Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

6/21/2010
03:12 PM
50%
50%

Fidelis, Cyveillance Team To Fight Cyber Threats

Fidelis is integrating its network security product, Fidelis XPS, directly with Anti-Malware and Anti-Phishing threat intelligence feeds from Cyveillance

WALTHAM, MA & ARLINGTON, VA – June 21 2010 – Fidelis Security Systems, the market leader in network security solutions for the prevention of cyber attacks and data breaches, today announced that their award-winning network security product, Fidelis XPS™, integrates directly with Anti-Malware and Anti-Phishing threat intelligence feeds from Cyveillance, a world leader in cyber intelligence solutions. The combined solution provides Fidelis XPS customers automatic and real-time visibility and control of known malicious threat actors attempting to steal information and compromise computer networks--enabling organizations to prevent cyber attacks with a higher level of automated intelligence sharing and increased situational awareness.

“Networks today are being flooded with new and advanced threats, said Eric Ouellet, Research Vice President, Gartner. “The ability for an organization to add actionable threat intelligence to their network security toolkit gives them an opportunity to get ahead of the threat.”

By bringing real-time threat intelligence into the patented Fidelis XPS architecture, the Deep Session Inspection™ platform, organizations gain greater visibility into and control over their network traffic with reputational knowledge on all 65,535 ports. In addition to the Cyveillance cyber intelligence feeds, the newly released Fidelis XPS Feed Manager function can integrate other data feeds, giving Fidelis XPS customers and partners the ability to further integrate threat data—connecting to threat intelligence sources, either internal or external to the organization—in order to provide dynamic, real-time reputation-based policy updates to their Fidelis XPS sensors.

“As phishing and malware attacks constantly evolve, it is critical to stay ahead of these threats,” said Panos Anastassiadis, COO of Cyveillance. “Our real-time Anti-Phishing and Anti-Malware threat intelligence enhances Fidelis XPS, enabling users to proactively respond to zero-day threats as soon as they are identified - before they can penetrate the network. Fidelis Security Systems is continuously looking to deliver innovative solutions to its customers, and we are pleased to partner with them to address the dynamic nature of today’s cyber threats.”

After an initial complementary three month subscription, Fidelis XPS customers can purchase the Anti-Phishing and Anti-Malware Distribution Feeds for Fidelis XPS, powered by Cyveillance, directly from Fidelis Security Systems through an annual subscription service. The Fidelis XPS Feed Manager is a standard feature available on Fidelis XPS products. The new Fidelis XPS cyber intelligence feed capability includes:

* Fidelis XPS Feed Manager - provides the ability to connect to threat intelligence sources and automatically integrate timely reputational data into Fidelis XPS policy. This real-time threat information allowing an organization to differentiate between trusted sources and known bad actors in Fidelis XPS policy, enabling more granular inspection of network sessions and separate actions based on reputation. Beyond Fidelis XPS feeds, other threat intelligence sources can be accessed via HTTP or FTP with support for XML, CSV, and IP list formats.

* Fidelis XPS Anti-Phishing Feed - an annual subscription service providing a feed of real-time threat intelligence of known fraudulent Web pages. Powered by Cyveillance, the Anti-Phishing Feed provides near real-time updates of systems with fake or copied login pages for banks, brokerages, payment services and other financial services; customer surveys, giveaways and sweepstakes-entry pages. Information collected by bad actors through these pages is used to commit fraud, ID theft, and gain access to enterprise networks, intellectual property and highly sensitive information.

* Fidelis XPS Anti-Malware Distribution Feed - an annual subscription service providing a feed of real-time threat intelligence of systems, Websites, and IP addresses distributing malicious software. Powered by Cyveillance, the Anti-Malware Distribution Feed provides near real-time updates of locations known to deliver a piece of malicious code, as well as the download locations of the malicious binary.

“The newly released Fidelis XPS Feed Manager feature and integration of Cyvelliance cyber intelligence provides a new approach to computer network defense by bringing real-time threat intelligence into the unparalleled Fidelis XPS Deep Session Inspection™ platform,” said Peter George, CEO of Fidelis Security Systems. “Unlike signature-based solutions that are quickly outdated or easy to evade, or reputational data tied to a small number of ports, Fidelis XPS brings real-time reputational knowledge to life for all ports along with the unprecedented visibility and control of network traffic to mitigate today’s advanced and persistent cyber threats.”

Upcoming Webinar

Learn more about the new evolving threats on your network and how to prevent them by attending the “Shaken, Not Stirred: Preventing Cyber Attacks with Actionable Threat Intelligence” Webinar at 1:00 p.m. EST on July 21, 2010. Please visit www.fidelissecurity.com/webinars to register.

About Fidelis Security Systems Fidelis Security Systems provides organizations with the power to leverage their sensitive information while protecting it from data leakage and cyber attacks. Built on a patented deep session inspection™, platform, the Fidelis Extrusion Prevention System' is the industry's only next-generation network security solution with the visibility and control necessary to stop data breaches by uniquely working at the session-level. Fidelis enables their government, military, and commercial enterprise customers around the globe to achieve comprehensive information protection in real time on multi-gigabit speed networks—allowing them to protect content, control application activity, enforce encryption policy, and mitigate threats. Learn more about Fidelis Security Systems by visiting www.FidelisSecurity.com.

About Cyveillance

Cyveillance, a world leader in cyber intelligence, provides an intelligence-led approach to security. Through continuous, comprehensive Internet monitoring and sophisticated intelligence analysis, Cyveillance proactively identifies and eliminates threats to information, infrastructure, individuals and their interactions, enabling its customers to preserve their reputation, revenues, and customer trust. Cyveillance serves the Global 2000 and OEM Data Partners – protecting the majority of the Fortune 50, regional financial institutions nationwide, and more than 100 million global consumers through its partnerships with security and service providers that include Blue Coat, AOL and Microsoft. Cyveillance is a wholly owned subsidiary of QinetiQ North America. For more information, please visit www.cyveillance.com or http://www.qinetiq-na.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Data Leak Week: Billions of Sensitive Files Exposed Online
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/10/2019
Intel Issues Fix for 'Plundervolt' SGX Flaw
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-5252
PUBLISHED: 2019-12-14
There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.
CVE-2019-5235
PUBLISHED: 2019-12-14
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
CVE-2019-5264
PUBLISHED: 2019-12-13
There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition...
CVE-2019-5277
PUBLISHED: 2019-12-13
Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation.
CVE-2019-5254
PUBLISHED: 2019-12-13
Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board m...