Security - Channel Insider
Empowering the next generation Channel

8 Most Common Security Flaws Found by VARs
By Lawrence Walsh on 2009-08-18



Solution providers are often the first line of retreat for end users who realize they have a security problem. A recent survey of solution providers by Channel Insider and CompTIA found that there are eight common ailments found during security assessments.
  • of
Solution providers are often the first line of retreat for end users who realize they have a security issue. A recent survey of solution providers by Channel Insider and CompTIA found that several common security ailments are found by solution providers when doing security assessments. The following are the top 8 flaws end-user security flaws found by solution providers.

Fortune 500 enterprises aren’t the only businesses subject to regulatory compliance. Community banks, retailers and health care clinics are all subject to scores of security requirements. 19% of solution providers say they find misreporting on compliance when doing security assessments.

In 1 out of every 5 cases, solution providers say their customers are miscalculating the true cost of recovering and remediating a security incident. Miscalculations lead business owners and executives from making sound budget decisions about security spending.

Security breaches are a matter of when, not if. But one-third of solution providers say their clients don’t fully appreciate the severity of security breaches, which leads them to fall short on completely remediating the damage.

No one wants to look stupid, but end users can’t help themselves. In 1 out of 3 engagements, solution providers say their customers misrepresent their true security capabilities, which eventually leads to security compliance shortcomings and, in worse cases, breaches.

Patching is the drudge work of security, but a necessary function. Yet, 35% of solution providers say their clients don’t property deploy patches. Making matters worse, they’ll report patches being deployed without verification. This leaves networks and applications open to dangerous exploitation.

When a security guy is asked how secure his network is, the worst answer he can give is “absolutely secure.” 38% of solution providers say their customers are embellishing security records and posture. Many solution providers say underreporting is often unintentional. But improper reporting means serious security shortcomings are left unaddressed.

Nearly half of solution providers say they’ll find rogue, scareware and unauthorized software on their clients networks while doing security assessments. Rogue software is a serious and growing problem. These apps steal data, slow performance and leave networks open to further exploitation.

68% of solution providers say they find overlooked or unresolved vulnerabilities during security assessments. This problem is often a reflection of end users’ lack of skill and resources to properly address their security needs.

Security shortcomings of end users is a ripe opportunity for solution providers. According to the survey, 65% of solution providers say problems found in security assessments will more than likely lead to new engagements and sales with their clients.

  • More slideshows

  
CHANNEL RESOURCE CENTER
 
 
 

Intel Technology Provider Program
Intel Technology Provider Program (ITP) helps resellers better understand Intel products which power the technology they sell, and enables value-add services such as remote manageability or anti-theft tracking.
Learn More
 
WindowsForDevices.com
WindowsForDevices.com is the comprehensive news site covering Windows embedded technologies. Visitors get news, technical white papers, opinion columns and extensive directories covering the products and companies in the marketplace.
Click Here
 
Check out our top five picks for technologies that will change the game in enterprise computing.
Learn MoreClick Here