Segmenting your network is when you compartmentalize your networks in order to deliver specific security controls and services, and to manage network congestion. With the trend of ransomware attacks being more focused on disrupting business operations, it is critical that [...]
Hopefully, you have seen the news about the growing reality of ransomware and how it is impacting companies and government entities on a global scale. While ransomware is not new, the severity, reach and costs associated with this cyber threat [...]
In this blog, we’ll discuss machine learning (ML) and artificial intelligence (AI), and how it’s currently being used in cybersecurity. Keep an eye out towards the end as WorkDone CEO, Joe Rogers, will join us in the discussion of [...]
Ransomware, first seen in 1989, has grown into a one of the largest criminal business industries worldwide, accounting for a total of $20 billion in damage costs in 2020. First starting with criminals developing their own codes to use for [...]
It’s no doubt that 2020 was a tough year for everyone, and even more so for information security professionals. In fact, 2020 saw the highest increased rates of ransomware incidents than any other year. The onslaught of phishing scams, [...]
Ransomware recovery timeframes can vary widely. In very unusual situations, companies are only down for a day or two. In other unusual cases, it can take months. Most companies fall somewhere between the two to four week range, given their [...]
Paying a ransom is no joke. Being victimized by ransomware can leave you breathless and concerned for the future of your business, and anyone who would inflict this type of harm cannot be trusted. You are dealing with criminals, although [...]
In the wake of the recent and widespread SolarWinds attack that compromised U.S. government agencies, as well as the increase in cyber activity across all industries and organizations, CompTIA has established an Cybersecurity Advisory Council that aims to provide cybersecurity [...]
And if your firm buys cyber breach insurance, will the insurance pay? There are many stipulations in regards to qualifying for cyber breach insurance. Most insurance companies require you to affirm a Statement of Fact and Fraud Warning. When [...]
Since each ransom attack varies so much, it is tough to answer what exactly the typical ransomware payment is. It is also difficult to pinpoint the exact number of ransomware gangs that are active, but it is certainly a large amount.
Smoke testing is a term used to describe the testing process for servers after patches are applied. The process typically involves making sure servers are rebooted in the right order, making sure they have completely rebooted, restarting applications in the right order, and then testing to be certain everything is working properly when users return to work in the morning.
This typically takes 30 minutes per server, depending upon your environment.
PCs are not typically smoke tested, or if so, not all of them.
Estimating an average time for patching servers and PCs can be a bit tricky. It can vary from one month to the next, depending upon the number and complexity of the patches released by your software vendors. You must consider all versions of operating systems and have a complete inventory of all your application software to do this job correctly. Our experience has shown that manual patching of systems takes on average of about 1.5 hours each.
There are many variables to consider. Some are:
You want to enter in a fully burdened labor rate for this field. What that means is that you want to take the base hourly rate, plus 25-30% for employer payroll taxes, benefits, vacation/holiday time, etc.
For example, someone making $80,000 per year will typically work 52 weeks of 40 hours, or 2080 hours. $80,000 divided by 2080 is $38.46/hour. Multiply that hourly rate by 1.3, and you get $50.00/hour. Of course, rates of pay, taxes and benefits will vary from city, state and company; but 30% is usually a good number to use. Don’t forget to account for time-and-a-half or after-hours rates of pay if patching is being done in the late evening, early morning, or weekends (in order to avoid impacting user productivity).
This is a basic cost calculator for you to compute your typical monthly cost for patching your servers, PCs, laptops, tablets and associated application software. It also forms the basis for you to begin calculating your Return on Investment for software patching, or for comparison with alternatives to the manual process of patching operating systems and application software—such as Patch Management as a Service, also known as Vulnerability Management as a Service.
If you are presenting to management for a budget, and using this calculator as the basis for a Return on Investment (ROI), you will need to do more homework. An ROI measures as a ratio of the cost of investment against its expected benefit. For patching, calculating benefit can be very difficult to determine. How do you measure the cost of a system breach you have not yet had? You can estimate what expenses, penalties, and losses a company might incur when a breach occurs; but there is no certainty of a breach event and what those costs actually are. There are also regulatory compliance issues and/or potential fines for not patching, but those, too, can be vague. For calculating these potential risks and costs, it is advisable to enter into a discussion with your management team.