Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

6/25/2009
10:39 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Sourcefire Announces Virtual Appliances

Sourcefire 3D System 4.9, with the new Sourcefire Virtual 3D Sensor and Sourcefire Virtual Defense Center, enable users to deploy the company security solutions within their virtual environments

COLUMBIA, Md., June 25, 2009 " Open source innovator and Snort' creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in Cybersecurity, today announced the Sourcefire 3D System 4.9, with the new Sourcefire Virtual 3D Sensor and Sourcefire Virtual Defense Center. These new virtual appliances will enable users to deploy the company's leading security solutions within their virtual environments, increasing protection for both physical and virtual assets. Available during the second half of 2009, the Sourcefire 3D' System 4.9 also features the industry's first Policy Layering capabilities that deliver increased customization for large or multi-organizational networks, including cloud or virtual implementations.

With the new Virtual 3D Sensor and Virtual Defense Center, Sourcefire is enabling customers to:

  • Secure virtualization " Protecting virtual infrastructure from internal and external attacks with virtual security appliances
  • Virtualize security " Leveraging cost- and energy-saving benefits of virtual security appliances to improve security efficiency

    As part of the Sourcefire 3D System 4.9, the new virtual appliances allow organizations to inspect traffic between virtual machines, while also making it easier to deploy and manage sensors at remote sites where resources may be limited. They also enable Managed Security Service Providers (MSSPs) and cloud computing companies to easily implement Sourcefire's leading security solutions for increased protection. MSSPs can configure multiple Virtual Defense Centers to support multiple customers from a single VMware server, increasing the efficiency of management efforts.

    "As companies move more of their critical information and applications into virtual environments, it is becoming increasingly important to implement innovative security solutions to protect those assets," said Tom McDonough, President and COO at Sourcefire. "The new Virtual 3D Sensor and Defense Center deliver leading protection for both physical and virtual environments, so that our customers are never forced to sacrifice security or efficiency. They will have the flexibility to select the physical or virtual solution to meet their specific infrastructure requirements."

    Users can deploy Virtual 3D Sensors on VMware ESX and ESXi platforms to inspect traffic between two or more virtual machines (VMs), while also using physical Sourcefire 3D Sensors to inspect traffic going into and out of a VMware virtual environment. Deployed as software running within VMs, the Virtual 3D Sensor also makes it easier for users to inspect traffic on remote segments of the network where local IT security resources may not exist (e.g., retail stores, remote offices) or where little rack space remains in the datacenter.

    The Virtual 3D Sensor will provide simultaneous execution of Sourcefire IPSTM, RNA' (Real-time Network Awareness) and RUA (Real-time User Awareness) functions. Customers can deploy the Virtual Defense Center to monitor any combination of up to 25 virtual or physical 3D Sensors. They can also opt to monitor their Virtual 3D Sensors from the same physical Defense Center they use to monitor their physical 3D Sensors.

    Policy Management, Visibility and Control for Cloud, Virtual and Large Network Deployments In addition to the new virtual appliances, Sourcefire 3D System 4.9 delivers new policy management capabilities that allow organizations to easily customize security to support the varying user requirements of expansive multi-department/organization networks, as well as virtualization and cloud computing implementations. With the industry's first Policy Layering capability, Sourcefire users can create policy "building blocks" to capture specific Intrusion Prevention System (IPS) requirements by organization, by site, by department, or even by user.

    Sourcefire is enhancing its market-leading dashboard to include new custom query widgets, providing users with increased control over the way data is presented. With Sourcefire 3D System 4.9, Sourcefire is also improving the overall manageability and detection accuracy of RNA to include new application and service detectors, auto-configuration and simplified packet-level forensics.

    The Sourcefire 3D System 4.9 release, including the Virtual 3D Sensors and Virtual Defense Center, will be available during the second half of 2009. For more information, please contact a Sourcefire Sales representative or your local reseller.

    About Sourcefire Sourcefire, Inc. (Nasdaq:FIRE), Snort creator and open source innovator, is a world leader in Cybersecurity solutions. Sourcefire is transforming the way Global 2000 organizations and government agencies manage and minimize network security risks. Sourcefire's IPS and Real-time Adaptive Security solution equips customers with an efficient and effective layered security defense " protecting network assets before, during and after an attack. Through the years, Sourcefire has been consistently recognized for its innovation and industry leadership by customers, media and industry analysts alike " with more than 40 awards and accolades. Today, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and network security intelligence. For more information about Sourcefire, please visit http://www.sourcefire.com.

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Threaded  |  Newest First  |  Oldest First
    Major Brazilian Bank Tests Homomorphic Encryption on Financial Data
    Kelly Sheridan, Staff Editor, Dark Reading,  1/10/2020
    Exploits Released for As-Yet Unpatched Critical Citrix Flaw
    Jai Vijayan, Contributing Writer,  1/13/2020
    Microsoft Patches Windows Vuln Discovered by the NSA
    Kelly Sheridan, Staff Editor, Dark Reading,  1/14/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win a Starbucks Card! Click Here
    Post a Comment
    Current Issue
    The Year in Security: 2019
    This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
    Flash Poll
    [Just Released] How Enterprises are Attacking the Cybersecurity Problem
    [Just Released] How Enterprises are Attacking the Cybersecurity Problem
    Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2019-3686
    PUBLISHED: 2020-01-17
    openQA before commit c172e8883d8f32fced5e02f9b6faaacc913df27b was vulnerable to XSS in the distri and version parameter. This was reported through the bug bounty program of Offensive Security
    CVE-2019-3683
    PUBLISHED: 2020-01-17
    The keystone-json-assignment package in SUSE Openstack Cloud 8 before commit d7888c75505465490250c00cc0ef4bb1af662f9f every user listed in the /etc/keystone/user-project-map.json was assigned full "member" role access to every project. This allowed these users to access, modify, create and...
    CVE-2019-3682
    PUBLISHED: 2020-01-17
    The docker-kubic package in SUSE CaaS Platform 3.0 before 17.09.1_ce-7.6.1 provided access to an insecure API locally on the Kubernetes master node.
    CVE-2019-17361
    PUBLISHED: 2020-01-17
    In SaltStack Salt through 2019.2.0, the salt-api NEST API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host.
    CVE-2019-19142
    PUBLISHED: 2020-01-17
    Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cfg URI.