Qualys, Inc, a leading provider of disruptive cloud-based IT, security and compliance solutions, is unveiling TruRisk Eliminate at Black Hat 2024. Qualys TruRisk Eliminate is a comprehensive remediation solution that extends beyond patching to help organizations further reduce risk. It provides additional innovative remediation methods when patching isn’t feasible. This approach uses patchless patching, targeted isolation, and other mitigation strategies to ensure robust protection.
Patch management is a core capability for remediating vulnerabilities, but it is not always the most viable or only option. Addressing all vulnerabilities is increasingly difficult due to potential business disruptions from patching, the unavailability of patches for zero days, and the limitations of traditional patch management tools that rely solely on agents. The Qualys Threat Research Unit (TRU) identified five million instances of CISA Known At-risk assets that can’t be patched present vulnerabilities exploitable by hackers, leading to ransomware and data breaches. Cybersecurity and IT teams need effective mechanisms to mitigate the risks of unpatched vulnerabilities while maintaining business operations.
“Although patching is an essential part of vulnerability management to mitigate risk, there are some use cases where it isn’t possible, or doing so requires outages or downtime that can impact operations. In some cases, such as new exploits or zero-day vulnerabilities, a patch may not even be available,” said Melinda Marks, practice director, cybersecurity, at Enterprise Strategy Group. “Now with TruRisk Eliminate, Qualys augments its vulnerability management capabilities with an innovative solution to efficiently mitigate risk with patchless approaches to remediating vulnerabilities, helping security teams better align with and support business operations.”
Qualys TruRisk Eliminate equips security and IT teams with powerful tools to enhance cybersecurity resilience by addressing critical vulnerabilities with or without deploying a patch. This solution reduces friction in current processes, enabling CISOs and CIOs to effectively reduce risk through patch management, configuration changes, mitigation, and targeted isolation. As a result, organizations can significantly lower their vulnerability exposure and streamline their response to cyber threats. TruRisk Eliminate provides more flexibility and options tailored to an organization’s unique operational needs, remediation timelines, and business objectives.
SOURCE: PRNewswire