Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

11/28/2011
02:44 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Free Security Tools From Qualys To Prevent Online Holiday Scams

Offering businesses a free license to use the company's SECURE Seal protection from now until Jan. 30, 2012, along with Qualys BrowserCheck and SSL Server Audit

REDWOOD SHORES, CA, Nov 28, 2011 (MARKETWIRE via COMTEX) -- Qualys, Inc., the leading provider of Software-as-a-Service (SaaS) IT security risk and compliance management solutions, is offering businesses a free license to use the company's SECURE Seal protection from now until January 30th, 2012, along with Qualys BrowserCheck and SSL Server Audit. These free services combined will enable businesses to protect their customers, employees and web presence against accidental and deliberate attacks during the busiest shopping period of the year -- Cyber Monday through New Year's. The protection is provided as a service, so there is no software to install or manage. Sign up for this free offer at http://www.qualys.com/holiday .

The holidays are a challenging time for many businesses, especially in the current economic climate. There is enough to worry about without having to be constantly checking whether your web site is secure and your employees have kept their browsers (and anti-virus software) up to date. However, with a large number of people expected to do their holiday shopping online -- often at work -- it is wise to take precautions to ensure safe online shopping, as research indicates:

-- 83% of employees admit to using a work computer for personal use

(source:Cisco)

-- 79.9% of web sites containing malicious code were legitimate sites

that had been compromised (source:Websense)

-- 47% of people plan to shop online this holiday season (source:National Retail Federation)

"Browsers and web sites are the primary targets for cyber attackers, so online shoppers and businesses need to take the proactive measures to protect themselves this holiday season," said Philippe Courtot, chairman and CEO for Qualys. "Ensuring your browser and all its plug-ins are at the latest security level is a must -- and it takes only four seconds for Qualys to help you find out. Making sure your business web site is not compromised or vulnerable to attacks is equally as important, and the Qualys SECURE Seal provides an effective solution for maintaining a rigorous and proactive security program to help you safeguard your customers' data."

Qualys' free, easy-to-use security services help businesses focus on growing their sales instead of worrying about security:

-- Qualys SECURE Seal enables businesses of all sizes to scan their web

sites for the presence of malware and network and web application

vulnerabilities, as well as SSL certificate validation. Once a web

site passes the scans, the Qualys SECURE Seal service generates a

Qualys SECURE seal for the company's web site to assure customers that

the site is certified safe.

-- Qualys BrowserCheck instantly scans the user's browser looking for

vulnerabilities in the browser and its plug-ins, providing links to

fix any issues detected.

-- SSL Server Test performs a deep analysis of the configuration of any

SSL web server on the public Internet, enabling users to check for

themselves the security of a site at the only time that matters --

right before they click on it.

Organizations interested in taking up this offer are invited to sign up on the Qualys web site at http://www.qualys.com/holiday .

About Qualys Qualys, Inc. is the leading provider of Software-as-a-Service (SaaS) IT security risk and compliance management solutions. Qualys solutions are deployed in a matter of hours anywhere in the world, providing customers an immediate and continuous view of their security and compliance postures.

The QualysGuard(R) service is used today by more than 5,000 organizations in 85 countries, including 50 of the Fortune 100, and performs more than 500 million IP audits per year. Qualys has the largest vulnerability management deployment in the world at a leading global company, and has been recognized by leading industry analysts for its market leadership. Qualys was recently named Best Security Company in the Excellence Awards category of the 2011 SC Awards U.S.

Qualys has established strategic agreements with leading managed service providers and consulting organizations including BT, Etisalat, Fujitsu, IBM, I(TS)2, LAC, NTT, Dell SecureWorks, Symantec, Tata Communications and TELUS. Qualys is a founding member of the Cloud Security Alliance (CSA).

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Commentary
How SolarWinds Busted Up Our Assumptions About Code Signing
Dr. Jethro Beekman, Technical Director,  3/3/2021
News
'ObliqueRAT' Now Hides Behind Images on Compromised Websites
Jai Vijayan, Contributing Writer,  3/2/2021
News
Attackers Turn Struggling Software Projects Into Trojan Horses
Robert Lemos, Contributing Writer,  2/26/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: George has not accepted that the technology age has come to an end.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-26814
PUBLISHED: 2021-03-06
Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit incomplete input validation on the /manager/files API to inject arbitrary code within the API service sc...
CVE-2021-27581
PUBLISHED: 2021-03-05
The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.
CVE-2021-28042
PUBLISHED: 2021-03-05
Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.
CVE-2021-28041
PUBLISHED: 2021-03-05
ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
CVE-2021-3377
PUBLISHED: 2021-03-05
The npm package ansi_up converts ANSI escape codes into HTML. In ansi_up v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting (XSS) vulnerability. This issue is fixed in v5.0.0.