VPN
VPN
A Virtual Private Network, or VPN, is a private communications network usually used within a company, or by several different companies or organizations, to communicate over a public network. VPN message traffic is carried on public networking infrastructure (e.g. the Internet) using standard (often insecure) protocols, or over a service provider's network providing VPN service guarded by well defined Service Level Agreement (SLA) between the VPN customer and the VPN service provider.
Definitions provided by Wikipedia - The Free Encyclopedia
VPN Related Products
The GB-Ware is a software firewall powered by GNAT Box System Software certified to ICSA 4.0 Corporate criteria. The GNAT Box System Software was designed from the ground up as an integrated firewall system with interoperability of features, easy installation and remote management. We supply the OS and firewall software - you supply the hardware.
More information
McAfee UTM Firewall (formerly Secure Computing SnapGear) is a complete office network-in-a-box Internet security appliance for small and medium-size businesses (SMBs). It features wide-area networking tools that you would normally only see with enterprise-class devices. Because the last thing SMBs need is another single-purpose security appliance to add to their network.
More information
The GB-250 and GB-250e Firewall UTM Appliances are GTA's entry level systems that provide big security for smaller business offices. Designed and priced to meet the needs of smaller organisations, the GB-250 and GB-250e include the same security and UTM features of our larger enterprise firewall UTM appliances, but scaled to fit the needs of offices with fewer than 50 employees.
More information
Venafi Client Encryption Manager protects information that is stored and transmitted on user devices through centralised encryption management. It automatically configures files and folders, email, VPN, and other applications for encryption based upon centrally defined policies and user identities.
More information
The AppGate Distributed Device Firewall protects windows systems by checking all traffic to and from the network. It can be used as a standalone product or as a companion to the AppGate VPN clients. Accompanied by an AppGate client, it can be configured to allow only one outbound connection, the authorised and encrypted secure tunnel, when connected to an AppGate server.
More information
The 3e-010F-C-2/3e-010F-A-2 Crypto Client software provides advanced interoperable 802.11i wireless data security with AES and 3DES encryption. These advanced security options include the standards as established by FIPS 140-2 Level 1 - the Federal Information Processing Standards mandated by the US Department of Defense for use in wireless environments.
More information
The RA510 Series of rack-mountable proxy appliances provides small to mid-sized sites with the power to extend remote access to employees, partners, and customers while delivering on demand endpoint security and information protection features.
More information
The RA8100 Series of rack-mountable proxy appliances provides large-sized sites with the power to extend remote access to employees, partners, and customers while delivering on demand endpoint security and information protection features.
More information
Intelligent Application Gateway (IAG) is a remote access gateway that boosts productivity by giving mobile and remote workers, partners, and customers easy, flexible, and secure access to virtually any application from a broad range of devices and locations. Using a combination of SSL VPN (secure socket layer virtual private network), a Web application firewall, and endpoint security management, IAG provides employees, partners, vendors, and customers with secure and easy access from a broad range of devices and locations including kiosks, PCs, and mobile devices.
More information
LinkProof is a multi-WAN switch that lets you maximize the effectiveness of your WAN by bypassing bottlenecks and service-provider outages, managing bandwidth consumption, and letting you decide which links are used for which applications and when. It's the only on demand solution that fits your current and future WAN link load balancing needs and lets you effortlessly add, manage and load-balance multiple ISP connections while you mix-and-match VPNs, private and public links for back-up or in response to growing bandwidth needs.
More information
Imprivata OneSign is an easy, smart and affordable appliance that provides breakthrough user authentication and access management to IT networks, applications and Building / IT security. OneSign helps organizations improve security access management and compliance, while maximizing user convenience and productivity.
More information
The Juniper Networks SA series SSL VPN appliances ensure theat remote and mobile employees, customers and partners have anytime, anywhere access to corporate resources and applications.
More information
The Juniper Networks Integrated Security Gateways (ISG) are purpose-built, security solutions that leverage a fourth generation security ASIC, the GigaScreen3, along with high-speed microprocessors to deliver unmatched firewall and VPN performance.
