Security News > 2022 > January > Why vulnerability scanners aren’t enough to prevent a ransomware attack on your business
Given the rapidly increasing complexity of today's cyber threat landscape, these scanners are not enough to win the fight against an increasingly overwhelming volume of vulnerability alerts.
Yes, vulnerability scanners are needed in most security toolkits.
Vulnerability scanners are akin to equipping security teams with an alarm system that's constantly flashing lights and sounding sirens everywhere - so many alerts at once that it overwhelms security operations.
Given the significant transitions many organizations' digital infrastructures are undergoing, along with the complex and quickly evolving threat landscape, a scan-and-patch approach reliant on vulnerability scanners as a first line of defense is simply insufficient to protect organizations from current and future threats.
Relying on vulnerability scanners is a dangerous strategy in the modern era, when vulnerabilities are actively and regularly weaponized for successful ransomware attacks.
Vulnerability scanners will remain in most security toolkits to reactively identify imminent threats.
News URL
https://www.helpnetsecurity.com/2022/01/31/vulnerability-scanners/
Related news
- Texas State Bar warns of data breach after INC ransomware claims attack (source)
- CISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks (source)
- PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware (source)
- Microsoft: Windows CLFS Vulnerability Could Lead to ‘Widespread Deployment and Detonation of Ransomware’ (source)
- Sensata Technologies hit by ransomware attack impacting operations (source)
- Ransomware attack cost IKEA operator in Eastern Europe $23 million (source)
- Kidney dialysis firm DaVita hit by weekend ransomware attack (source)
- Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) (source)
- Ahold Delhaize confirms data theft after INC ransomware claims attack (source)
- Interlock ransomware gang pushes fake IT tools in ClickFix attacks (source)