Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

8/5/2020
11:30 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Calyptix Security Releases AccessEnforcer 5.0 Beta

Adds Network Authentication for Microsoft RDP and SSH Access.

Charlotte, NC – Calyptix Security Corporation, maker of the AccessEnforcer® UTM Firewall, today announced the release of AccessEnforcer 5.0 Beta at CompTIA ChannelCon Online  which adds GatekeeperTM and Geo Fence, innovative new features for small business to secure remote access to potentially vulnerable systems and provide a work from home solution that is secure, easy, affordable and reliable.

GatekeeperTM

Gatekeeper, a patent pending solution, provides 2 factor authenticated access control (2FA) before remote users can access systems via Microsoft Remote Desktop Protocol (RDP) or SSH. This tool ensures organizations don’t expose vulnerable systems to the public Internet.  Gatekeeper shields systems from unauthorized users, stolen Active Directory credentials, probes, scans, botnets, brute force and targeted attacks. Gatekeeper provides security controls to safeguard against cyberthreats that increasingly threaten remote access as confirmed by the FBI, NSA, and DHS.  Advantages of Gatekeeper include:

  • Implements two-factor network authentication for user access.
  • Eliminates publicly exposed network ports for RDP or SSH access.
  • Leverages widely available RDP clients for Windows, iOS, Android and other devices.
  • Avoids installation, maintenance or overhead of VPN client software.
  • Provides simple user management via Active Directory integration.
  • Generates detailed access control logs for monitoring and compliance.
  • Includes automatic updates with Calyptix subscription service 

Geo Fence

Geo Fence, the second major enhancement, shields networks in only a few clicks from inbound malicious foreign actors engaged in hostile reconnaissance and attacks on network and information systems.  Geo Fence can be customized to fit any organization, and provides a highly intuitive, interactive heat map for optimizing configuration.  Geo Fence generates detailed alerts for monitoring, troubleshooting and tightening the configuration.  

“Our mission remains hardening small business networks to make it harder for malicious cyber actors to attack. Gatekeeper and Geo Fence keep cyber criminals out and let our customers get the remote access they need.  If it’s not secure, easy and affordable, it won’t work for small business,” said Ben Yarbrough, CEO, Calyptix Security.

Remote Access Faces Increasing Cyberthreats

Attacks on Microsoft’s Remote Desktop Protocol (RDP) continue to surge while vulnerabilities and poor configuration practices persist.  Ongoing series of alerts from the FBI, NSA, and U.S. Homeland Security (DHS) continue to warn that malicious cyber actors are exploiting teleworking infrastructure.  Attacks on remote access tools are rising rapidly as teleworking surges with the Covid-19 pandemic.  The DHS alert shares recent analysis that exposed RDP endpoints have increased 127%.  Experts at Shodan estimate millions of RDP systems are publicly exposed and many of them are vulnerable.  The DHS alert confirms, “The increase in RDP use could potentially make IT systems—without the right security measures in place—more vulnerable to attack.”

Visit CompTIA ChannelCon Online and join Calyptix at the Solutions Showcase to see  a demo and learn more about Gatekeeper and Geo Fence. For a full list of new features and improvements in AccessEnforcer Version 5.0 Beta, or to see a live demo of the interface, contact Calyptix at [email protected].

About Calyptix Security

Calyptix Security Corporation is dedicated to helping small businesses secure their networks so they can raise profits, protect investments, and control technology. The company’s flagship product, AccessEnforcer® UTM Firewall, makes it easy to protect SMB networks so companies can forget about security and focus on winning. Developed, built, and serviced in the United States, AccessEnforcer is a flexible network security device that allows MSPs and VARs to provide security services that fits their needs and business models.

Press Contact

Patrick Morrisroe

704-971-8989

[email protected]

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/23/2020
Modern Day Insider Threat: Network Bugs That Are Stealing Your Data
David Pearson, Principal Threat Researcher,  10/21/2020
Are You One COVID-19 Test Away From a Cybersecurity Disaster?
Alan Brill, Senior Managing Director, Cyber Risk Practice, Kroll,  10/21/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27743
PUBLISHED: 2020-10-26
libtac in pam_tacplus through 1.5.1 lacks a check for a failure of RAND_bytes()/RAND_pseudo_bytes(). This could lead to use of a non-random/predictable session_id.
CVE-2020-1915
PUBLISHED: 2020-10-26
An out-of-bounds read in the JavaScript Interpreter in Facebook Hermes prior to commit 8cb935cd3b2321c46aa6b7ed8454d95c75a7fca0 allows attackers to cause a denial of service attack or possible further memory corruption via crafted JavaScript. Note that this is only exploitable if the application usi...
CVE-2020-26878
PUBLISHED: 2020-10-26
Ruckus through 1.5.1.0.21 is affected by remote command injection. An authenticated user can submit a query to the API (/service/v1/createUser endpoint), injecting arbitrary commands that will be executed as root user via web.py.
CVE-2020-26879
PUBLISHED: 2020-10-26
Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is hardcoded into validate_token.py. An unauthenticated attacker can interact with the service API by using a backdoor value as the Authorization header.
CVE-2020-15272
PUBLISHED: 2020-10-26
In the git-tag-annotation-action (open source GitHub Action) before version 1.0.1, an attacker can execute arbitrary (*) shell commands if they can control the value of [the `tag` input] or manage to alter the value of [the `GITHUB_REF` environment variable]. The problem has been patched in version ...