More information
GTA Mobile VPN Client provides the vital ability for remote users to initiate VPN communications with corporate resources. Using VPNs, 'road warriors' or telecommuters can safely access corporate networks from unsecured public networks or un-trusted local networks. A VPN Connection can also be used to connect end users that need a secure 'end user to host' connection to transmit sensitive information over an intranet. GTA Mobile VPN Client used in conjunction with firewall-to-firewall gateway VPN Connection provides a total IPSec VPN solution. GTA Mobile VPN Client meets IPSec standards.
More information
The Check Point Software Blade Architecture supports a complete and increasing selection of Software Blades, each delivering a modular security gateway or security management function. Because Software Blades are modular and moveable, Software Blades enable users to efficiently and quickly tailor Security Gateway and Management functionality to specific and changing security needs. New blades are quickly licensed as needed without the addition of new hardware.
More information
AEP Net is an independently assured encryptor that protects IP traffic across networks. AEP Net provides both data confidentiality and source authentication for network traffic enabling high confidence Virtual Private Network (VPN) communications. AEP's solution has a proven track record of protecting National and International classified networks.
More information
The AEP Net Remote extends the security, functions and features of AEP Net into the remote access domain. Like its big brother the AEP Net Remote provides both data confidentiality and source authentication for IP network traffic.
More information
With Steelhead Mobile, companies of any size can give mobile workers LAN-like access to corporate files and applications no matter where they are, anywhere in the world.
More information
VPN Related Product Families
AEP Networks, the specialist in network and application access security, delivers infrastructure security solutions that are easy to use and manage while offering exceptional value and mission-critical reliability.
More information
VPN Related Industry News
Appliances, standards boost WLAN security When we looked at wireless LAN security last October in a previous Roundup, we painted a fairly bleak picture. At that time, virtual private networks (VPNs) were the best way to fix the well-known vulnerabilities in the Wireless Encryption Protocol (WEP), which guards most wireless LANs. But VPNs cost as much as $1,500 per wireless access point (AP) and often forced you to lock yourself into one vendor's gear.
Since then, we've seen progress on both......
[more] BT says: Protect your network from professional hackers It's not just the warchalkers you need to worry about... BT Openworld has this week thrown its weight behind the fight against 'Warchalking' - the practice of scrawling chalk marks on the outside of buildings with Wi-Fi networks to encourage passers by to surf on companies' unprotected bandwidth.
However, the UK ISP has warned that it's not just bandwidth pirates you need to worry about. Warchalkers have also drawn attention to the very......
[more] VPN, Firewall Sales Set to Climb Worldwide revenue from sales of virtual private network and firewall hardware and software will grow by 31 percent from $668 million in the third quarter of 2002 to $874 million in the third quarter of next year, according to research released Wednesday by Infonetics Research.
Worldwide annual revenue in this market will reach $4.9 billion in 2005, Infonetics said.
A key market driver is the ready availability of low-cost Internet bandwidth which enables......
[more] VPN experts downplay 'splitting' headache At a time when protecting corporate networks is paramount, many users are steering clear of a feature of IP Security VPNs called split tunneling, a move that can give a false sense that remote-access networks are more secure than they really are, experts say.
Split tunneling was created to allow Web surfing and corporate VPN access simultaneously from remote PCs. The benefit of split tunneling is that corporations can conserve bandwidth needed for I......
[more] The Wireless-Security Balancing Act If you choose an EAP that doesn't gain de facto standard status, the access point will be to other EAP clients what a two-hole electrical outlet is to three-pronged plugs. Wireless LANs have been billed as the great security wasteland. But thanks to the 802.11b Wi-Fi community's frenetic activity in the last year, an abundance of good security choices now exist, with more on the way.
Wi-Fi security efforts have focused on encryption and authentication, wi......
[more] Security 2004: How it will shape up Even with growing security budgets and abundant technology choices, 2003 was a mixed year for information security professionals. Internet business processes, new technologies and more regulations combined to impose unique security concerns on overburdened security staffs. What's more, the year was punctuated by numerous malicious code attacks that led to business interruption, constant emergency activity and lots of overtime.
Security will remain a hot to......
