Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

3/26/2007
09:59 AM
50%
50%

Security Upgrades Proliferate

Vendors roll out refinements to plug the many ways data might leak from the enterprise

Security is a top priority for IT pros these days, so it's no surprise to find vendors upgrading to meet demand for better wares.

Reconnex, which competes with Proofpoint and PortAuthority in the internal threat protection space, today released version 6.0 of its appliances, adding tracking of thumb drives, PDAs, and laptops.

The Endpoint Agent, as the new appliances are called, detect suspicious activity in any I/O activity on the network, including email messages, wireless IM, file transfers, and the like. If it identifies suspicious activity (per predefined rules), data center managers are pinged, and end users are notified of a violation.

Reconnex says it's aiming to compete with other threat-control vendors by supporting a wider variety of network activity, though its rivals have also been active in augmenting their wares. Pricing for the Reconnex appliance, set for shipment in April, starts at $25,000.

Finnish startup Codenomicon also stepped up its storage security efforts today. (See Codenomicon Intros Defensics.) The vendor, which has a U.S. headquarters in San Jose, Calif., beefed up its Defensics solution with support for storage protocols such as CIFS, NFS, and iSCSI.

The idea is that users can run the software to check for vulnerabilities in their SAN and NAS systems. "We're sending hundreds of thousands of malformed packets at the device," says Brenda Fox, Codenomicon's president of U.S. operations, adding that this simulates a buffer overflow or denial-of-service attack.

Previous versions of Defensics focused on networking devices such as switches and routers by using protocols such as HTTP, IPv6, and SSL. (See Riverbed Steps on SSL Gas and Blue Coat Secures Mobile Devices.) The vendor also offers a version of Defensics targeted at telecom equipment and protocols such as SIP, GTP, and RTP. "Verizon is using it as a gateway for anything coming onto their network," says Fox.

The startup says that it has around 52 customers using the previous versions of Defensics, although Codenomicon is not the only vendor playing in this space. Fellow startup Mu Security, for example, also checks storage gear for vulnerabilities and recently signed up Decru as a customer. (See Decru Selects Mu.)

Unlike Codenomicon, Mu Security uses an appliance to check for security problems. Last year the vendor unveiled its Mu-4000 Security Analyzer product, aimed at IP-based systems, applications, and network devices. (See Security Startup Says Mu to Bugs.) The device uses a technique called Protocol Spidering to emulate the vulnerability discovery techniques that hackers use, then warns the user of potential system flaws and characterizes their severity.

The storage-based version of Codenomicon's Defensics product is available now, with a list price starting at $20,000.

Mary Jander, Site Editor, and James Rogers, Senior Editor Byte and Switch

  • Codenomicon Ltd.
  • Mu Security Inc.
  • Verizon Communications Inc. (NYSE: VZ)

    Mary Jander is managing editor of UBM's Future Cities. Previously, she was executive editor of Internet Evolution, site editor of Byte and Switch, and a longtime senior editor of Light Reading. She has spent over 27 years reporting and writing on information technology and ... View Full Bio

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    News
    Inside the Ransomware Campaigns Targeting Exchange Servers
    Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
    Commentary
    Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
    Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon
    Current Issue
    2021 Top Enterprise IT Trends
    We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
    Flash Poll
    How Enterprises are Developing Secure Applications
    How Enterprises are Developing Secure Applications
    Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2021-25250
    PUBLISHED: 2021-04-13
    An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privil...
    CVE-2021-25253
    PUBLISHED: 2021-04-13
    An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to exec...
    CVE-2021-28645
    PUBLISHED: 2021-04-13
    An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target ...
    CVE-2021-28646
    PUBLISHED: 2021-04-13
    An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to take control of a specific log file on affected installations.
    CVE-2021-28647
    PUBLISHED: 2021-04-13
    Trend Micro Password Manager version 5 (Consumer) is vulnerable to a DLL Hijacking vulnerability which could allow an attacker to inject a malicious DLL file during the installation progress and could execute a malicious program each time a user installs a program.