Story image

CAUTION: The SSL blind spot is growing

16 May 16

The use of Secure Sockets Layer (SSL) and Transport Layer Security (TLS) encryption is growing fast, and that’s a good thing for protecting user privacy and business communications. However, it’s also good news for hackers and cybercriminals because SSL provides a great hiding place for malware. In fact, research from Gartner forecasts that 50% of all network attacks will hide in encrypted traffic by 2017.

Security professionals know about the “SSL blind spot” and most have taken action. They’ve bought tools to inspect SSL-encrypted traffic at the critical junctions, which include ingress and egress points in the network and near web and cloud gateways. They’ve succeeded in identifying and thwarting various attacks, and that has created a new phenomenon in the battle against SSL-borne malware attacks: Overconfidence.

New data shows two troubling trends. Firstly, a massive increase in malware hiding in SSL, which is coupled with a false sense of security on the part of security professionals. Consider this:

  • Blue Coat Labs found dramatic increases in malware using SSL in the last two years. To be specific, between January 2014 and September 2015, a little more than 500 samples of malware families were seen to be using SSL each month. In the remaining three months of 2015, this figure soared to nearly 29,000 samples. A similar trend was observed in C&C servers. In Q3 2014, Blue Coat observed approximately 1,000 C&C servers using SSL, shooting up to over 200,000 observed in Q3 2015.
  • According to the 2016 Cyberthreat Defense Report from CyberEdge, 85% of security professionals believe their organisations have this issue covered.
  • A large percentage of advanced persistent threats (APTs) that use SSL still go undetected.

The reality is that it’s harder than ever to get a handle on the magnitude of the risk of encrypted traffic traveling through an enterprise. Take a look at this infographic (5 things you need to know about managing encrypted traffic) for more details. Within you’ll find:

  • The factors contributing to the network security blind spot
  • How Encrypted Traffic Management (ETM) helps security devices see all traffic
  • How you can achieve visibility without disrupting privacy needs

Remember: When you’re fighting the SSL blind spot, it’s good to have both eyes wide open.

Without a strategy for managing encrypted traffic, you may be vulnerable to attacks and critical data leakage. Blue Coat's ETM solutions help security and network operations balance security demands with privacy, policy and regulatory needs.

If you would like to know more, click here.

NZ’s $3.45bil IT services market fueled by competitive advantage
"With regards to cloud adoption, organisations are prioritising innovation and security over cost and scalability.”
The secret to scaling DevOps in the digital era
"Organisations around the world have learnt at a cost that while agile DevOps methodologies can result in improved outcomes within teams and projects, they have a propensity to fail miserably."
APAC FinTech network launches to encourage cross-border innovation
Nine associations formally launched the network by signing a Statement of Intent at the Asian Financial Forum event in Hong Kong.
Avaya expands AI offerings with new partnerships
The additions to the ecosystem will enable Avaya to add prioritisation and natural language processing to its UC solutions.
Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Kiwis make waves in IoT World Cup
A New Zealand company, KotahiNet, has been named as a finalist in the IoT World Cup for its River Pollution Monitoring solution.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
SUSE partners with Intel and SAP to accelerate IT transformation
SUSE announced support for Intel Optane DC persistent memory with SAP HANA.