Security News > 2020 > February > What is flowing through your enterprise network?

What is flowing through your enterprise network?
2020-02-20 08:50

According to SophosLabs, nearly one-third of malware and unwanted applications enter the enterprise network through TLS-encrypted flows.

Nearly a quarter of malware now communicates over HTTPS connections, making it more difficult for businesses to spot active infections within their networks, especially because - a recent survey has revealed - only 3.5% of organizations are actually decrypting their network traffic to properly inspect it.

"Malware authors also want to empower their binaries with newer features and refresh them more often, which also increases the need for secure network communication, to prevent network-level protection tools from discovering an active infection inside the network every time it downloads an updated version of itself."

Some respondents in the previously mentioned survey were also unaware of the need to decrypt network traffic, even though it's common knowledge that malware often uses encrypted connections for communication.

"With Sophos XG Firewall, IT managers can immediately deploy TLS inspection without concerns over performance or breaking incompatible devices on the network, and they can turn it on for different parts of the network with flexible policy setting options," Dan Schiappa, chief product officer at Sophos, told Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/AZiGeJNbLD4/