Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Application Security

3/31/2020
07:00 AM
50%
50%

Limited-Time Free Offers to Secure the Enterprise Amid COVID-19

These products and services could be of immediate help to infosec pros now protecting their organizations while working from home.
Previous
1 of 10
Next

The novel coronavirus has had an impact on the global economy unlike any health-related issue in modern times. Companies have been told to close offices, while employees have been instructed to shelter in place and avoid travel. The result is an unprecedented change in IT practices at a lightning pace and on a global scale.

To help companies and individuals forced to shift IT operations practically overnight, a number of vendors have made their products and services available free for a limited time or for the duration of the pandemic. The offerings run the gamut from courses to educate employees and professionals to enterprise tools for securing a network.

For this article, we've chosen to focus on offerings that could be of immediate help to cybersecurity professionals now protecting their organizations while working from home. That means you'll see more remote network monitoring and less password management. And we didn't focus on offerings like remote conferencing, even though those are undoubtably useful in these situations. Look for them in a follow-up article soon.

This list is a work in progress: Given the very fluid environment we're all working in, as more companies offer free services for enterprise security, we will add them to this list. If you are taking advantage of any of these offers — and if they are helping with the security of your organization in this extraordinary time — let us know in the Comments section, below.

(Image: Yevhen VIA Adobe Stock)

 

Curtis Franklin Jr. is Senior Editor at Dark Reading. In this role he focuses on product and technology coverage for the publication. In addition he works on audio and video programming for Dark Reading and contributes to activities at Interop ITX, Black Hat, INsecurity, and ...
View Full Bio

Previous
1 of 10
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
MikeF836
50%
50%
MikeF836,
User Rank: Apprentice
4/1/2020 | 9:18:13 AM
Free enterprise endpoint monitoring
Due to the pandemic, my company Shadowscape, an intelligence led service company, is offering 60 days of free endpoint monitoring and ransomware protection. There are no strings attached to this offer. Reach out to us at www.shadowscape.io for more information
Authlogics
50%
50%
Authlogics,
User Rank: Apprentice
4/1/2020 | 8:14:26 AM
Authlogics Passwordless & Deviceless IT solutions
During a time when quick and secure remote access is required more than ever, AUTHLOGICS pioneering Passwordless and Deviceless OTP solutions are providing Companies with a unique and cost-effective alternative to traditional authentication methods. The solution can be installed on-premises or hosted in the cloud and quickly integrates with common applications. Users can self-enroll a variety of Multi-Factor token types (up to 10 each) or utilize the deviceless OTC technology for instant deployment.

Authlogics are offering NEW customers use of our solutions FREE for 30 days and EXISTING customers the ability to increase their number of users FREE for 30 days.  For the healthcare industry, we have a more extensive offer to show our appreciation for their hard efforts - please contact us for more details.  All solutions can be deployed rapidly.
Guillaume de Systancia
50%
50%
Guillaume de Systancia,
User Rank: Apprentice
3/31/2020 | 9:53:41 AM
Systancia Gate (SaaS) free of charge
Hello,

Given the current exceptional circumstances related to the COVID-19 epidemic, Systancia has decided to provide its teleworking offer as a cloud service (SaaS) free of charge : https://www.systancia.com/en/covid-19/ 
COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/1/2020
Stay-at-Home Orders Coincide With Massive DNS Surge
Robert Lemos, Contributing Writer,  5/27/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13757
PUBLISHED: 2020-06-01
Python-RSA 4.0 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-RSA, or if the length of accepted ciphertext affects application behavior (such as by causing exces...
CVE-2020-13758
PUBLISHED: 2020-06-01
modules/security/classes/general.post_filter.php/post_filter.php in the Web Application Firewall in Bitrix24 through 20.0.950 allows XSS by placing %00 before the payload.
CVE-2020-9291
PUBLISHED: 2020-06-01
An Insecure Temporary File vulnerability in FortiClient for Windows 6.2.1 and below may allow a local user to gain elevated privileges via exhausting the pool of temporary file names combined with a symbolic link attack.
CVE-2019-15709
PUBLISHED: 2020-06-01
An improper input validation in FortiAP-S/W2 6.2.0 to 6.2.2, 6.0.5 and below, FortiAP-U 6.0.1 and below CLI admin console may allow unauthorized administrators to overwrite system files via specially crafted tcpdump commands in the CLI.
CVE-2020-13695
PUBLISHED: 2020-06-01
In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user has sudo privileges to execute grep as root without a password, which allows an attacker to obtain sensitive information via a grep of a /root/*.db or /etc/shadow file.