A lot of attention gets paid in the press to “zero-day” threats — attacks that wreak havoc on organizations while they’re still completely unknown to the cybersecurity community. But the truth is that 60 percent of breaches are the result of known vulnerabilities that have been left unpatched.

The problem is that patching practices in many organizations are slow and disorganized. Too many teams are in charge of patching too many different systems, and security leaders typically lack visibility into who is staying on top of patching and who isn’t. The good news is that many organizations already have a powerful tool to help streamline vulnerability management — the service management platform ServiceNow. Although some organizations use the platform primarily to manage help desk tickets, it’s capable of much more. The solution can also help organizations shore up vulnerabilities across their IT environments.

Here’s how.

As organizations across the country have moved to remote work models, many have reported an increase in cyberattacks. Cybercriminals, it seems, are taking advantage of the public health crisis to exploit security vulnerabilities in home-based computer systems. What can organizations do to minimize the chances that their shift to remote work results in an expensive breach? We recommend a multipronged approach that combines the use of security tools and end-user education.

The sudden shutdown of physical offices across the country this spring has accelerated many organizations’ journeys down the digital transformation path. Companies that had previously been reluctant to adopt tools such as videoconferencing and cloud collaboration rolled those solutions out to users in a rush as they scrambled to enable remote work. Because they deployed so many solutions in such a short period of time, most organizations will want to undertake some sort of security assessment to be sure they haven’t opened themselves up to new vulnerabilities. But this moment also presents an opportunity for organizations to provide a permanent boost to their cybersecurity practices through ongoing engagements.

Here are three examples of CDW’s high-value cybersecurity offerings.

Digital healthcare is becoming increasingly important as healthcare providers strive to achieve the “Triple Aim” objectives of improved patient experience, improved population health and lower costs. Digital healthcare is an ecosystem, optimized to align with the needs of practitioners, staff and — most important — the patient population. It’s made up of interconnected, interoperable physical…

New Year’s resolutions provide an opportunity to focus on important things that may have slipped through the cracks the previous year. 

With all of the recent excitement about the “Shellshock” code execution vulnerability in the UNIX bash shell, and the somewhat older news about SSL vulnerabilities, I am reminded once again about the need for organizations to formally manage information security as part of an ongoing process.