Webinar: What is 'Efficient Vulnerability Management' That Can Be Achieved Even with a Limited Budget Amidst Increasing Ransomware Damage?

・ This seminar is intended for end-user companies, excluding IT vendors. Applications from individuals outside of this scope may be declined. We appreciate your understanding in advance.


■ The Rapidly Increasing Risk of Ransomware Attacks on Externally Exposed Assets, with Vulnerabilities in Unmanaged Assets Being a Key Target
While life has become richer with the spread of the internet and cloud services, the increase in IoT (Internet of Things) devices, and the utilization of technologies like big data and artificial intelligence, the risk of cyberattacks targeting IT assets exposed to the internet is growing.
In particular, damage from ransomware attacks has surged in recent years. According to a survey by the National Police Agency's Cyber Police Bureau, over 80% of infection routes for companies and organizations that suffered ransomware damage were from 'intrusions via VPN or remote desktop equipment.'
Attackers use 'OSINT techniques' (data collection and analysis using public information) to investigate the security posture of externally exposed assets that serve as entry points for cyberattacks.
Externally exposed IT assets include websites and servers launched by business departments, and cloud services used by employees for work, some of which IT system administrators may not have a full grasp of. Among these, assets are often found left with weak security, their vulnerable state easily discoverable through simple investigation.

■ The Enormous Cost of Security Audits: How Should Company-Wide Asset Information Be Identified and Managed?
To protect one's organization from such cyberattacks, 'security audits' play a crucial role. Generally, a security audit refers to the investigation and inspection to discover vulnerabilities in systems, networks, and web applications, and to evaluate the risk of attack.
However, a single audit is insufficient as many systems and services are updated daily, with the constant possibility of new vulnerabilities emerging from configuration changes or new deployments. Furthermore, attack methods and vulnerability information are constantly evolving. It is possible to enhance defensive capabilities by re-evaluating based on the latest attack trends and vulnerability information. Additionally, for companies with subsidiaries or group companies, it is common that they have not conducted an inventory of externally exposed IT assets or are unable to grasp the latest status of their vast IT assets.
Failure to properly identify these assets and implement company-wide countermeasures increases the risk of security incidents like cyberattacks. On the other hand, the reality is that conducting security audits on all externally exposed assets incurs enormous costs and effort.

■ Explaining the Key to 'Optimizing Audit Costs' Through Efficient Vulnerability Management
In this situation, what is the best way to protect your organization's IT assets from cyberattacks? In fact, to conduct vulnerability audits efficiently while keeping costs down, it is crucial to 'understand the attacker's motives and respond strategically.'
Therefore, this seminar will explain 'why attackers target externally exposed assets' based on the latest trends in cyberattacks, and also highlight the importance of identifying externally exposed assets as the first step in strengthening security.
Furthermore, based on an understanding of the attacker's motives,...