Last week, Microsoft released an important blog that details that details how HAFNIUM, a state-sponsored threat actor operating out of China, exploited Microsoft Exchange Servers with zero-day exploits along with other code execution vulnerabilities in the Sharepoint software. Microsoft advises that these patches are only intended to be a temporary fix. Customers are still required to update their software to the latest version and apply any relevant security patches to their server.
Contrary to how often SASE is presented as only a cloud-delivered solution, SASE is most commonly deployed as a blended implementation. As seen with the customer examples above, a number of them decided to deploy via the cloud and on-premises while others leveraged a 100% cloud model or a 100% on-premise model.
Deploying point solutions to address the growing needs of a remote workforce and the challenges of an evolving threat landscape is straining the Enterprise bank. As organizations struggle to balance network requirements and IT costs, SASE, with its cloud-native architecture and software-centric approach, is emerging as an effective solution to slash the unpredictable and unsustainable cost spikes.
Backed by a solid strategy and working with our global partners, key stakeholders, and colleagues, we successfully executed on delivering Versa’s new global channel program, the Versa ACE Partner Program. Much like a conductor who collaborates with all the sections of an orchestra to make beautiful music for all to appreciate, Versa combines all the moving pieces together to form the Versa ACE Partner Program.
WANs (Wide Area Networks) allow companies to extend their computer networks to be able to connect remote branch offices to data centers, public cloud, SaaS applications, and other internet-delivered applications and services that are required to perform essential business functions. Applications and connectivity are the lifeblood of all organizations today. The ability to connect users predictably and securely across branches, HQ, data centers, public clouds, etc. is the key to their success. However, more applications mean more demands on the network – and more demands on the teams that run them.
As a reseller you have the broadest visibility of what is truly happening out there: across multiple industries; different size customers; companies of different profiles. Your expert reputation is well established and you deploy robust solutions with confidence. Yet many in your shoes have been hesitant to offer security in their portfolios—historically much-too-complex.
SMEs are the most cost-conscious of organizations; there’s no money for large IT teams, nor for stacks of single-purpose boxes per location: it adds up quickly with more locations. Direct Internet Access (DIA) has been a life-saver (read: cost-saver). Employees using their own tablets, smartphones, and laptops has phenomenally brought down user device costs and headaches—employees even upgrade and refresh their devices themselves! Cloud applications are another absolution: no more servers, OS upgrades, boxes, more boxes, slow performance—with SaaS you pay-as-you-go and instantly scale up/down.
What makes Versa Secure SD-WAN a better choice than the average SD-WAN offering in the market? As with any other assessment, you have to lift the covers and look underneath—see what’s inside, how it’s built, how the engine works, and how it achieves the oft-touted qualities you’d come to expect of a robust SD-WAN.
The SolarWinds attack leaves many unanswered questions and the most prominent amongst them is the question of how the attacker entered internal systems of SolarWinds network and was able to infiltrate and move inconspicuously across the development chain. The malware was able to camouflage its activity among the highly secure network of the prominent organization for an extended period of time, evading all their security detection and prevention defenses. In this particular blog, our team will mainly focus on the chain of events that occurred, and the evasive methods employed to remain completely stealthy despite moving around and compromising a highly secure network environment.
On December 13, 2020, FireEye reported a global campaign that targeted a large sector of industries by threat actors who inserted malicious code within a software component used by the popular network management software SolarWinds. It is not yet known how the threat actors managed to gain access to the development environment in which they added and distributed this malicious code as part of an update to the software. This trojanized version of the dynamic-link library (DLL) has been given the name ‘Sunburst’ by FireEye. Surprisingly enough, researchers have found evidence of the presence of a second backdoor in the SolarWinds product.
Subscribe to the Versa Blog
Gartner Research Report
Trial
ROI
Contact