Become a member of our daily and weekly newsletters for the latest updates and exclusive content about leading AI coverage. Leather
No -jumped systems are a ticking time bomb. Fifty -seven percent of cyber attack -victims acknowledge that available patches would have prevented infringements, but almost almost A third assigned do not act, compile The risk.
Ponmon research shows organizations that now take an alarming average 43 Days to detect cyber attacks even after a patch has been released, on 36 days the previous year. According to the Verizon 2024 Investigation report for DataBrakenThe ability of attackers to use vulnerabilities that have risen by 180% from 2023 to 2024.
Chronic fire fighting makes manually or partially automated patch exaggerated, so that the priority lists of the teams are further pushed.
RElying on manual or partially automated patching systems is considered too time-consuming, which further reduces the patching to the bottom of the list of items of a team. This is consistent with an Ivanti study That turned out that the majority (71%) and security professionals think that patching is too complex, cumbersome and time -consuming.
When it comes to patching, killing complacency
Attackers aggressively use the general vulnerabilities and exposures (CVEs), often ten or more years old.
A certain sign of how effective attackers become the TradeCraft on focusing legacy CVEs is their success with vulnerabilities in some cases, more than 10 years old. A certain sign that attackers find new ways to arm old vulnerabilities is reflected in the surprising status that 76% of the vulnerabilities used by ransomware were reported between 2010 and 2019. The wrong alignment between IT and security team connections, with 27% missing patchesive patching. One of the unexpected benefits of automating patch management is to break the impasse between it and security when it comes to managing the patch workload.
“Usually an enterprise can patch on average 90% of the desktops within two to four weeks, 80% of the Windows servers within six weeks and only 25% of the Oracle databases within six months of the release date of the patch,” writes Gartner In their recent report, “We are not taking a way out of vulnerability exposure. “The report states that” the cold, harsh reality is that no one is threatening actors on a scale in the organization, geography or vertical organization or industry. “
Ring -Implementation: Proactive Defense on scale
Each uncontrolled end point or threat surface invites attackers to exploit it. Companies lose the patch race, which motivates attackers even more.
In the meantime, Patching has become more exponentially challenging for security and IT teams to manually manage. About ten years ago, the ring implementation began to trust Microsoft dominated networks. Since then, ring implementations have spread over on-premise and cloud-based patch and risk management systems. Ring implementation offers a phased, automated strategy, shrinking attackers windows and incubator risks.
Ring -Implementation rolls out patches step by step by carefully controlled phases or “rings:”
- Testing (1%): Core it teams quickly validate the stability of the patch.
- Early Adopter Ring (5-10%): A wider internal group confirms Real-World compatibility.
- Productation (80–90%): Enterprise-wide rollout after stability has been convincingly proven.
Ivanti’s recent release of ring implementation is designed to give security teams more control when patches are implemented, to which systems and how each series of updates are managed. By tackling patching problems early, the goal is to minimize risks and to reduce and eliminate disruptions.
Ring -Implementation crushes mttp, ends reactive patching chaos
Trust in outdated vulnerability assessments to lead patch management strategies, only increases the risk of an infringement as companies to keep track of the growing patch arrears. That is often when patching becomes the endless nightmare of cyber security, where attackers want to benefit from the many inheritance CVs that remain unprotected.
Gartner’s takes in their recent report “ModernZE Windows and application of third parties applications“The point makes it brutally clear and shows how traditional patch methods do not keep pace routinely. In contrast to companies that embrace ring implementation, measurable results get measurable results. Their research believes that ring implementation achieves a” 99% patch success for a maximum of 100,000 PCs, “traditional methods far behind.
During an interview with Venturebeat, Tony Miller, Ivanti’s VP of Enterprise Services emphasized, that “Ivanti neurons for patch management and implementation of ring implementation is an important part of our customer Zero Journey.” He said that the company uses a lot of its own products, which makes fast feedback loop possible and provides developers insight into the pain points of customers.
Miller added: “We have tested internal ring implementation with a limited group, and we are busy rolling out the organization.
Venturebeat also spoke with Jesse Miller, SVP and director of IT at Southstar Bank, about using Ivanti’s Dynamic Vulnerability Risk Rating (VRR), an AI-drive system that continuously calibrated with real-time threat intelligence, Live Exploit activity and current attack data.
Miller clearly explained: “This is an important change for us and the entire industry. A patch based on his CVSS is now like working in a vacuum. If we assess how impactful something can be, you must take everything from current events, your industry, your environment and more in the comparison.
Miller also emphasized the prioritization strategy of his team: “We were able to concentrate on prioritizing zero day and priority plasterers to first come out, as well as everything that is exploited live in the wild. P Prioritization of patch helps us to eliminate our greatest risk so that we can reduce our attack area.”
By combining ring implementation and dynamic VRR technology, Ivanti neurons offers companies structured visual orchestration of incremental patch rollout. This approach reduces a competitive time-time-to-patch (MTTP), accelerating patches of targeted tests through full implementation and reducing the exposure windows that exploit attackers considerably.
Comparison of Ivanti neurons, Microsoft Autopatch, Tanium and Servicenow: important strengths and gaps
When selecting Enterprise patch management solutions, there are apparent differences between leading providers, including Microsoft Autopatch, Tanium, ServiceWow and Ivanti neurons.
Microsoft Autopatch Trust in ring implementation but is limited to Windows environments, including Microsoft 365 applications. Ivanti neurons are expanding this concept by covering a wider spectrum, including Windows, macOS, Linux and various applications of third parties. This makes company -wide patch management possible for organizations with large -scale, diverse infrastructure.
Tanium distinguishes itself for its robust end point visibility and detailed reporting functions, but the infrastructure requirements usually better lies with resource-intensive companies. In the meantime, the power of ServiceNow is in workflow automation and IT integrations of service management. Performing actual patches often requires considerable additional adjustment or integrations from third parties.
Ivanti neurons wants to distinguish by integrating dynamic risk assessments, phased ring implementations and automated workflows within one platform. It goes directly to common enterprise challenges in patch management, including gaps for visibility, operational complexity and uncertainty about vulnerability prioritization with real-time risk assessments and intuitive visual dashboards.
Transform patch management into a strategic advantage
Only patching cannot eliminate the exposure to vulnerability. The analysts of Gartner continue to emphasize the need to integrate compensation control, including end point protection platforms (EPP), multifactor authentication and network segmentation to strengthen security that goes beyond the basic matches.
By combining ring implementation with integrated compensatory checks that are part of a broader framework Zero-Trust ensures security, IT teams allows to reduce exposure windows and better manage cyber risks.
Ivanti’s approach for ring implementation includes real -time risk assessments, automated remediation workflows and built -in threat management, so that patch management is directly tailored to broader strategies for business resilience. The draft decision to make the part of neurons for patch management provides the scale that companies need to improve the real -time visibility of risk management.
Bottom Line: Integration of ring implementation with compensation control and prioritization aids transforms patch management from a reactive burden to a strategic benefit.
