Securely restoring backups after a cyberattack
Recovering from a cyberattack is a high-stakes process for any IT organisation. Learn how to securely restoring backups after a cyberattack. Read more
Articles
How to securely import updates into secure production environments
min read
To remain efficient and secure, systems must be updated regularly. For secure production environments, updates can also pose a risk of malware entering the systems. To make sure the update import is secure, special solutions are needed.
Questions we cover in this article
How do I reduce known exploitable vulnerabilities?
A great way to reduce the number of known and therefore exploitable vulnerabilies in a computer environment is to keep all software up to date. As different threats evolve, so do software vendors’ efforts to counter these threats and patch known vulnerabilities in the system. Unfortunately, there are also examples of software update packages being used as the delivery mechanism for malware. Importing software updates to your secure production environment (if air gapped or not) should thus always be done with due diligence, taking precautions for attacks.
Unfortunately, there are also examples of software update packages being used as the delivery mechanism for malware.
How do I ensuring safe SW update imports?
An effective way of ensuring safe SW update imports is to run the entire package through a scanning and sanitation system, such as Advenica’s File Security Screener (FSS). In this case, software updates can be securely imported to the secured system, along with other files, such as antivirus definition files etc. Before import, all files are scanned for malware and other threats including steganography, which are actively removed using the OPSWAT MetaDefender Core and its CDR functionality. The FSS offers vulnerability scanning to detect outdated and vulnerable dependencies in software updates that are scanned. You can mitigate known vulnerabilities even before those are installed into your production.
The FSS system supports
Secure verified updates to your trusted production environment
Automated workflow for bringing in updates from several sources
Reporting and analysis of the software updates and found threats
Increased zero-day threat detection with delayed scanning procedure
Large files, up to 100GB
File transfer capacity: 300Mbps (scale up is possible)
Quarantine and archive of files are supported
Log and monitoring through Syslog and SNMP
External heartbeat from source networks to protected network supported
Want to find the right solution for you? We are at your service.
Does Advenica offer the solution we need?
If you feel insecure on what solution that fits your business needs, please feel free to contact us at Advenica.
We have extensive experience in securely importing updates into secure production environments and can offer advice, expertise, products and services that solve your challenges. We are at your service.
How our customers use the FSS
FAQ
What Is Malware?
Malware, also called malicious software, is any software designed to damage, disrupt, or gain unauthorized access to a computer system, network, or data. It is commonly used by attackers to steal information, spy on users, or take control of systems.
What is Advenica’s solution for secure file import?
Our solution is called File Security Screener and is a high-security file import solution combining unidirectional data diode technology with malware scanning.
Read more about our File Security Screener here.
How do we find the right solution for us?
If you feel insecure on what solution that fits your business needs, please feel free to contact us at Advenica.
We have extensive experience of secure file imports and can offer advice, expertise, products and services that solve your challenges. We are at your service.
Contact us
Let's find the right solution for you. We are at your service.
Rickard Nilsson
COO
