Stop Trying to Harden Your VPN - Replace It

More About This Event

Most organizations know VPNs carry risk. What they underestimate is that the risk isn't a patching problem — it's an architectural one. VPN gateways have to be exposed to the internet to function, which means every unpatched vulnerability is a publicly visible entry point. Attackers don't need to trick anyone. They just need a scanner and a known exploit. In this session, Jeff Simpkins and Brian Butts walk through how VPN-based attacks unfold, from vulnerability disclosure to ransomware deployment, and why organizations that focus on hardening their VPN are fighting the wrong battle. They'll break down real-world breaches that resulted in millions in ransom payments, weeks of operational downtime, and lasting reputational damage, then cover what Zero Trust Network Access does differently: removing the exposed gateway entirely so there's nothing to scan, exploit, or ransom. If your organization still relies on a VPN for remote access, this session will give you a clear view of your exposure — and a practical path forward.