Missing Telemetry Logs Increase Network Vulnerability

By ADMIN Team

Sophos report says lack of telemetry can slow response time.

Complete and accurate logging is essential for organizations to respond to active network threats. But, according to Sophos, “telemetry logs are missing in nearly 42% of the attack cases studied,” reports HelpNetSecurity.

“In 82% of these cases, cybercriminals disabled or wiped out the telemetry to hide their tracks,” the article says. Additionally, “gaps in telemetry decrease much-needed visibility into organizations’ networks and systems,” thereby shortening the time defenders have to effectively respond to an incident.

Related content

New versions of the Endian and Sophos UTM solutions
UTM systems combat all kinds of dangers under the policy of Unified Threat Management. The demands and expectations of customers fuel competition. Two of the most popular manufacturers – Endian and Sophos – have now released new versions of their solutions.

more »
Tracking down problems with Jaeger
The various components of cloud-native applications are always exchanging information, which makes troubleshooting difficult. The Jaeger tracing framework helps hunt down the perpetrators.

more »
Group policies on Windows Server 2022
We discuss how to manage and secure clients with group policy object templates and look at some recommendations from various governmental and non-governmental security advocates.

more »
Employing DNS in network security
A holistic approach to designing network architecture and cybersecurity uses DNS for cyber defense to detect attacks at an early stage and fend them off before major damage takes place.

more »
Vulnerability assessment best practices for enterprises
A vulnerability assessment is an important step toward protecting an organization's critical IT assets.

more »