Vulnerabilities / Threats
2/25/2014
05:16 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Trend Micro Delivers Comprehensive Defense With HP Against Targeted Attacks

Trend Micro Deep Discovery and HP TippingPoint will be combined

DALLAS, Feb. 24, 2014 /PRNewswire/ -- As high-profile targeted attacks expand and evolve, enterprises must guard against complex, often invisible threats. Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global security software leader, today announced its collaboration with HP to combat advanced threats. The combination of Trend Micro&trade Deep Discovery, a critical capability of Trend Micro's Smart Protection Platform that goes beyond the limitations of standard defenses to detect and analyze attacks in real-time, with HP TippingPoint, a market-leading solution that actively prevents network intrusion and contains threats – will help enterprises achieve a new level of defense against advanced threats. To further prevent attacks, Deep Discovery reports incidents to HP ArcSight, HP's market-leading security information and event management (SIEM) solution, for in-depth correlation and analysis, and will also share threat data with HP's Threat Central platform.

"We have heard loud and clear from CIOs that targeted attacks and advanced threats are a primary concern, and defending against them must be part of a broader strategy of detection and prevention that integrates existing network defenses," said Partha Panda, vice president of global channels and alliances, Trend Micro. "Working with one of the most respected names in technology and security is truly invigorating and validates Trend Micro's efforts to develop comprehensive solutions that contain targeted attacks before they can damage networks and compromise sensitive data while allowing customers to take full advantage of their existing investments on security products and technologies."

Trend Micro&trade Deep Discovery proactively detects targeted attacks and advanced threats, identifies threat characteristics and communicates actionable intelligence to HP TippingPoint for immediate blocking. Deep Discovery also reports incidents to HP ArcSight to allow deeper investigation and data sharing with HP's Threat Central platform.

"Cyber criminals are going well beyond traditional malware and conventional attack vectors, and enterprises need protection that keeps pace and adapts faster than the adversaries," said Rob Greer, vice president and general manager, TippingPoint, Enterprise Security Products, HP. "Collaborating with pioneering security software companies like Trend Micro supports our mission to deliver the most comprehensive solutions on the market to block and remediate advanced threats."

Deep Discovery's custom sandboxing technology offers HP ArcSight and HP TippingPoint customers tailored detection against specific environments to pinpoint evasive threats in real-time. Enterprises can also leverage the global threat intelligence of Trend Micro's Smart Protection Network&trade and HP's Threat Central platform in order to securely share threat intelligence data.

Unlike competitors' piecemeal technology, this offering is the first of its kind, uniting network intrusion prevention, next generation firewall, sandboxing and SIEM elements to provide complete defense against targeted attacks and advanced threats. Customers will have greater peace of mind with improved protection from sophisticated attacks, now and in the future. For easy management, network intrusion prevention can be activated from a single console to keep desktops, laptops and mobile devices safe – which is ideal as BYOD and consumerization continue to proliferate.

Demonstrations of the Trend Micro, HP solution will be conducted during the 2014 RSA Conference in San Francisco, Feb. 24-28 at booth No. 2601, Moscone North Hall. For more information about HP TippingPoint Advanced Threat API, Anthony Woolf, senior director, product management, HP, will be presenting with Trend Micro at 6:45 p.m. on Monday, Feb. 24 at the Trend Micro booth, No. 2601.

About Trend Micro

Trend Micro Incorporated a global leader in security software, rated number one in server security (IDC, 2013), strives to make the world safe for exchanging digital information. Built on 25 years of experience, our solutions for consumers, businesses and governments provide layered data security to protect information on mobile devices, endpoints, gateways, servers and the cloud. Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem. All of our solutions are powered by cloud-based global threat intelligence, the Trend Micro&trade Smart Protection Network&trade infrastructure, and are supported by over 1,200 threat experts around the globe. For more information, visit TrendMicro.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3341
Published: 2014-08-19
The SNMP module in Cisco NX-OS 7.0(3)N1(1) and earlier on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote attackers to enumerate VLANs via a series of requests, aka Bug ID CSCup85616.

CVE-2014-3464
Published: 2014-08-19
The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) 6.2.0 and 6.3.0, does not properly enforce the method level restrictions for outbound messages, which allows remote authenticated users to access otherwise restricted JAX-WS handlers ...

CVE-2014-3472
Published: 2014-08-19
The isCallerInRole function in SimpleSecurityManager in JBoss Application Server (AS) 7, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.3.0, does not properly check caller roles, which allows remote authenticated users to bypass access restrictions via unspecified vectors.

CVE-2014-3490
Published: 2014-08-19
RESTEasy 2.3.1 before 2.3.8.SP2 and 3.x before 3.0.9, as used in Red Hat JBoss Enterprise Application Platform (EAP) 6.3.0, does not disable external entities when the resteasy.document.expand.entity.references parameter is set to false, which allows remote attackers to read arbitrary files and have...

CVE-2014-3504
Published: 2014-08-19
The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Dark Reading continuing coverage of the Black Hat 2014 conference brings interviews and commentary to Dark Reading listeners.