[more] Mobility at the cost of security? The ability to log on to the Internet in a cafe or on a train has obvious benefits for workers on the road - but just how secure is it? The mass media has had a lot of fun with wireless security: war driving, virus insertion and bandwidth stealing have all had their day in the sun. Public hot spots are more vulnerable to attack than private networks, where individual users can have their hardware authenticated as permanent network members. This means when you lo......
[more] City sees the benefits of wireless networks Survey shows more businesses are convinced but security is still lax The third annual Wireless Security Survey of London has highlighted a significant increase in the use of wireless networks by businesses.
In the two years since the survey was first undertaken, the number of wireless networks used in the City has increased from 124 in 2001, to 328 in 2002 and 1078 in 2003.
The benefits of the technology appear to have convinced companies, and th......
[more] Opportunities for Wi-Fi hackers on the increase London home to rogue access points IT managers are catching up to the dangers of Wi-Fi, but opportunities for drive-by hackers in London may actually be increasing. New wireless LANs are popping up very fast, and many of them are insecure 'rogue' access points.
This year, only two-thirds of the City's Wi-Fi networks have WEP (wired equivalent privacy), the basic Wi-Fi security standard turned on. That's not a great record, but it is better than l......
[more] Security Flaw Found in Firewall Software Two dangerous software flaws that could become attractive targets for hackers have been discovered in widely used computer-security software made by Check Point Software Technologies Ltd If hackers create programs to exploit the flaws, which security experts found in Check Point's firewall and virtual-private network software, they could wreak havoc on the corporate networks they're designed to protect.
Check Point's firewalls are used to control Inte......
[more] Security Flaw Found in Firewall Software Two dangerous software flaws that could become attractive targets for hackers have been discovered in widely used computer-security software made by Check Point Software Technologies Ltd If hackers create programs to exploit the flaws, which security experts found in Check Point's firewall and virtual-private network software, they could wreak havoc on the corporate networks they're designed to protect.
Check Point's firewalls are used to control Inte......
[more] Vernier WLAN System 'Best Wireless LAN Solution' of 2004 The Vernier gateway IS 6500p wireless local area networks (WLAN) Integrated System earned Technology of the Year Recognition from InfoWorld Magazine. Flexible management and unparalleled scalability earned the wireless local area networks solution the ‘Best Wireless LAN Solution’ 2004 award. Vernier Networks(TM), the leader in secure managed access for the enterprise wireless local area networks (WLAN), announces that the Vernier gateway I......
[more] Through the security looking glass The annual RSA Conference, which just concluded in San Francisco, is the technology industry's premier security event. After covering a half-dozen RSA conferences in the 1990s (including several for CNET News.com), I returned this year for the first time since 1999. Talk about a time warp.
As cybersecurity has become an ever larger concern, the data security industry has mushroomed. But although the lingo has changed from the prespam days, you can divide th......
[more] Security appliances, not software, are way forward IDC study points to new trend. Small businesses are rolling out security appliances, in place of security software, to lower the cost of increasingly complex security requirements, according to a new study.
Spending on server security appliances increased in Western Europe by 24 percent in 2003, with year-on-year growth of 46 percent in the final quarter of the year, according to IDC. Total spending in the region was $402.1 million (£219.4m)......
[more] F5 Networks Makes $29M Security Splash With eyes fixed on the red-hot application security market, Seattle-based F5 Networks (Quote, Chart) will shell out $29 million in cash to acquire firewall specialist MagniFire WebSystems and fold it into a newly created security business unit.
F5 Networks, which markets server appliances to handle load balancing, said the new business unit will handle research and development, marketing, sales and services in the application security market.
The M......
[more] VPN and Firewall Sales Rocket Worldwide Virtual Private Network (VPN) and firewall hardware and software sales jumped 11 per cent to $733m in the first quarter of this year over the last quarter of 2003.
And the market is expected to grow 12 per cent, to $823m, by the first quarter of 2005, according to calculations by Infonetics Research.
The market researcher found that while most VPN vendors reported single-digit growth this quarter, one market leading manufacturer enjoyed a "phenome......
