Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

4/25/2012
01:32 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

BT Assure Adds Intelligence And Innovation For The New Security Reality

Exclusive BT research shows opportunity for organizations to "rethink the risk"

LONDON, April 24, 2012 /PRNewswire/ -- BT today announced innovations to its BT Assure security portfolio which are designed to help organizations better address a wide array of security issues and protect the trust required for business to be successful. These innovations focus on the risks posed by the growing presence of personal devices on corporate networks, the large scale deployment of cloud solutions and the challenges of 'big data', the large amounts of unstructured data inherent in contemporary commerce.

An exclusive survey of more than 2,000 users and decision makers across 11 countries shows that risks to business are moving too fast for a purely reactive security approach to be successful. The BT "Rethink the Risk" research results also demonstrate that the traditional secure outer perimeter of enterprise networks no longer exists and confirms that specific tools are required to measure, understand and address this new security reality.

According to the research, cybersecurity threats, accidental or intentional employee data loss and increasing use of personal devices on employers networks are the three biggest security risks perceived by IT decision-makers. In particular, BYOD (BYOD = Bring Your Own Device) is making progress within the corporate environment, with 60 per cent of employees using personal devices for work, with especially high usage in countries such as China and India (92 per cent and 80 per cent).

The BT research also shows that 82 per cent of companies say they already allow BYOD or will do within the next 24 months. The adoption of BYOD brings to light new security issues. Four out of ten companies have experienced security breaches due to people bringing in unauthorized devices. Of those companies that do have a BYOD policy, security was by far the biggest challenge (74 per cent). Interestingly, the board and senior management are the second largest group of people demanding BYOD, just behind IT people and power users.

In order to help Chief Security Officers and Chief Information Officers rethink the risk, BT is today launching a number of innovations to its BT Assure portfolio.

-- Assure Secure Web offers offer customers a uniform web access policy for all remote devices, whether employee- or company-owned, with one single, centralized and instantly updatable view, global reporting, and role-based control, so there is no need to reach each device individually. -- Assure Analytics brings to life in real-time the potential threats and outcomes faced by businesses, helping them make the right decisions for effective policies. This is made possible by BT's ground-breaking data analytics and visualization system. The system learns as it runs, giving businesses the simple, integrated information they want, when they want it, and leveraging any kind of relevant source of data. It enables better decision-making about effectiveness of policy, internal or external usage of resources and typical threat/attacker profiles, all in real-time. -- Assure Cyber offers a higher-touch, more controls-oriented approach to security incident and event management (SIEM), allowing for analysis and reports that are fully interactive and customizable, streamlining incident response and simplifying lessons to be learned. -- Mobility Lifecycle Management covers employee- or company-owned devices, with granular access rules, role-based usage, remote wipe, and cloud updates. It establishes a framework touching large populations of mobile devices. -- Assure Evaluator allows customers and prospects to see how their state of security readiness compares to typical enterprises, and helps steer them towards the areas of most pressing concern. The evaluator assesses the three elements of security; people, processes and technology. The output of the eValuator provides customers with a detailed view of their readiness in key areas which will help them to prioritize their security spend and activities. Jeff Kelly, CEO of BT Global Services, said: "The best companies understand that commerce is ultimately a trust relationship. Technical ecosystems can however sometimes fail to meet their ambitions, challenging the trust between companies, their customers, and their supporting players. Our customers face new opportunities to proactively lead with security, placing security firmly in the heart of the boardroom. By promoting intelligence and innovation through our BT Assure portfolio, we help our customers to identify, implement and deliver security where it matters most, building it into the heart of the organization rather than just bolting it on. Trust needs to be backed by a continuous investment program in skilled people, as well as state of the art global infrastructure and security management systems. This is definitely the time to rethink the risk."

A summary of the Rethink the Risk research and details on the BT Assure portfolio are available at www.bt.com/btassure/securitythatmatters

About BT

BT is one of the world's leading providers of communications services and solutions, serving customers in more than 170 countries. Its principal activities include the provision of networked IT services globally; local, national and international telecommunications services to its customers for use at home, at work and on the move; broadband and internet products and services and converged fixed/mobile products and services. BT consists principally of four lines of business: BT Global Services, BT Retail, BT Wholesale and Openreach.

In the year ended 31 March 2011, BT Group's revenue was 20,076m pounds Sterling with profit before taxation of 1,717m pounds.

British Telecommunications plc (BT) is a wholly-owned subsidiary of BT Group plc and encompasses virtually all businesses and assets of the BT Group. BT Group plc is listed on stock exchanges in London and New York.

For more information, visit www.btplc.com

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Commentary
How SolarWinds Busted Up Our Assumptions About Code Signing
Dr. Jethro Beekman, Technical Director,  3/3/2021
News
'ObliqueRAT' Now Hides Behind Images on Compromised Websites
Jai Vijayan, Contributing Writer,  3/2/2021
News
Attackers Turn Struggling Software Projects Into Trojan Horses
Robert Lemos, Contributing Writer,  2/26/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21360
PUBLISHED: 2021-03-09
Products.GenericSetup is a mini-framework for expressing the configured state of a Zope Site as a set of filesystem artifacts. In Products.GenericSetup before version 2.1.1 there is an information disclosure vulnerability - anonymous visitors may view log and snapshot files generated by the Generic ...
CVE-2021-21361
PUBLISHED: 2021-03-09
The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. This is fixed...
CVE-2021-24033
PUBLISHED: 2021-03-09
react-dev-utils prior to v11.0.4 exposes a function, getProcessForPort, where an input argument is concatenated into a command string to be executed. This function is typically used from react-scripts (in Create React App projects), where the usage is safe. Only when this function is manually invoke...
CVE-2021-21510
PUBLISHED: 2021-03-08
Dell iDRAC8 versions prior to 2.75.100.75 contain a host header injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary ‘Host’ header values to poison a web-cache or trigger redirections.
CVE-2020-27575
PUBLISHED: 2021-03-08
Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in which administrators are able to manage users. The edit users form contains a parameter vulnerable to command injection due to insufficient validation.