Virima V6.0 will soon be available with an all-new look, enhanced discovery, mapping and vulnerability features and more. Stay tuned!

Managing Risk – Default Passwords

Allow your security team to maintain a real-time directory of IT assets & associated security risks

It’s common knowledge default passwords are a security risk – especially when the same password is built into hardware from a vendor. 

Most companies are diligent about changing default passwords as a part of the device-provisioning process, but failure to take this critical step for even a single device can lead to disastrous consequences.

The US and UK governments recently issued a warning that foreign governments were sponsoring cyberattacks aimed at exploiting the vulnerability default passwords create in network infrastructure. 

This isn’t an isolated occurrence – devices with default passwords are an easy target for hackers since they can then authenticate malicious code and unauthorized devices, thus penetrating your company’s IT environment without your knowledge until it is too late.

Fortunately, this is a vulnerability your IT staff can easily identify with the right tools – closing the door to unauthorized intruders and identifying any rogue devices that may have already penetrated your company’s IT defenses. 

Virima is the right tool and a leader in this kind of protection, combining robust discovery capabilities with a Configuration Management Database (CMDB) solution to aggregate collected data and holds robust visualization tools that interpret findings to create actionable insights for decision-makers. 

Here is an overview of how Virima will help you address the default password risk:

Scan

Scan your infrastructure for default passwords on devices from common suppliers. Predefined scans are available for the most common device suppliers that ship products with default credentials.

Network Devices – Cisco, Juniper, Arista, Dell, and top wireless equipment manufacturers.

Servers – Dell, HP, IBM, and more.

Operating Systems – Windows, Mac, and Linux.

Run the scan once or schedule it as part of your continuous monitoring strategy. Define specific IP ranges to ensure both internal- and external-facing environments are secured. All discovered “open” assets are tagged as “unsecured” in the CMDB for ease of reporting.

Analyze

Convert discovered data into actionable insights to drive improvements. Informed decisions lead to confident actions.

Monitor risk exposure: Total number of assets discovered with default passwords.

Identify vulnerability targets: List of assets currently with default passwords.

Track remediation progress: Assets that have had default passwords for more than 30 days.

Assess provisioning issues: New assets discovered during the last 30 days with default passwords.

Take Action

Customizable alerts and reports provide notifications when a vulnerability is discovered, so your IT staff can act quickly and decisively to mitigate risks to your organization.

  • Send alert emails to administrative staff
  • Create a report of all unsecure devices
  • Integrate scan findings into the CMDB or “Risk Management” dashboards

Hackers know about the opportunities default passwords present to them and the risks they pose to their targets. Don’t fall prey to their malicious intent – take action today. 

Virima will help you understand your company’s risk exposure and provide you with the information you need to take action to keep your operations and data secure. 

Learn more about how to make the IT asset security circle unbreakable and why linking assets, configurations and change management is critical by downloading our whitepaper here.

To get started, contact us today to schedule a demo and explore the possibilities!

Subscribe to Our Newsletter

More to Explore

Table of contentsServiceNow Implementation: A roadmap for successHow Virima can helpServiceNow implementation best practices: In the world of IT, various systems and tools are used to manage different aspects of service delivery, such as incident management, change management, asset management,…

Table of contentsServiceNow CMDB API Set UpAccessing CMDB Data Using ServiceNow API CMDB Understanding the CMDB API Structure: Endpoints and CMDB TableData Extraction and Querying Using ServiceNow CMDB APIHow to Extract Data From CMDB Using REST API Querying Through ServiceNow API CMDB:…

ITSM (IT Service Management) processes mapping documents and visualizes ITSM processes from initial request to delivery in an organization. It helps understand how IT services are delivered and how different processes interact in that organization.  Let’s say a large organization…

Are you tired of struggling to keep track of your organization's IT assets? Do you find yourself constantly searching for information on your company's hardware and software? Look no further than ServiceNow CMDB!  Configuration Management Database (CMDB) is a robust…

Configuration Items (CIs) are the building blocks of your ServiceNow CMDB. At the most basic level, a CI is any object that the system can manage. CIs include applications, devices, users and groups, and so on.  However, ServiceNow's CMDB also…

Effective IT Service Management (ITSM) processes and tools are critical to delivering quality IT services that meet business objectives and satisfy end-users. On the other hand, inefficient, ineffective, or outdated ITSM processes and ITSM tools can lead to a range…

How IT service management (ITSM) processes work? To understand how ITSM works, let’s consider a bustling international airport with several flights across many different terminals taking off and landing. It is an elaborate task to process such an enormous amount…

Service mapping is a key tool for incident and change management. It provides many benefits to the organization, such as enabling better communication between teams and reducing time spent on resolving incidents. Service mapping is a key tool for Incident…

In today's world, the name of the game is efficiency. Organizations are constantly looking for ways to make their operations more efficient and productive. When it comes to IT asset discovery, most businesses have gotten into a habit of using…

A lot of companies are starting to realize the importance of a strong IT asset management (ITAM) program, but many don't get very far in their planning process.  This is because they fail to ask themselves some key questions. It's…