Category: Product

The Santa Clara, California-based company said on Monday it will pay $5.75 per share of Secure Computing’s common stock, representing a 27 percent premium to the San Jose, California, company’s closing price of $4.52 on Friday.

Secure Computing shares rose 23 percent to $5.56 on Nasdaq, while McAfee shares fell 1.7 percent to $36.68 in morning trading on the New York Stock Exchange.

McAfee Chief Executive Dave DeWalt said the purchase will help round out McAfee’s line of products that help protect business networks. The Secure Computing purchase will add 22,000 more customers in that area, he said.

Jefferies & Co. analyst Katherine Egbert said that while Secure Computing has great technology for protecting computer networks from hackers, it has a reputation for being difficult to use. Ives called the McAfee deal “a better choice (for Secure Computer) than continuing to embark down a bumpy road in a tough macro environment.”

http://news.yahoo.com/story///nm/20080922/tc_nm/securecomputing_mcafee_dc

In addition to these improvements, the recent release of the Norman SandBox includes a new emulator, advancing functionality, boosting analysis speed by 10%, and increasing detection by nearly 20%.

SandBox Analyzer Pro also gained important debugging features and functionality.

http://www.net-security.org/secworld.php?id=6542

Patch deployment to virtual and physical systems just got a lot easier with the Sept. 2 release of Shavlik NetChk Protect 6.5. With the ability to deploy patches to offline VMware virtual machines, IT managers can now be confident that VMs that are only used occasionally will spin up with the most current patches, hot fixes and service packs.

NetChk Pro 6.5 is focused on the Microsoft Windows/VMware environment, which is counter to the hypervisor cross-platform I’d like to see in a product that receives an eWEEK Labs Analyst Choice award. Even with this significant lack, IT managers should put Shavlik’s NetChk Pro 6.5 at the very top of any security strategy plan for the labor- and time-saving advantages that come from the ability to automatically and consistently apply updates to offline VMs that are otherwise quite difficult to keep up-to-date.

Both VMware Update and Shavlik NetChk Protect can scan and patch the online and offline ESX Server images.

A Shavlik NetChk Protect license costs a one-time license fee of $75 per server and $35 per workstation, plus 25 percent maintenance per year at quantity 100.

The basic mechanics of working with offline VMs involved placing the machines into a special offline group in the NetChk console. In my tests, the NetChk scheduler worked as described; updates that were scheduled in the future were not executed until the correct date. Because I tested NetChk Protect in a VMware infrastructure environment using ESX Servers managed by VirtualCenter 2.5 (see review here), I browsed to my VirtualCenter system and then to the ESX server and selected my virtual images.

This first version of Shavlik’s offline scanning and patching tool isn’t without some blemishes. They are scanned as part of the traditional scan process that is normally used to manager patching for running systems. In practical terms, this meant that I got “machine not scanned” messages when normally offline images were part of a scan job, which could be construed as errors by IT operations staff. Additional funniness was encountered in the UI, including a message that patch databases were being updated from Shavlik’s secure site even when the product was configured to run in disconnected mode. As well, virtual machines that were online during initial scanning but then were taken offline and subsequently scanned were still assigned the “connected” icon in status monitoring screens, which again caused me some confusion during testing and will likely confuse IT staff. Role-based administration fundamentally means that patch management can be devolved to lower level staff.

http://www.eweek.com/c/a/Virtualization/Patching-Offline-VMware-Machines/?kc=EWKNLSTE09162008STR2

“This release introduces a market breakthrough with flow-based enterprise-wide visibility of IPv6 communications that demonstrates the maturity of Lancope’s flow collection technology,” said Adam Powers, CTO of Lancope. “StealthWatch proactively responds to market drivers, such as IPv4 address space depletion, Windows Vista and U.S. Federal mandates, that increase the demand for IPv6 support in network monitoring solutions.”

“We are very excited about this release of StealthWatch.

“As the national IPv6 test center for Ireland and with over 40 active projects, it is critical for us to gain visibility into IPv6 network” said Jerry Horgan, chief infrastructure officer of the Telecommunications Software & Systems Group (TSSG, http://www.tssg.org) of Waterford Institute of Technology.

Powers added, “StealthWatch delivers enterprise-wide picture of communications and interdependencies between users, applications, and systems to expedite troubleshooting and proactively address network performance issues,” said Adam Powers, CTO of Lancope.

By providing network visibility of IPv6 networks, StealthWatch helps enterprises manage risk, reduce the mean time to resolution (MTTR) and improve the end user experience. StealthWatch’s pervasive monitoring delivers visibility before, during and after IPv6 rollouts to minimize threats, such as neighbor discovery attacks, amplification attacks, application vulnerabilities and tunneling. Enterprises can now use StealthWatch behavioral analysis and response to aid WAN optimization.

Introducing powerful network security capabilities that support multiple, ongoing compliance initiatives, StealthWatch’s newly enhanced bot detection and packet capture search capabilities dramatically reduce network risk by minimizing MTTR.

Other enhancements include deepening integrations with existing network infrastructure and third-party technologies to authenticate users and provide high availability credentials.

http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=104&STORY=/www/story/07-29-2008/0004857757&EDATE=

“This release introduces a market breakthrough with flow-based enterprise-wide visibility of IPv6 communications that demonstrates the maturity of Lancope’s flow collection technology,” said Adam Powers, CTO of Lancope. “StealthWatch proactively responds to market drivers, such as IPv4 address space depletion, Windows Vista and U.S. Federal mandates, that increase the demand for IPv6 support in network monitoring solutions.”

“We are very excited about this release of StealthWatch.

“As the national IPv6 test center for Ireland and with over 40 active projects, it is critical for us to gain visibility into IPv6 network” said Jerry Horgan, chief infrastructure officer of the Telecommunications Software & Systems Group (TSSG, http://www.tssg.org) of Waterford Institute of Technology.

Powers added, “StealthWatch delivers enterprise-wide picture of communications and interdependencies between users, applications, and systems to expedite troubleshooting and proactively address network performance issues,” said Adam Powers, CTO of Lancope.

By providing network visibility of IPv6 networks, StealthWatch helps enterprises manage risk, reduce the mean time to resolution (MTTR) and improve the end user experience. StealthWatch’s pervasive monitoring delivers visibility before, during and after IPv6 rollouts to minimize threats, such as neighbor discovery attacks, amplification attacks, application vulnerabilities and tunneling. Enterprises can now use StealthWatch behavioral analysis and response to aid WAN optimization.

Introducing powerful network security capabilities that support multiple, ongoing compliance initiatives, StealthWatch’s newly enhanced bot detection and packet capture search capabilities dramatically reduce network risk by minimizing MTTR.

Other enhancements include deepening integrations with existing network infrastructure and third-party technologies to authenticate users and provide high availability credentials.

http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=104&STORY=/www/story/07-29-2008/0004857757&EDATE=

Officials at VeriSign’s iDefense Labs reported last month that 15,000 people fell victim to spear phishing attacks by two different groups during the preceding 15 months.

Intrepidus provides templates to help organizations simulate attacks and allows organizations to measure, track and report on employees’ responses to the tests.

PhishMe does not collect sensitive information, Higbee said, explaining that JavaScript on the Web site overrides anything users actually input into fields during tests.

http://www.eweek.com/c/a/Security/Security-Service-Helps-Organizations-Test-Awareness-of-Phishing-Attacks/?kc=rss