eEye Launches Retina Cloud

PRESS RELEASE

PHOENIX, AZ — March 10, 2011 — eEye Digital Security, a provider of IT security and unified vulnerability management solutions, today announced Retina Cloud, a new cloud-based security and compliance service providing external Payment Card Industry (PCI) scans and external vulnerability scans. PCI scans allow organizations to remain in compliance with the PCI DSS, one of the industry’s most stringent compliance regulations. External vulnerability scans allow organizations to gain an outsider’s view of their vulnerabilities, providing greater insight into what an attacker sees when attempting to penetrate the network.

In addition, eEye released more than a dozen new audits for its Retina family of vulnerability management products. These new audits allow customers to scan and identify where employees are using cloud-based file-sharing applications — including Dropbox, Windows Live Sync and Sugarsync — to transfer confidential files without authorization. By identifying these applications, organizations can pinpoint workstations that may be synchronizing data to the cloud against company policy, enabling better protection over sensitive information.

“End users continue to have new cloud-based technologies at their fingertips, which are great for productivity, but make the job of IT security even more challenging,” said Marc Maiffret, eEye CTO and cofounder. “We’ve added these new audits to Retina as yet another way to ensure that confidential company information stays within the corporate network.”

These offerings expand eEye’s existing Software-as-a-Service (SaaS) and cloud-based vulnerability management solutions, provide greater flexibility and ease in managing vulnerabilities to improve security and meet compliance demands across IT environments.

Retina Cloud’s PCI scans allow customers to comply with the PCI Data Security Standard (DSS) external scanning requirements, which require merchants, service providers and financial institutions to conduct a quarterly scan of “in-scope” PCI hosts. Notably, eEye is a PCI Council Approved Scanning Vendor (ASV), which certifies the company to help organizations achieve compliance with the PCI DSS. Retina Cloud also provides trusted, third-party scans of an organization’s external assets to fine-tune security and reduce the risk of unauthorized access.

eEye first offered vulnerability assessment as-a-service several years ago and continues to build on that foundation with Retina Cloud and an extensive partner network that uses Retina solutions to provide full-service, cloud-based vulnerability management. eEye also provides solutions for organizations running a Cloud infrastructure with its flagship Retina vulnerability management solution. Retina scans both physical and virtual assets, searching for known vulnerabilities, missing patches, and configuration compliance violations using a repeatable process to identify and assess risk. Retina discovers, inventories, and scans virtual assets including VMWare Server, ESX Server, Citrix Xen, Microsoft Virtual Server, Microsoft Virtual PC, and other virtualized environments.

“eEye has been providing SaaS-based vulnerability scanning for years,” said Brad Hibbert, eEye VP Strategy. “Today, we’re offering Retina Cloud to meet the needs of customers who are investing in Cloud and Software-as-a-Service (SaaS) solutions to avoid the complexity and cost of traditional software management. We will continue to give these customers simple, hands-off, yet very effective tools for increasing security and managing vulnerabilities and compliance.”

Follow eEye Digital Security Twitter: http://twitter.com/eEye Blog: http://blog.eeye.com LinkedIn: http://www.linkedin.com/companies/eEye-digital-security Facebook: http://www.facebook.com/eeyedigitalsecurity About eEye Digital Security

Since 1998, eEye Digital Security has made vulnerability and compliance management simpler and more efficient by providing the only unified solution that integrates assessment, mitigation, protection, and reporting into a complete offering with optional add-on modules for configuration compliance, regulatory reporting, and integrated patch management. eEye’s world-renowned research and development team is consistently the first to uncover critical vulnerabilities and build new protections into our solutions to prevent their exploit. Thousands of mid-to-large-size private-sector and government organizations, including the largest vulnerability management installations in the world, rely on eEye to protect against the latest known and zero-day vulnerabilities. More at www.eeye.com.