[more] Checkpoint Firewall-1 vulnerability announced VPNs allow for easy identification Security testing company NTA Monitor has today issued a vulnerability warning for the Checkpoint Firewall-1 system – Checkpoint Firewall-1 VPNs are apparently visible to external hackers, which makes it possible for attackers to identify the firewall type and version number.
A fingerprinting technique, developed by NTA Monitor and dubbed IKE Vendor ID fingerprinting, allows the specific version of Firewall-1 to......
[more] Don't abandon using VPN for wireless security too soon Many people use VPN technology to overcome the past shortcomings of wireless security, and they might want to continue doing just that for a while.
The IEEE has approved a new standard for wireless security called 802.11i that is supposed to address the shortcomings of earlier standards, Wired Equivalent Protection (WEP) and Wi-Fi Protected Access (WPA).
Maybe 802.11i will succeed in its goals, but users should consider two things befor......
[more] CyberGuard Makes Offer For Secure Computing The acquisition, valued at just under $300 million, would be CyberGuard's fourth in about a year. Network security vendor CyberGuard Corp. said Monday it has made an offer to acquire Secure Computing Corp.
The acquisition will be a one-for-one stock exchange based on the companies' July 9 closing stock price, CyberGuard said in a statement. According to the statement, the swap would represent a 22% premium for each Secure Computing share. The deal w......
[more] SSL VPNs energise security sales Secure Sockets Layer catches up with IPSec for virtual private networks While IPSec remains the dominant technology used to implement Virtual Private Networks (VPNs), Secure Sockets Layer (SSL) is rapidly gaining mainstream acceptance, with its use nearly doubling in the US between 2004 and 2006, research has claimed.
According to Infonetics Research, VPN adoption in the US will rocket over the next two years.
"By 2006, nearly 70 per cent of respondents' mobile......
[more] SSL making strides against IPSec VPNs Secure Sockets Layer remote-access gear is winning out over IPSec in some businesses because use of browser-based SSL technology can lead to cost savings, simpler administration and easier connections with partners.
Assent, a national equities-trading firm in Hoboken, N.J., lost potential business because it connects customers to Assent servers via IPSec VPNs, says Pankaj Chandhok, director of networking. The security policies of many potential customers......
[more] Happy Anniversary MSBlast A year ago this week, MSBlast stormed onto the Internet, infecting millions of Windows PCs, disrupting business operations, and sending everyone and his uncle scrambling for the patch they should have deployed weeks before.
MSBlast hit the Net August 11, 2003, just 26 days after Microsoft released a fix for the vulnerability the worm exploited. Even though users had nearly a month to get ready -- and were warned ahead of time by security experts to expect a major att......
[more] Hack attacks and spam set to increase IDC warns of the growing importance of enforcing security policies Spam and malicious attacks will rise over the next three years presenting IT departments with bigger security concerns than ever before, says analyst IDC.
IT security spending is set to almost double from 2.5 per cent of overall technology spending to four per cent within the next four years, while spam is will increase from 17 billion emails today to 23 billion by 2007.
'Almost half of ema......
[more] Google Desktop Security Warning Issued Two analysts issued independent warnings today suggesting Google's Desktop Search tool -- released in October -- poses security risks for the enterprise.
The most significant threat is when desktop search is used while connected to a virtual private network (VPN), according to Dana Hendrickson, an analyst with VPN Central.
In a similar alert issued to Meta Group clients, analyst Timothy Hickernell wrote, "Companies must be aware of potential security r......
[more] WLAN Security Adoption Still Trailing Despite Widespread Use of Wireless in the Workplace Around 70 percent of British organisations are either already using or planning to use wireless connectivity as part of everyday business. Yet security remains top of the list when it comes to wireless networking concerns, with more than a third of companies admitting that they would have no way of knowing if their wireless security measures were breached. These are some of the main findings of an independ......
[more] Access all areas Doubts about security have long discouraged many firms from deploying mobile computing. But wireless technology has moved on When many companies find it hard enough to control the IT use of office-based employees, how do you convince them that giving staff remote access is a good idea?
This is the dilemma that faces all notebook, wireless networking and remote-management software manufacturers and resellers. There are a lot of variables to consider. The process of providing a m......
