In October of 2024, CISCO introduced a vulnerability within the Distant Entry VPN function of the Cisco Adaptive Safety Equipment (ASA) Software program and Cisco Firepower Menace Protection (FTD) Software program may enable an unauthenticated, distant attacker to trigger the gadget to reload unexpectedly, leading to a denial of service (DoS) situation on an affected gadget. There are not any workarounds or mitigations, solely patches that have to be put in.
In the course of the annual renewal of cyber insurance coverage, the insurance coverage provider wouldn’t even take into account insuring my enterprise if we didn’t show that we had some basic protections in place. Primarily based on the questions and bullet factors, you could possibly inform they noticed the distant entry, third-party vendor entry, and community administrator accounts as weak factors that wanted extra safety.
MFA is a requirement most insurers insist upon
For instance, they mandated that every one distant entry, together with VPN entry and all distant monitoring and administration (RMM) options, resembling distant desktop protocol (RDP), be protected by multifactor authentication (MFA), mandating that it must also be enforced on e mail entry and any distant entry to vital sources, together with third-party and vendor entry.