The solution was to use an Ansible Playbook to apply the patches automatically to each server. With more than 500 servers using Red Hat Enterprise Linux under their charge, the OIT knew they had a difficult road ahead if they had to install the patch manually, which would have put the university’s infrastructure in danger. Ansible automation accelerates security risk remediation Completed patch updates in hours not weeksĬreating the patch for this potential breach was not difficult, but the hard part was the application of the patch. “Since we’re central IT, handling much of the administrative systems and doing a lot of sensitive computing on our side, we took this problem pretty seriously,” said Siegelman. A breach like this could have expanded across the university. The vulnerability stretched over several university departments and business units. When they found the sudo threat, however, it was their turn to take the point against a dangerous vulnerability.Īnyone who got access to the system could easily elevate their credentials and gain administrative privileges, which could lead to a potentially devastating security breach if it were exploited. These new capabilities are designed to create a more consistent automation experience and help teams like Emory’s solve big challenges. The platform brings together Red Hat Ansible Engine, Red Hat Ansible Tower and Red Hat Ansible Network Automation, along with new capabilities including Certified Content Collections, Automation Hub and Red Hat Insights for Red Hat Ansible Automation Platform in a single subscription. They rely on Red Hat Ansible Automation Platform as a single IT automation solution that helps Emory's various IT teams collaborate. Siegelman and his team are somewhat used to “doing the invisible work,” keeping the backend systems functioning to allow for the front-facing apps and programs to shine and operate reliably. This particular one needed us to drop everything and get it patched.” Identifying vulnerabilities and organizing a response “Our policy is that those that are more serious need to be remediated within 30 days, others that aren’t as critical can be fixed in 60 to 90 days. “Vulnerabilities are graded by our security team so that we know how quickly it has to be remediated,” said Steve Siegelman, Manager of Systems Engineering at Emory’s OIT. The school’s Office of Information Technology (OIT) is tasked with maintaining systems for students, staff, faculty, researchers and other stakeholders to ensure that networks and data are protected from unauthorized access and potential security breach. This is why there was such an alarm in January 2021 when the Red Hat team alerted OIT to a vulnerability within Emory’s Red Hat Enterprise Linux systems affecting the operating system’s sudo utility. Educational institutions are also a primary target for ransomware and other cyber extortion techniques. Once there’s an entry through a vulnerability, the concern is the attacker would surreptitiously move throughout the network taking intellectual property and slipping away undetected. With such a high profile, Emory is a natural target for cyberattackers looking to exploit and gain access to confidential information through its digital footprint. Protecting research and education from sudo vulnerabilityĮmory University is one of the most prestigious colleges in the U.S., with 15,000 students at its metro Atlanta campuses, research ties with institutions around the globe and the operator of Georgia’s largest healthcare system. Improved agility in face of unique COVID-19 challenges.Freed valuable resources to focus on higher-value projects.Completed patch updates in hours, not weeks.in the Emory University Hospital Admissions Department, room A-211. The cards are $40 and can be purchased by cash, check or credit card (no refunds or exchanges), Monday–Friday 9 a.m.–5 p.m. The cards are good for five consecutive days and provide unlimited in/out privileges (self-parking only, not valet). If you need to park at Emory University Hospital for several consecutive days, you might be interested in our long-term parking cards. Valet charges cover both parking and valet service. Valet parking is available on the south side of the hospital 24 hours, 7 days a week. Parking decks are located just off Clifton Road, directly behind Emory Clinic Building B. Drive 4-5 miles on Clairmont Road to North Decatur Road. After exiting, follow the signs to Decatur. Take I/85 Southbound: Exit Clairmont Road, exit #91. Stay on I-85 to Clairmont Road, exit #91. Take I-75/85 Northbound: I-75 joins I-85 in Atlanta.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |