Sponsored By

5 Takeaways from the Cisco WikiLeaks Bombshell5 Takeaways from the Cisco WikiLeaks Bombshell

The flaw in 300 popular network switches should be a channel eye-opener.

Channel Partners

April 3, 2017

3 Min Read
Frustrated Guy

b43ab71db0b4422a83bdfe48a9381787.jpgBy Darren Kimura

By now you’ve likely heard about the Vault 7 release, in which WikiLeaks dumped thousands of files that it claims came from a top-secret CIA network. The cache included bombshell allegations that the CIA created exploits that could open back doors on many end user and network devices — and then lost control over that code, leaving companies vulnerable to attack. Among the leaked exploits is a security vulnerability that affects more than 300 models of Cisco switches. You can read more about the backstory by going to the Cisco blog

To its credit, Cisco immediately identified steps customers should take if affected by this latest threat. The vulnerability was resolved, and engineers throughout the industry will move on to face other challenges — until, that is, we get hit with the next volley in a steady attack on our network security defenses. For partners, the current Vault 7 situation should be an incentive to take a closer look at our – and our customers’ – infrastructures. It’s a lot like when one of our neighbors reports a house break-in and everybody on the block double-checks their locks; only in our case, we scan for potential issues in all devices that touch the network.

With this in mind, here are five takeaways from Vault 7.

  1. Be proactive about security. It’s worth the cost and effort of frequent reviews to be the first to spot vulnerabilities. Nobody enjoys being in reactive mode, especially your customers.

  2. Know your network to avoid surprises. This sounds basic, but the days of simple Visio diagrams are over. Topologies are getting more complex as traditional and software-defined WAN technologies proliferate, not to mention the bandwidth demands of voice and video applications. For this reason, you need a big picture – or end-to-end – topological view of your network and devices to identify vulnerabilities and potential issues before damage is done.

  3. Explore the discipline of network situational awareness. For that big-picture view to make sense, you also need constant situational awareness of what’s going on in the network. This is related to being proactive; otherwise, you end up with myopic decision making about what stays, goes or is a potential threat to the network. Everything in context.

  4. Be ready to counter. When a threat is detected, quickly change device paths to limit the potential risk. This is a lot like knowing the shortcuts in your neighborhood when a street is under construction. If there aren’t any workarounds, like the situation with the Vault 7 leak, you should be able to play back historical views and analyze network flows at any given point in time to get to the source of the issue.

  5. Automate where possible. Don’t just monitor devices and applications; have a system in place that recommends – and possibly implements – resolutions before a potential problem impacts network performance. 

Complete visibility of your network environment will help you to see in real time if someone or something is exploiting the flaws that are present in any and all network gear. Fortunately there are many resources to identify these types of security vulnerabilities and provide continuous insight into your enterprise infrastructure.

Darren T. Kimura is the Executive Chairman at LiveAction, which recently expanded its partner program. In this capacity he leads the Board of Directors and provides advice and counsel to the CEO and LiveAction leadership on the company’s strategy and strategic partnerships. 

Read more about:

Agents

About the Author(s)

Channel Partners

Channel Partners

See more from Channel Partners
Free Newsletters for the Channel
Register for Your Free Newsletter Now
Subscribe

You May Also Like

Galleries
See all
Sep 16 - Sep 19, 2024
The strength of the channel is undeniable as we saw at our record-breaking Channel Partners Conference & Expo in Las Vegas. As the landscape of the channel continues to evolve with M&A, emerging partner models and the race for recurring revenue, IT and communications vendors are doubling down on their partner programs as they seek new avenues for growth. As a result, channel leaders have to be more agile than ever to stay ahead of the curve. At Channel Futures Leadership Summit, current and future leaders will come together in sunny Miami to connect, learn from one another, collaborate and hone their leadership skills. Get notified when registration opens for 2024.
Get Notified