As the world's knowledge workers were driven home amid a pandemic and cases of ransomware ran rampant across the internet, measuring the world's most critical businesses’ internet exposure is more important than ever. In this round of Internet Cyber-Exposure Reports (ICERs), researchers at Rapid7 evaluated five areas of cybersecurity that are both critical to secure to continue doing business on and across the internet, and are squarely in the power of CISOs, their IT security staffs, and their internal business partners to address.
These five facets of internet-facing cyber-exposure and risk include:
- Authenticated email origination and handling (DMARC)
- Encryption standards for public web applications (HTTPS and HSTS)
- Version management for web servers and email servers (focusing on IIS, nginx, Apache, and Exchange)
- Risky protocols unsuitable for the internet (RDP, SMB, and Telnet)
- The proliferation of vulnerability disclosure programs (VDPs).
Tune in as Tod Beardsley, Director of Research and Bob Rudis, Chief Data Scientist discuss their findings and provide recommendations CISOs and security practitioners can take action on.