Volume 2, Number 1

January 13, 2006

Technology Report

What's in a Scan?

ZAG Technical Services, Inc. is routinely called upon to perform network security audits for Corporations. The companies that contact us for these audits are concerned that they may be vulnerable to Internet borne security threats.

ZAG brings several specialized tools to bear during these scans. Our engineering staff then analyzes the data generated by these tools. The results of these audits are often quite dramatic. In the past, ZAG has been able to identify such things as:

• Vulnerable servers resulting from unsecured RDP and poor password security policies on the Administrator account.

• Completely wide open email systems.

• File shares that left confidential information exposed to the Internet.

Granted, most scans do not result in such a dramatic display of vulnerabilities. Rather, we find that the average scan shows things such as IIS servers not being properly patched and therefore susceptible to advanced hacker exploits. However, these more severe vulnerabilities are found more often than expected.

Another common issue we find is that firewalls often have more ports open to the Internet than are truly needed. The best way to secure a network is to make it as invisible as possible. For instance, if you do need to have RDP access into your network, make it only available from trusted addresses.

What’s in a scan? Sometimes, dramatic things are in a scan. As mentioned, data, exploits and holes can all be found in a scan. There is good news, however. ZAG has found that almost all issues found during a scan are quickly correctable. Generally, the scans report simple errors. One good example is when a port is opened for testing and never closed.

Many companies feel that they do not have the need to check their Internet security. After all, they are too small or aren't in the type of business that gets hacked.

Sadly, this reasoning is flawed. Many hackers will go after a small network just because it is small. They can then use it as a base to attack other targets. Hackers use automated scans that randomly patrol the Internet for flaws that can be exploited. No matter what your situation is, you can be a target.

It should also be remembered that an Internet scan is just the first pass at identifying security vulnerabilities and/or validating internal security processes. Most attacks occur from within your network. To be truly secure, these scans need to occur from both sides of the firewall.

At minimum, an internal scan can audit such things as password security, antivirus implementations, patch levels on servers and desktops, file right assignments and the like. These internal scans can go fairly deep. They can also be performed fairly quickly.

Internal scans allow a company to be significantly more confident that their environment is secure.

What’s in a scan? Due diligence is in a scan. Doing regular scans is the best way for an administrator to make sure that the network is not exposed to the Internet. After all, due diligence is the ally of every IT administrator.

ZAG Announces Acquisition of The Network Technology Group

San Jose, CA – January 1, 2006 – ZAG Technical Services, Inc. (ZAG) today announced that it has acquired The Network Technology Group (NTG) of Santa Clara, California.

Founded in 1992, NTG has always been a strong leader in the IT Services field. From contract CIO to desktop support, NTG offers its customers excellent service at outstanding value.

NTG is a longtime Novell Partner. As a Novell Gold Partner, NTG is able to service its customers with outstanding skill.

The acquisition of NTG will further strengthen ZAG’s reach and capabilities. As Greg Gatzke, Principal at ZAG puts it, “The addition of NTG will be great for ZAG. Their engineering experience is highly sought after in the valley.”

This email newsletter was sent to you as a service of ZAG Technical Services, Inc. If for any reason you do not wish to continue receiving them, please send an email to newsletter@zagtech.com and you will be removed from future mailings.