Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

6/25/2009
10:39 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Sourcefire Announces Virtual Appliances

Sourcefire 3D System 4.9, with the new Sourcefire Virtual 3D Sensor and Sourcefire Virtual Defense Center, enable users to deploy the company security solutions within their virtual environments

COLUMBIA, Md., June 25, 2009 " Open source innovator and Snort' creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in Cybersecurity, today announced the Sourcefire 3D System 4.9, with the new Sourcefire Virtual 3D Sensor and Sourcefire Virtual Defense Center. These new virtual appliances will enable users to deploy the company's leading security solutions within their virtual environments, increasing protection for both physical and virtual assets. Available during the second half of 2009, the Sourcefire 3D' System 4.9 also features the industry's first Policy Layering capabilities that deliver increased customization for large or multi-organizational networks, including cloud or virtual implementations.

With the new Virtual 3D Sensor and Virtual Defense Center, Sourcefire is enabling customers to:

  • Secure virtualization " Protecting virtual infrastructure from internal and external attacks with virtual security appliances
  • Virtualize security " Leveraging cost- and energy-saving benefits of virtual security appliances to improve security efficiency

    As part of the Sourcefire 3D System 4.9, the new virtual appliances allow organizations to inspect traffic between virtual machines, while also making it easier to deploy and manage sensors at remote sites where resources may be limited. They also enable Managed Security Service Providers (MSSPs) and cloud computing companies to easily implement Sourcefire's leading security solutions for increased protection. MSSPs can configure multiple Virtual Defense Centers to support multiple customers from a single VMware server, increasing the efficiency of management efforts.

    "As companies move more of their critical information and applications into virtual environments, it is becoming increasingly important to implement innovative security solutions to protect those assets," said Tom McDonough, President and COO at Sourcefire. "The new Virtual 3D Sensor and Defense Center deliver leading protection for both physical and virtual environments, so that our customers are never forced to sacrifice security or efficiency. They will have the flexibility to select the physical or virtual solution to meet their specific infrastructure requirements."

    Users can deploy Virtual 3D Sensors on VMware ESX and ESXi platforms to inspect traffic between two or more virtual machines (VMs), while also using physical Sourcefire 3D Sensors to inspect traffic going into and out of a VMware virtual environment. Deployed as software running within VMs, the Virtual 3D Sensor also makes it easier for users to inspect traffic on remote segments of the network where local IT security resources may not exist (e.g., retail stores, remote offices) or where little rack space remains in the datacenter.

    The Virtual 3D Sensor will provide simultaneous execution of Sourcefire IPSTM, RNA' (Real-time Network Awareness) and RUA (Real-time User Awareness) functions. Customers can deploy the Virtual Defense Center to monitor any combination of up to 25 virtual or physical 3D Sensors. They can also opt to monitor their Virtual 3D Sensors from the same physical Defense Center they use to monitor their physical 3D Sensors.

    Policy Management, Visibility and Control for Cloud, Virtual and Large Network Deployments In addition to the new virtual appliances, Sourcefire 3D System 4.9 delivers new policy management capabilities that allow organizations to easily customize security to support the varying user requirements of expansive multi-department/organization networks, as well as virtualization and cloud computing implementations. With the industry's first Policy Layering capability, Sourcefire users can create policy "building blocks" to capture specific Intrusion Prevention System (IPS) requirements by organization, by site, by department, or even by user.

    Sourcefire is enhancing its market-leading dashboard to include new custom query widgets, providing users with increased control over the way data is presented. With Sourcefire 3D System 4.9, Sourcefire is also improving the overall manageability and detection accuracy of RNA to include new application and service detectors, auto-configuration and simplified packet-level forensics.

    The Sourcefire 3D System 4.9 release, including the Virtual 3D Sensors and Virtual Defense Center, will be available during the second half of 2009. For more information, please contact a Sourcefire Sales representative or your local reseller.

    About Sourcefire Sourcefire, Inc. (Nasdaq:FIRE), Snort creator and open source innovator, is a world leader in Cybersecurity solutions. Sourcefire is transforming the way Global 2000 organizations and government agencies manage and minimize network security risks. Sourcefire's IPS and Real-time Adaptive Security solution equips customers with an efficient and effective layered security defense " protecting network assets before, during and after an attack. Through the years, Sourcefire has been consistently recognized for its innovation and industry leadership by customers, media and industry analysts alike " with more than 40 awards and accolades. Today, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and network security intelligence. For more information about Sourcefire, please visit http://www.sourcefire.com.

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Oldest First  |  Newest First  |  Threaded View
    COVID-19: Latest Security News & Commentary
    Dark Reading Staff 9/21/2020
    Cybersecurity Bounces Back, but Talent Still Absent
    Simone Petrella, Chief Executive Officer, CyberVista,  9/16/2020
    Meet the Computer Scientist Who Helped Push for Paper Ballots
    Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/16/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon
    Latest Comment: Exactly
    Current Issue
    Special Report: Computing's New Normal
    This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
    Flash Poll
    How IT Security Organizations are Attacking the Cybersecurity Problem
    How IT Security Organizations are Attacking the Cybersecurity Problem
    The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2020-4590
    PUBLISHED: 2020-09-21
    IBM WebSphere Application Server Liberty 17.0.0.3 through 20.0.0.9 running oauth-2.0 or openidConnectServer-1.0 server features is vulnerable to a denial of service attack conducted by an authenticated client. IBM X-Force ID: 184650.
    CVE-2020-4731
    PUBLISHED: 2020-09-21
    IBM Aspera Web Application 1.9.14 PL1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 188055.
    CVE-2020-4315
    PUBLISHED: 2020-09-21
    IBM Business Automation Content Analyzer on Cloud 1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the i...
    CVE-2020-4579
    PUBLISHED: 2020-09-21
    IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted HTTP/2 request with invalid characters. IBM X-Force ID: 184438.
    CVE-2020-4580
    PUBLISHED: 2020-09-21
    IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.12 could allow a remote attacker to cause a denial of service by sending a specially crafted a JSON request with invalid characters. IBM X-Force ID: 184439.