Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

6/21/2010
03:12 PM
50%
50%

Fidelis, Cyveillance Team To Fight Cyber Threats

Fidelis is integrating its network security product, Fidelis XPS, directly with Anti-Malware and Anti-Phishing threat intelligence feeds from Cyveillance

WALTHAM, MA & ARLINGTON, VA – June 21 2010 – Fidelis Security Systems, the market leader in network security solutions for the prevention of cyber attacks and data breaches, today announced that their award-winning network security product, Fidelis XPS™, integrates directly with Anti-Malware and Anti-Phishing threat intelligence feeds from Cyveillance, a world leader in cyber intelligence solutions. The combined solution provides Fidelis XPS customers automatic and real-time visibility and control of known malicious threat actors attempting to steal information and compromise computer networks--enabling organizations to prevent cyber attacks with a higher level of automated intelligence sharing and increased situational awareness.

“Networks today are being flooded with new and advanced threats, said Eric Ouellet, Research Vice President, Gartner. “The ability for an organization to add actionable threat intelligence to their network security toolkit gives them an opportunity to get ahead of the threat.”

By bringing real-time threat intelligence into the patented Fidelis XPS architecture, the Deep Session Inspection™ platform, organizations gain greater visibility into and control over their network traffic with reputational knowledge on all 65,535 ports. In addition to the Cyveillance cyber intelligence feeds, the newly released Fidelis XPS Feed Manager function can integrate other data feeds, giving Fidelis XPS customers and partners the ability to further integrate threat data—connecting to threat intelligence sources, either internal or external to the organization—in order to provide dynamic, real-time reputation-based policy updates to their Fidelis XPS sensors.

“As phishing and malware attacks constantly evolve, it is critical to stay ahead of these threats,” said Panos Anastassiadis, COO of Cyveillance. “Our real-time Anti-Phishing and Anti-Malware threat intelligence enhances Fidelis XPS, enabling users to proactively respond to zero-day threats as soon as they are identified - before they can penetrate the network. Fidelis Security Systems is continuously looking to deliver innovative solutions to its customers, and we are pleased to partner with them to address the dynamic nature of today’s cyber threats.”

After an initial complementary three month subscription, Fidelis XPS customers can purchase the Anti-Phishing and Anti-Malware Distribution Feeds for Fidelis XPS, powered by Cyveillance, directly from Fidelis Security Systems through an annual subscription service. The Fidelis XPS Feed Manager is a standard feature available on Fidelis XPS products. The new Fidelis XPS cyber intelligence feed capability includes:

* Fidelis XPS Feed Manager - provides the ability to connect to threat intelligence sources and automatically integrate timely reputational data into Fidelis XPS policy. This real-time threat information allowing an organization to differentiate between trusted sources and known bad actors in Fidelis XPS policy, enabling more granular inspection of network sessions and separate actions based on reputation. Beyond Fidelis XPS feeds, other threat intelligence sources can be accessed via HTTP or FTP with support for XML, CSV, and IP list formats.

* Fidelis XPS Anti-Phishing Feed - an annual subscription service providing a feed of real-time threat intelligence of known fraudulent Web pages. Powered by Cyveillance, the Anti-Phishing Feed provides near real-time updates of systems with fake or copied login pages for banks, brokerages, payment services and other financial services; customer surveys, giveaways and sweepstakes-entry pages. Information collected by bad actors through these pages is used to commit fraud, ID theft, and gain access to enterprise networks, intellectual property and highly sensitive information.

* Fidelis XPS Anti-Malware Distribution Feed - an annual subscription service providing a feed of real-time threat intelligence of systems, Websites, and IP addresses distributing malicious software. Powered by Cyveillance, the Anti-Malware Distribution Feed provides near real-time updates of locations known to deliver a piece of malicious code, as well as the download locations of the malicious binary.

“The newly released Fidelis XPS Feed Manager feature and integration of Cyvelliance cyber intelligence provides a new approach to computer network defense by bringing real-time threat intelligence into the unparalleled Fidelis XPS Deep Session Inspection™ platform,” said Peter George, CEO of Fidelis Security Systems. “Unlike signature-based solutions that are quickly outdated or easy to evade, or reputational data tied to a small number of ports, Fidelis XPS brings real-time reputational knowledge to life for all ports along with the unprecedented visibility and control of network traffic to mitigate today’s advanced and persistent cyber threats.”

Upcoming Webinar

Learn more about the new evolving threats on your network and how to prevent them by attending the “Shaken, Not Stirred: Preventing Cyber Attacks with Actionable Threat Intelligence” Webinar at 1:00 p.m. EST on July 21, 2010. Please visit www.fidelissecurity.com/webinars to register.

About Fidelis Security Systems Fidelis Security Systems provides organizations with the power to leverage their sensitive information while protecting it from data leakage and cyber attacks. Built on a patented deep session inspection™, platform, the Fidelis Extrusion Prevention System' is the industry's only next-generation network security solution with the visibility and control necessary to stop data breaches by uniquely working at the session-level. Fidelis enables their government, military, and commercial enterprise customers around the globe to achieve comprehensive information protection in real time on multi-gigabit speed networks—allowing them to protect content, control application activity, enforce encryption policy, and mitigate threats. Learn more about Fidelis Security Systems by visiting www.FidelisSecurity.com.

About Cyveillance

Cyveillance, a world leader in cyber intelligence, provides an intelligence-led approach to security. Through continuous, comprehensive Internet monitoring and sophisticated intelligence analysis, Cyveillance proactively identifies and eliminates threats to information, infrastructure, individuals and their interactions, enabling its customers to preserve their reputation, revenues, and customer trust. Cyveillance serves the Global 2000 and OEM Data Partners – protecting the majority of the Fortune 50, regional financial institutions nationwide, and more than 100 million global consumers through its partnerships with security and service providers that include Blue Coat, AOL and Microsoft. Cyveillance is a wholly owned subsidiary of QinetiQ North America. For more information, please visit www.cyveillance.com or http://www.qinetiq-na.com.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 7/2/2020
Ripple20 Threatens Increasingly Connected Medical Devices
Kelly Sheridan, Staff Editor, Dark Reading,  6/30/2020
DDoS Attacks Jump 542% from Q4 2019 to Q1 2020
Dark Reading Staff 6/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-9498
PUBLISHED: 2020-07-02
Apache Guacamole 1.1.0 and older may mishandle pointers involved inprocessing data received via RDP static virtual channels. If a userconnects to a malicious or compromised RDP server, a series ofspecially-crafted PDUs could result in memory corruption, possiblyallowing arbitrary code to be executed...
CVE-2020-3282
PUBLISHED: 2020-07-02
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenticated, remote attack...
CVE-2020-5909
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, when users run the command displayed in NGINX Controller user interface (UI) to fetch the agent installer, the server TLS certificate is not verified.
CVE-2020-5910
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.
CVE-2020-5911
PUBLISHED: 2020-07-02
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller installer starts the download of Kubernetes packages from an HTTP URL On Debian/Ubuntu system.