Cyber Security Institute
Product
Monday, February 22, 2010
Next generation firewall software introduced by Palo Alto Networks
Palo Alto Networks is to launch next generation firewall software to enable finer-grained control over business and Web 2.0 applications.
Thursday, January 14, 2010
Product Watch: NitroSecurity Integrates Log Management With SIEM
SIEM vendor NitroSecurity next week will roll out a new log management product and management software that brings the two traditionally separate worlds under one roof. The new NitroView ESM Version 8.4 and new Enterprise Log Manager (ELM) tools are fully integrated and provide a single view of all SIEM and log management functions.
Thursday, January 07, 2010
Log Management Appliance facilitates regulatory compliance [and chain of custody]
netForensics, Inc., a leader in the Information Security Management market, today announced data security enhancements to nFX Cinxi One. By incorporating the latest digital signing and encryption technologies into the industry’s most comprehensive log management solution, nFX Cinxi One creates a secure chain of custody to ensure the integrity of critical enterprise log information needed to demonstrate regulatory compliance.
Thursday, December 17, 2009
Sun Unveils Cloud Computing Security Tools
As part of its overall strategy to help customers and partners build public and private clouds that are open and interoperable, Sun Microsystems on Thursdsay unveiled innovative open source cloud security capabilities and announced support for the latest Security Guidance from the Cloud Security Alliance. Sun is steadfast in its commitment to providing best practices and technologies that help users safeguard their critical data in the enterprise and in the cloud. The introduction of Sun’s Cloud Security architectural building blocks will help deliver enterprise-grade cloud services that are highly secure, available and easily manageable when used in public, private or hybrid cloud environments.
Wednesday, December 16, 2009
LogLogic releases version 4.9 of its log management software
Version 4.9 contains more than 40 new features, including built-in support for direct connectivity to Fibre Channel SAN environments without additional gear or appliances and new device management capabilities that provide more system operation controls.
Monday, December 14, 2009
Breach Security releases WebDefend Global Event Manager
Breach Security has released WebDefend Global Event Manager that works in conjunction with the new web application firewall service offered by Akamai Technologies. When deployed with Akamai’s web application firewall service, the WebDefend Global Event Manager defends against global application security threats by enabling customers to make distributed cloud and data centre defense-in-depth architectures operational, the company said.
Wednesday, December 02, 2009
LogLogic Announces U.S. Patent for Storage of Raw Log Data
The patented system collects logs from network devices and analyzes and stores the data contained in those logs. The patent also covers LogLogic’s management console, which allows users to search and run reports on log data. By acknowledging that LogLogic’s system is unique, the patent recognizes LogLogic’s seminal innovation in the industry and its pioneering first step in advancing log management technology.
Tuesday, September 01, 2009
LogLogic Simplifies Security Change Management
LogLogic’, the log and security management leader, today announced general availability of the latest release of its LogLogic Security Change Manager appliance that integrates easily with SEM solutions from LogLogic or other vendors as well as third-party CRM and ticketing solutions.
Thursday, May 07, 2009
Startup Takes New Spin On Online Fraud Detection
A security startup is preparing to emerge from stealth mode with a new technology that detects in real-time whether an online user or member of a social network is legitimate—and not a bot, automated tool, or criminal performing financial or other online fraud. Pramana, which will officially launch in July, has developed what it calls HumanPresent, a technology spun off from research at Georgia Tech that catches online fraud in action, real-time, using a dynamic method of identifying human behavior anomalies while at the same time preventing the fraudsters from detecting that they’re being watched.
Thursday, March 12, 2009
Securely booting from strangest of places
Could FOSE 2009 be remembered as the year of the bootable portable drive?
On the show floor, a number of vendors are displaying either USB drives, enclosed hard drives or other portable media from which an entire operating system and associated application can booted.
Wednesday, February 18, 2009
SenSage Named Leader in Japanese Market for SIEM and Log Management
Enterprise software leader SenSage, Inc. has earned the top spot in market share for security log management software in Japan, according to a report by Japanese market analysis firm ITR Corporation. The study of nearly 30 vendors that compete in the security log management market in Japan shows SenSage with a dominant market share of 30.4 percent, nearly twice that of the nearest competitor. ITR cited SenSage’s network of distribution and reseller partners and overall product quality as key differentiators in the marketplace.
Thursday, February 05, 2009
Tenable Releases Database Auditing Capability
Tenable Network Security, Inc., the leader in Unified Security Monitoring and creator of the popular and award-winning Nessus(R) vulnerability scanner, today announces a new capability for Nessus users to audit the configuration of many different SQL databases. These checks are only available to Security Center users and ProfessionalFeed subscribers.
