Over a two-year period, the company completely overhauled the way it handles access to its network around the notion that no user or device can be trusted.Įvery file request, database query and print command must be checked to be sure it comes from a user with the correct privileges. Lexmark decided go all in on an entirely different approach to cybersecurity called zero trust. Lexmark’s Willett: Malware attack “opened our eyes” about the need for a new approach to cybersecurity. But providing that flexibility within the context of a traditional approach to cybersecurity could open the door to a potentially catastrophic breach. New devices were constantly being added to the network, sometimes without the knowledge of the information technology organization.Ĭlamping down on employees wasn’t an option, since competition for skills and the pace of a global business demanded a malleable IT infrastructure that adapted to the way people wanted to use it. Like many organizations, Lexmark had people working in offices, out of their homes and at coffee shops around the world.
The incident, which even attracted the attention of the FBI at one point, “opened our eyes,” Willett recalled. “We struggled with getting visibility into it, controlling it and getting patches in place” across a network serving more than 8,500 users. The Kwampirs malware had “run rampant,” said Bryan Willett, Lexmark’s chief information security officer. was hit with a stubborn computer virus that tied up some members of its cybersecurity team for months. Four years ago, Lexmark International Inc.
0 kommentar(er)
