• E-mail
• Print
• Comment
• Font Size
• Digg
• del.icio.us
• Discuss article

Dimension Data Study Shows 73% of Networking Devices are Running with Known Security Vulnerabilities

Posted on: Tuesday, 24 March 2009, 14:45 CDT

Findings Highlight Risks Posed by Improperly Configured Network Devices and End-of-Lifecycle Equipment

NEW YORK, March 24 /PRNewswire/ -- Dimension Data, a $4.5 billion IT solutions and services provider, today released data showing that 73% of networking devices have known security vulnerabilities that may expose organizations to external and internal security attacks. The company also reported that each device deployed - such as a router, gateway, switch, etc. - has an average of 30 configuration errors, exposing organizations to further risk and network downtime, despite the fact that there are widely published and recommended standards to safeguard against these problems.

These are some of the key findings in the "Network Barometer Report" released today by Dimension Data. The report presents aggregate data from 152 Secure Network Infrastructure Assessment (SNIA) services conducted by Dimension Data in 2008 for small, medium and large organizations around the world and across verticals. The SNIA is a network and security assessment service that discovers, catalogues and provides remediation recommendations for hardware and software across organizational networks. The composite picture from the 2008 assessments offers an overview of networks' configurations, security vulnerabilities and device lifecycle statuses - underscoring the need for improvement and awareness.

"While the implications are alarming, the problems we uncovered can often be easily addressed," said Rich Schofield, global business development manager, Network Integration, Dimension Data. "The most basic protection measures against threats that could harm an organization, such as having proper access and password configurations, are simply not in place. It's the functional equivalent of leaving the doors and windows unlocked when you leave home. Organizations must take action now, working to shore up their networks before they incur reputational or shareholder damage."

Other significant report findings include:

• Holes in configuration security - Of the 30 configuration errors found per network device, 15 were related to security configuration. These errors can directly expose an organization to risk of an internal or external security breach.
• Expiring support - 43% of all network equipment reviewed was found to be at least at end-of-sale status, signifying increased difficulty in purchasing spare parts. When this occurs, organizations typically have to procure equipment from alternate, so-called "grey market" sources, which can be much less reliable than the original manufacturer.
• Headed towards obsolescence - Of the equipment that was at least at end-of-sale status, 56% was beyond either end-of-software-maintenance or last-day-of-support. Aging IT and network assets are potential risks for organizations - incurring longer repair times in the event of failure and eventual lack of support.

"Technology that is beyond end-of-sale will become increasingly unsupportable and exposed to risk," Schofield continued. "Additional commercial implications arise when an end-of-life device fails and must be replaced. Businesses may then have to buy expensive technology in compressed timeframes, without the customary due diligence which ought to be applied in such procurement decisions."

Dimension Data's SNIA helps organizations take inventory of their Cisco hardware and software. SNIAs are carried out to highlight any network problems and present potential implications with regard to risk, cost and strategy for both IT infrastructure and the business as a whole. In addition, a SNIA report provides companies with recommendations based on Dimension Data's proven best practice engagement methodology.

For more information on Dimension Data's "Network Barometer Report" and to obtain a free copy, please visit www.dimensiondata.com/networkbarometer.

About Dimension Data

Dimension Data (LSE: DDT), a specialist IT services and solutions provider, helps clients plan, build, support and manage their network and IT infrastructures. Dimension Data applies its expertise in networking, security, operating environments, storage and contact center technologies and its unique skills in consulting, integration and managed services to create customized client services. For more information: Call 866-DIDATA-US or visit www.dimensiondata.com/na.

About the Dimension Data Network Barometer Report

The Network Barometer Report presents the aggregate data from 152 Secure Network Infrastructure Assessments (SNIAs) conducted by Dimension Data for organizations around the world during 2008. The report provides an overview of networks' configuration, security vulnerabilities and device lifecycle status. The report is available for download from www.dimensiondata.com/networkbarometer.

Media Contacts: Lisa Grimes Nathan Bordegaray Dimension Data Davies Murphy Group (703) 217-2692 (781) 418-2419 lisa.grimes@us.didata.com ddna@daviesmurphy.com

SOURCE Dimension Data

Source: PR Newswire

More News in this Category