Qualys Expands To Detect Unauthorized Devices In Hybrid Environments

Qualys Inc., among leading providers of innovative cloud-based IT, security, and compliance solutions, has unveiled an expansion of its Qualys CyberSecurity Asset Management tool to enable real-time identification of unmanaged and untrusted devices. This enhancement utilizes the Qualys Cloud Agent for continuous network monitoring, offering a passive discovery method that complements existing scanning, agent-based, and API-driven approaches. This comprehensive approach enables organizations to create a thorough asset inventory, assess the TruRisk of each asset, and mitigate risks based on business priorities.

Research indicates that 69% of organizations have suffered cyberattacks stemming from exploits targeting unknown or unmanaged assets such as software, cloud services, user accounts, and Internet of Things (IoT) devices. Maintaining security in the face of evolving threats demands constant vigilance. Qualys addresses this challenge by enhancing its Cloud Agent to provide passive sensing capabilities, empowering security teams to counter internal network threats without disrupting operations.

This advancement solidifies Qualys CyberSecurity Asset Management’s position as a leader in integrated internal and external attack surface management. By leveraging Qualys Cloud Agents to monitor network traffic, customers have identified an average of 34% more unmanaged and untrusted assets, seamlessly integrating them into vulnerability management programs with contextual insights and risk assessments.

Key benefits of Qualys CyberSecurity Asset Management with passive sensing include:

• Complete Internal Attack Surface Coverage: Enables detection of IoT devices, unauthorized cloud instances, and previously overlooked network devices, facilitating automated vulnerability management and compliance scans within a unified platform.
• Foundation for Zero Trust Security Architecture: Proactively identifies unauthenticated, unsecured, or otherwise untrusted devices in real-time, enhancing cyber risk assessment without additional overhead.
• Improved CMDB Accuracy and Coverage: Automatically updates the configuration management database (CMDB) with discovered assets, providing comprehensive visibility for asset lifecycle management and risk remediation.

Sumedh Thakar, President and CEO of Qualys, emphasized the significance of passive discovery integrated into the expansive network of over 100 million deployed Cloud Agents. This expansion of attack surface coverage requires no additional overhead, cost, or resources, empowering organizations to bolster their risk management efforts and defend against shadow IT. This advancement marks a significant step toward implementing a Zero Trust Security Architecture.

The Qualys Cloud Agent Passive Sensor is now available as part of the Qualys CyberSecurity Asset Management app.