Video On Demand - Configuration Drift and the Risk of Misconfiguration

Misconfigurations can undermine security even on fully patched systems. In this webinar, CalCom’s Co-Founder and Director of Business Development Roy Ludmir explains what configuration vulnerabilities are, how configuration drift happens, and why it matters for both cyber risk and compliance.

Questions? Want to talk about server hardening for your organization? Contact us at info@calcomsoftware.com

What You’ll Learn
The difference between software vulnerabilities (CVEs) and configuration vulnerabilities.
Why configuration vulnerabilities can’t be fixed with a patch and require secure configuration changes or removal/disablement.
What configuration drift is: when a setting moves from secure to insecure.
The three common causes of drift: privileged user changes, patch conflicts, and platform upgrades/default changes.
Why drift is urgent for security: it can be exploited in minutes, and it can also create audit and compliance exposure over time.

00:35 - Agenda + what the session covers

01:22 - Configuration vulnerabilities vs CVEs (why patches aren’t enough)

07:45 - What configuration drift is + the 3 common causes

10:24 - Where baselines come from + mitigation + monitoring

14:58 - Why drift matters: security minutes vs compliance months

18:16 - Attacker view: why misconfig is easy to exploit (and hard to detect)

22:33 - Example: Linux/sysctl networking setting risk

24:40 - Example: Windows/RDP clipboard redirection risk

28:01 - Compliance: PCI DSS + proposed HIPAA baseline language

33:00 - Implementation + automation + wrap-up