Not like it’s anything new, but the elite security groups are putting a focus on their network access control mechanisms in order to prevent malware from ever breaching their perimeter controls. This will be incredibly tricky because its not like malware just tries one exploit and moves on to another target. Because of evolving malware, they may actually search for new vulnerabilities as well to try and exploits. Meaning? Security companies, no matter what tier they are in, have a lot of work to do.

IT organizations are under increasing pressure to address the security gaps created by non-managed PCs connecting to the network. The security gaps that enterprises are most concerned about include finding malware infections, checking the compliance and health of endpoint computers, controlling individual network access, and meeting regulatory requirements.

“The best network security strategy falls short if it doesn’t include the risk that threats (such as viruses and spyware) will be carried into the network on unmonitored laptops and computers. The risk is high in any company with mobile users, but can be particularly high in situations in which end users such as contractors or students may connect their own computers into an organization’s network environment. The labor costs involved in checking computers for health before they connect, or remediating a malware outbreak, add significant costs to help desk operations. Organizations need to take a new look at their endpoint security strategies and understand how NAC products are able to automatically protect and remediate these risks,” said Mounil Patel, Vice President and Research Director, Aberdeen.[more]

Tags: Malware, Computer Protection