Unless you've been tinkering with the rovers on Mars and are just now returning to this planet, you've likely had your fill of the stories of the latest worm. And unless you're running SCO's Web site, you probably have had little more than inconvenience as a result of that fast spreading worm.Sure, it slowed down the Internet and generated prodigious quantities of e-mail traffic, but if you had already protected your enterprise properly, the biggest impact you felt was the constant stream of news stories in the mainstream media. We don't want to inflict any more of that on you, so I'm not going to write about the recent worm. It's already history, and you've got the satisfaction of knowing that your enterprise got through the epidemic just fine. That's important, because it's easy to focus on the issue of the moment, and lose sight of the fact that in spite of the worm, other security threats are more important. . . .
Unless you've been tinkering with the rovers on Mars and are just now returning to this planet, you've likely had your fill of the stories of the latest worm. And unless you're running SCO's Web site, you probably have had little more than inconvenience as a result of that fast spreading worm.

Sure, it slowed down the Internet and generated prodigious quantities of e-mail traffic, but if you had already protected your enterprise properly, the biggest impact you felt was the constant stream of news stories in the mainstream media.

We don't want to inflict any more of that on you, so I'm not going to write about the recent worm. It's already history, and you've got the satisfaction of knowing that your enterprise got through the epidemic just fine.

That's important, because it's easy to focus on the issue of the moment, and lose sight of the fact that in spite of the worm, other security threats are more important.

For example, the Mydoom worm didn't have any effect on your need to keep your internal network secure from breaches within your organization as well as from without. It didn't affect the need to make sure your physical security is up to snuff. And it didn't diminish the need to make sure your anti-virus practices remained in force, since all those other worms and viruses are still out there, waiting to break into your network.

And of course, the worm had no effect on all of the other myriad duties you have on your plate. It just added a new distraction -- and a new temporary duty -- while you're making sure your management knows that yes, you're already prepared for the threats that you actually anticipated and prepared for months ago. That's perhaps the biggest downside of an attack like the one we just had -- that people who normally pay no attention to your network security (and most likely resent it) are suddenly experts for a day who want to look over your shoulder while you do your real job.

After all, it's your real job that kept your company secure during this wormy week. Rather than dropping everything and clamoring about the worm-of-the-moment, you've taken a risk-based approach to your enterprise network. You know what you need to do to prevent nearly anything from bringing your network down, and you've already done it.

The link for this article located at infoworld.com is no longer available.