Sunbelt Pioneers New Anti-Virus Technology
US company Sunbelt Software is set to become one of the first anti-virus vendors to embrace a promising but as yet little-used new technique for malware detection known as ‘file emulation’. Released this week to UK users after a US launch some time ago, the company’s Vipre Enterprise anti-malware client is on the face of it just another program jostling for attention with the admin-friendly claim that it can protect PCs from malware without slaughtering performance. Known in company jargon as ‘MX-Virtualization’ (MX-V), Vipre effectively creates an emulated Windows PC in a sandbagged area of memory, mimicking API functions such as the Windows registry, file system, and communications interfaces to see what a file is trying to do.
Saturday, January 31, 2009
Archer Technologies Acquires Brabeion Software
Archer Technologies, a provider of enterprise governance, risk and compliance (GRC) solutions, today announced that it has reached a definitive agreement to acquire Brabeion Software Corporation, a market-proven provider of IT-GRC management software. The acquisition solidifies Archer’s acknowledged IT-GRC industry leadership and will strengthen the company’s ability to deliver outstanding enterprise GRC solutions. With the acquisition, Archer will leverage Brabeion’s industry-leading content library to further enhance its best-in-class Policy Management solution.
Wednesday, January 14, 2009
Symantec virtualization tech turns 1 PC into 3
Symantec is turning to virtualization and cloud computing to protect Web surfers and let them access Web-based applications from one site. The company demonstrated the technologies, along with another one designed to block malware from getting into corporate networks, to reporters and briefed them on its research and development strategy at an event it dubbed “Innovation Showcase” on Wednesday. Virtualization technology that essentially creates different machines on the same computer offers a good platform for securing PCs by providing different protected environments, said Joe Pasqua, vice president of research at Symantec Research Labs. Taking advantage of this trend, the company has developed Virtualization-based endpoint security, VIBES, technology that works with machines already running virtualization hardware and software to isolate three different areas on a computer for doing activities that require different levels of security.
Tuesday, November 18, 2008
Secure OS Gets Highest NSA Rating, Goes Commercial
Unlike existing commercial OSes, Integrity OS is designed and certified to defend against sophisticated attacks. After receiving the highest security rating by a National Security Agency (NSA)-run certification program, Green Hills Software has announced that its Integrity-178B operating system was certified as EAL6+ and that the company had spun off a subsidiary to market the OS to the private sector as well as government agencies.
Secure OS Gets Highest NSA Rating, Goes Commercial
Unlike existing commercial OSes, Integrity OS is designed and certified to defend against sophisticated attacks. After receiving the highest security rating by a National Security Agency (NSA)-run certification program, Green Hills Software has announced that its Integrity-178B operating system was certified as EAL6+ and that the company had spun off a subsidiary to market the OS to the private sector as well as government agencies.
Saturday, November 08, 2008
2 Log Managers Show State Of The Art
There has been explosive growth in the log management market for a couple of reasons. One is the overwhelming complexity of deciphering log data from hundreds or thousands of nodes. Information Week took a close look at two log management appliances, LogLogic’s LX2010 and LogRhythm 4.0, to see how they stacked up.
Friday, October 24, 2008
Symantec to identify safe software by ‘reputation’
Symantec will soon introduce a “reputation-based” software-rating technology that it has claimed can accurately differentiate malicious malware from legitimate programs. “Reputation-based security is the latest and greatest technology in malware detection,” said Basant Rajan, chief technology officer of the IT security vendor’s India office. Essentially, this approach involves looking at where a program can be found across the database of Symantec users, categorizing the reputation of those machines and coming to a judgment on whether the application poses any security risks.
Tuesday, October 14, 2008
Altor Networks Introduces First Purpose-Built Virtual Firewall to Secure Virtualized Data Centers
Altor Networks today announced the availability of the Altor VF, the first purpose-built virtual firewall, and announced its certified integration with products from ArcSight, Juniper Networks, Mazu Networks and VMware. Enterprises are eager to extend virtualization into their data centers to realize the cost savings, operational flexibility, and increased availability they achieved with virtualization in the development and test environments. At the same time, virtualized networks create unique security challenges for production environments. Altor Networks’ new Altor VF addresses those challenges and enables the virtualization of data centers without compromising security.
Fidelis Security Systems Releases Next Generation of Extrusion Enhanced Reporting & Alert Management
Fidelis Security Systems, the leader in next-generation data leakage prevention (DLP) solutions, today released the latest version of the award-winning Fidelis Extrusion Prevention System(R), Fidelis XPS(TM). The integration of Fidelis XPS with the ArcSight Security Information and Event Management (SIEM) Platform via Common Event Format (CEF), coupled with enhancements to the Fidelis XPS reporting and alert management functions, gives customers powerful new tools to track and analyze information security policy violations and to correlate that visibility into related events or trends.
