Cloud

8/7/2018
09:15 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Qualys Adds Native Integration of Real-Time Network Analysis to Cloud Platform

Passive Network Sensor will be available in private beta later this month.

LAS VEGAS – Black Hat USA 2018, Booth #204 – August 6, 2018 – Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud-based security and compliance solutions, today announced that it has significantly expanded the power of its Cloud Platform by introducing Passive Network Sensor (PNS), a new member of the Qualys sensor family that natively integrates network analysis functions into the Qualys Cloud Platform, delivering customers complete IT visibility at scale, while drastically reducing cost and complexity.

The Qualys Cloud Platform, with its active scanning, always-on agents, container and cloud sensors, provides global enterprises with unprecedented 2-second visibility of their hybrid IT infrastructure covering on-premises assets, multi-cloud environments, containers and traveling workforces. The highly scalable platform performs over 3 billion device assessments annually, analyzing a trillion change events with its Kafka clusters that process billions of messages daily, and indexing over 250 billion security data points in its Elasticsearch clusters.

Such an unprecedented near real-time processing of data coupled with millisecond search responses of the Qualys Cloud Platform indexing clusters give customers and Managed Security Providers (MSSP) instant, continuous visibility of all their IT global assets with a continuous view of their security and compliance posture in a single-pane-of-glass view, via dynamic and customizable dashboards.

By getting real-time access to network analysis data, multiple additional capabilities such as global IT asset discovery and inventory with two-way CMDB synchronization, detection of compromised assets and Network Access Control (NAC) can now be delivered natively from the Qualys Cloud Platform with high accuracy and automation.

“While Digital transformation is now essential for businesses to remain competitive, building security in is the only viable approach and the days of bolting security on are over,” said Philippe Courtot, chairman and CEO, Qualys, Inc. “Natively integrating Network Analysis with our Cloud Platform brings it to its next level as it provides customers unprecedented visibility and immediacy across their entire hybrid IT environments. With this new capability, we are now well on our way to providing CIOs with a continuous and updated view of their global IT assets with two-way CMDB synchronization. Such capability is the cornerstone of security, as without visibility, there is no security.”

Furthermore, with this native integration, the Qualys Cloud Platform is uniquely suited to address the number of unmanaged connected devices, like Internet of Things (IoT) and Operational Technology (OT) devices and the exploding new security exposures they now bring. Having the continuous visibility of these devices is critical for IT and security teams to monitor, track, assess and effectively respond to threats.

Qualys Passive Network Sensor (PNS)

This first release of PNS adds a powerful set of asset discovery and inventory capabilities providing tracking and a continuous view into all IT assets connected to the network, non-intrusively and in real-time. It monitors asset activity and illuminates any anomaly, enabling security teams to more effectively contain threats and remediate vulnerabilities. This ability to act with immediacy and at scale delivers these teams higher confidence in the metrics guiding their global security and compliance programs.

PNS will enable organizations to:

● Eliminate blind spots: The Qualys Cloud Platform aggregates asset telemetry from Passive Network Sensors, network scanners and always-on cloud agents to provide a comprehensive, detailed and multidimensional inventory of all IT assets across hybrid infrastructures, including unmanaged devices such as BYOD and rogue IT. PNS also helps discover and profile assets that for different reasons can’t be actively scanned nor monitored with cloud agents, such as industrial equipment, IoT and medical devices. Expected beta available in Q3 2018.

● Identify suspicious traffic: PNS provides deep packet inspection to continuously analyze and detect suspicious traffic. The Qualys Cloud Platform then correlates these network anomalies to other indications of compromise. Expected beta available in Q1 2019.

● Secure and control network access: Native integration with network access control functionality, resulting from Qualys’ acquisition of Nevis Networks, enables customers to respond to threats automatically by controlling access to critical resources. Network access control, informed by PNS real-time detection, autonomously protects the network by quarantining non-compliant devices based on established policies and security posture. Expected beta available in Q1 2019.

Qualys Sensor Family

Passive Network Sensor is part of the Qualys family of sensors and third-party cloud connectors that provide customers comprehensive and multidimensional visibility across hybrid IT environments. They provide a powerful combination of active and passive detection to collect complete asset telemetry. These sensors are remotely deployable, centrally managed and self-updating, always-on, and give customers continuous 2-second visibility of all IT assets.

Availability

Passive Network Sensor will be available in private beta later this month. This first phase delivers capabilities focused on asset discovery and profiling. General availability is planned for early 2019.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
6 Security Trends for 2018/2019
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-10839
PUBLISHED: 2018-10-16
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
CVE-2018-13399
PUBLISHED: 2018-10-16
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
CVE-2018-18381
PUBLISHED: 2018-10-16
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
CVE-2018-18382
PUBLISHED: 2018-10-16
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
CVE-2018-18374
PUBLISHED: 2018-10-16
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.