You may remember that “Dirty Dancing” moment when Johnny Castle (Patrick Swayze) approached Baby (Jennifer Grey) at the end-of-the-season talent show and said the famous line, “Nobody puts Baby in the corner.”
The same holds true for mainframes. Nobody should put a mainframe in the corner, yet in many organizations, it happens. In many companies, mainframes have their own security controls and processes and sit in secured data centers, isolated from other assets. This is because mainframes are known as reliable, “set-up-and-forget” technologies. Also, they are so crucial to fundamental business processes that performing any kind of security test, which could potentially bring them down, would be too risky.
Mainframes, however, like most applications and systems, are hackable. Security vulnerabilities, such as misconfigurations, overly permissive access rights and lack of encryption, can expose mainframes and the important data on them to attackers.
Read X-Force Red’s whitepaper Mainframes: the somewhat unlocked candy shop to learn more about the typical vulnerabilities our hackers find exposing mainframes and how companies can build mainframe security processes into their everyday security programs.
Explore more X-Force Red Penetration Testing Services.