Marcus Carey, security researcher at Rapid7
September 01, 2011
Threat of the month

Threat of the month

What is it?
Perimeter Exploit Exposure occurs when organizations aren't properly filtering enterprise network services at the network egress points. This allows attackers to remotely exploit services that should not be exposed. Although basic security practice, it is easy to forget what's exposed on an internet perimeter.

How does it work?

An attacker can easily use network mapping and vulnerability scanners to discover exposed services available at the perimeter.

Should I be worried?
Yes. We tend to lose focus when a new attack vector is introduced and forget to consider basic principles. However, it is covering the basics that can lower an attack surface.

How can I prevent it?
Vulnerability and patch management is the cornerstone. Organizations can restrict services available at the perimeter, while scanning for exposures and, when necessary, securing and patching those services. Open ports should also be removed when they are no longer needed.
From the September 2011 Issue of SCMagazine »
Similar Articles
close

Next Article in Features

More in Features

Behind the scenes: Privacy and data-mining

Behind the scenes: Privacy and data-mining

With data-mining firms harvesting personal information from online activity, privacy advocates, if not yet consumers, are alarmed, reports James Hale.

The great divide: Reforming the CFAA

The great divide: Reforming the CFAA

Aaron Swartz's death inspired Rep. Zoe Lofgren to want to reform the federal anti-hacking law, but some security pros worry this would sterilize a potent enforcement weapon, reports Dan Kaplan.

Suspect everything: Advanced threats in the network

Suspect everything: Advanced threats in the network

Are there ways to catch sophisticated malware that hides in trusted processes and services? Deb Radcliff finds out.