Rapid7 has released a report that FTSE 250 is particularly vulnerable to attacks by hackers as they deal with information of their systems. Specifically, according to the report, there are 35 different points in software systems of companies, which could be used by hackers.
The security company scanned the systems and devices used by companies belonging to the FTSE 250 + Index. These 35 different points are neither good nor bad. However, they can help them hackers gain ground and attack.
Every exposed server or device is a hazard, so it must be properly configured, corrected, and updated. This will reduce the chances of attack.
According to the report, "FTSE 250 + organizations, in all areas, have serious problems with updating their systems. A very large number of large companies in the UK use old and often unsupported versions of various web servers.
Rapid7 has stated that companies and organizations should have as their priority the updating of their software and systems in general.
The use of older software versions on the Internet may be very dangerous to the company's security. Many times, updates that correct a large number of vulnerabilities are available, but companies do not use them. This was also the case with WannaCry. The vulnerability that took advantage of it ransomware, could be addressed. The update was months before the attack, but many companies had not taken care to update their software on time.
A few days ago, NSA warned Windows users to update their systems to the latest version, as there is a vulnerability, known as BlueKeep, which affects older versions of Windows and could be used by hackers to spread malware.