Still Using VPN Like It’s 2020?

The fix was fast. The consequences are slow.

During COVID, IT teams did what they had to do: build remote access, fast. The fastest way? VPN.

Contractors, third parties, and staff all got bundled through the same tunnel with broad access, unmanaged endpoints, and zero segmentation.

Those "temporary" setups are still running. No audits. No cleanup. No policy changes.

Who has this problem? Nearly everyone. Any organization that scaled VPN access quickly in 2020 and hasn't revisited it since. Here's what that looks like today:

What's Actually Happening

Over-provisioned tunnels – VPN connections designed for 50 users now serving 500+ with the same broad network access

Unmanaged endpoints – Contractor laptops that don't meet corporate security standards sitting on your network for days

Shared credentials – Multiple third parties using the same VPN login, eliminating accountability

Flat network access – A compromised device can move laterally across your entire infrastructure

The Real Risk

When a contractor's personal laptop gets compromised, traditional VPN gives that threat actor a direct tunnel into your corporate network. No posture checking. No endpoint validation. No segmentation.

Healthcare organizations are running third-party vendors through the same network paths as patient data. Higher ed institutions give research contractors access to administrative systems. Manufacturing plants let equipment installers connect personal devices to operational networks. 

How to Fix This

Audit your current VPN usage – Document who has access to what, and whether they actually need it

Implement device posture checking – Verify endpoint security before allowing network connections

Segment by function – Contractors installing equipment don't need access to HR systems

Replace shared credentials – Move to identity-based access with individual accountability

Consider ZTNA or SSE solutions – These provide granular access control without traditional VPN risks

The Bottom Line

Your COVID VPN setup worked when everyone needed access immediately. It doesn't work when security matters more than speed.

Organizations delivering secure remote access aren't those with the most VPN licenses. They're the ones who redesigned access based on today's threat landscape, not yesterday's emergency.

Stay connected,
The Packet Pulse Team

I was built for emergencies,
but became your daily solution.
I promise secure connections,
but deliver open highways to everywhere.

What am I? 

Think you know the answer? Reply with your guess. We will reveal the solution in our next issue.

Last week's answer: Campus Wi-Fi infrastructure! As our previous issue revealed, university networks designed for laptops and email now struggle with thousands of bandwidth-hungry devices.