Wednesday, October 08, 2008
Symantec to buy e-mail security vendor MessageLabs
Symantec Corp. will pay $695 million for MessageLabs Group Ltd., a security vendor that offers a hosted spam and Web traffic filtering service. The filtering is performed within the company’s 14 data centers located around the world, a type of computing known as “software as a service” or cloud computing.
Monday, September 29, 2008
Infoblox Unveils “DNS Firewall” to Address DNS Vulnerability Concerns
Infoblox has enhanced its full line of core network services (CNS) appliances that provides DNS security capabilities such as alerting, reporting, and attack mitigation. These capabilities and automated software update capabilities of Infoblox grid technology can help enterprises thwart current and future DNS vulnerability exploits.
Monday, September 22, 2008
McAfee to pay $465 million for Secure Computing
Computer security company McAfee Inc (MFE.N) plans to buy Secure Computing Corp (SCUR.O) for $465 million, adding specialized equipment that keeps hackers from breaking into computer networks. The move, McAfee’s biggest acquisition to date, helps the No. 2 computer security company expand the bundle of products it can sell to businesses.
Friday, September 19, 2008
SandBox Analyzer for Linux and addition of file-format exploit support
Norman’s SandBox technology continues to lead the fight against malware, helping security experts more quickly and accurately mitigate security threats. Norman today released the SandBox Analyzer for Linux to the product line giving customers an important option to the popular Windows version of the SandBox Analyzer.
Sunday, September 14, 2008
Patching Offline VMware Machines
Though NetChk Protect 6.5 is focused only on Microsoft Windows and VMware environments, Shavlik’s products offers IT administrators a way to save time and effort updating offline virtual machines.
Tuesday, July 29, 2008
Lancope Ships StealthWatch System 5.8 with Enhanced Network Behavior Analysis
Lancope(R), Inc., the provider of the StealthWatch(TM) System, the most widely used network behavior analysis (NBA) and response solution, today announced the general availability of StealthWatch System 5.8. he system-wide upgrade includes powerful new features that further utilize flow data, including Cisco IOS NetFlow(TM) or sFlow(R), to significantly extend the scalability and value of behavior-based anomaly detection and network performance monitoring for enterprise organizations. Key benefits of this release are IPv6 support and visibility, application awareness, risk management and network performance management that support numerous IT initiatives, including WAN optimization, PCI compliance (http://www.lancope.com/solutions/compliance/pci.aspx), MPLS migrations (http://www.lancope.com/solutions/networkoperations/mpls.aspx), IPv6 rollouts and data leakage prevention.
Lancope Ships StealthWatch System 5.8 with Enhanced Network Behavior Analysis
Lancope(R), Inc., the provider of the StealthWatch(TM) System, the most widely used network behavior analysis (NBA) and response solution, today announced the general availability of StealthWatch System 5.8. he system-wide upgrade includes powerful new features that further utilize flow data, including Cisco IOS NetFlow(TM) or sFlow(R), to significantly extend the scalability and value of behavior-based anomaly detection and network performance monitoring for enterprise organizations. Key benefits of this release are IPv6 support and visibility, application awareness, risk management and network performance management that support numerous IT initiatives, including WAN optimization, PCI compliance (http://www.lancope.com/solutions/compliance/pci.aspx), MPLS migrations (http://www.lancope.com/solutions/networkoperations/mpls.aspx), IPv6 rollouts and data leakage prevention.
Tuesday, July 22, 2008
Security Service Tests Staff Vigilance Against Phishing Attacks
PhishMe, a new security SAAS offering from the Intrepidus Group, enables companies to launch mock phishing attacks against their own employees in the name of improving e-mail security. “We developed a Web-based portal which is PhishMe.com, which allows our clients to drive the creation and execution of mock phishing exercises,” said Intrepidus CEO Rohyt Belani. “We provided them all the tools ... so in under 30 minutes they can actually set up a mock phishing attack [that] closely mimics a real phishing attack that a spear phisher would execute against the employees.” Studies have shown spear phishing, which involves targeted attacks against a domain or organization, has picked up in the past several months.
Friday, June 20, 2008
Desktop Virtualization Gets Military-Grade Security
Tresys Technology has released a desktop virtualization platform with a difference - it is designed from the ground up for organizations needing tight security, including military bodies. Tresys, which has a track record of providing military systems, said its VM Fortress can cut costs for organizations which would like to implement the consolidation programs offered by desktop virtualization, but haven’t taken the leap because of security concerns.