation workflows.

Floden also cited the convergence of security strategies and leadership for information technology and operational technology and the need for agencies to immediately screen their IT environments for cyber risks.

You may also be interested in...

Stephanie O Sullivan Board Member HII

Former National Intelligence Official Stephanie O’Sullivan Elected to HII Board

Stephanie O’Sullivan, who served as principal deputy director in the Office of the Director of National Intelligence from 2011 to 2017 and a previous Wash100 awardee, formally joined Huntington Ingalls Industries' (NYSE: HII) board of directors Friday.

analytics

Navy Issues Solicitation for NIWC Atlantic Business Intell Support

The U.S. Navy is looking for potential sources of data analytics and business intelligence services in support of Naval Information Warfare Center Atlantic's teams that help manage the center’s product- and department-level operations.