[more] Wi-Fi Alliance to Promote WLAN Security The Wi-Fi alliance will use its pull in the industry to improve security measures in wireless LAN hardware over the next year.
The Austin, Texas, trade organization, which confers the right to use the Wi-Fi label on hardware, plans to increase encryption requirements for certification. But members of the security task groups within the alliance stress that the onus of WLAN security still lies with the customer.
Last fall, the group quietly made support......
[more] Security show tackles online threats The security industry, which is in the business of paranoia, will be looking over its shoulders more frequently at the annual RSA Security Conference this week. With phishing attacks plaguing consumers, viruses showing no signs of abating, and regulations such as the Sarbanes-Oxley Act worrying clients, business has been brisk for security companies.
Yet the continuing rise of online threats underscores the lack of progress in solving corporate and consumer......
[more] CyberGuard to roll out new look central controller Global Command Center, the security policy management system from CyberGuard has had a face-lift for version 3.0, leaving it with a look that promises a more consistent, graphical drag and drop environment for defining and implementing enterprise security policies. The addition of more intuitive GUI is expected to lead to better coordination of the processes managed through the central control system. Global Command Center is built around a qua......
[more] Handheld Security Too Expensive For Enterprise? If your enterprise relies on PDAs and smartphones to get business done, you may be paying too much to secure it, according to a report issued Monday.
An analyst at IT research firm Burton Group found that the cost of a complete set of security products (antivirus, VPN, device security and management) can be higher than the cost of the device itself.
In his research report, "Handheld Device Security," Eric Maiwald surveyed the market of busines......
[more] Fewer permissions are key to Longhorn security Questions remain about Microsoft's plans for a new user privileges model Software engineers who attend Microsoft's annual Windows Hardware Engineering Conference later this month could get their first taste of a new Windows user permissions model that could change the way thousands of programs are developed and run. But as the company prepares for the final Longhorn development push, questions remain about its plans for a new user privileges model......
[more] AEP to enhance its security products at InfoSecurity AEP Networks will announce new enhancements to its network security product range next week at InfoSecurity Europe. The company will also unveil the latest addition of its IP VPN encryptors.
"As underscored by the breadth of our offerings, we'll quite possibly be the only company at Infosecurity with a product mix specialized enough to satisfy the infrastructure security requirements of small- to mid-sized businesses, all the way up to the......
[more] CyberGuard launches wireless security appliance for SMEs CyberGuard Corporation has announced a new all-in-one wireless workgroup security and data access appliance, the CyberGuard SG565, designed to secure the wireless and wired local area networks of small and medium-sized enterprises.
Unifying defences to combat blended threats via a single device combining firewall, intrusion prevention and gateway anti-virus is quickly becoming a requirement for small and medium-sized businesses. CyberGua......
[more] UK.gov warns over VPN crypto flaw Firms using IPsec VPNs for remote access could be vulnerable to hacker attack because of cryptographic weaknesses in key sub-protocols, a UK government UNIRAS alert warns.
The UK's National Infrastructure Security Coordination Centre (NISCC) describes weaknesses in the certain configurations of IPsec VPNs as "high risk". The issue is not product specific: instead it revolves around how systems are set up. Three attacks that apply to certain configurations of I......
[more] Cyberguard brings networking to small businesses Cyberguard is coming out with a box that tries to be the only networking equipment needed in small offices.
Called SG565 the device includes a firewall, VPN support, intrusion protection, anti-virus software, traffic shaping, a five-port Ethernet switch and two USB ports that can support a printer and external storage. In addition to all that, it also includes an 802.11b and g Wi-Fi access point.
A box like this could support a small business......
[more] CyberGuard targets small business with $750 U appliance CyberGuard Corp, a company that has made its name as a supplier of firewalls to big business and the defense sector, is to target small companies with a $750 all-in-one security appliance. Last month the company announced plans for an 'all in one' appliance for small businesses and branch offices later this summer. That unit, the SG565 was described as an $859 appliance that includes firewall and VPN features, anti-virus and intrusion preve......
[more] GTA Announces GB-OS Version 3.7 Global Technology Associates, Inc. (GTA), a worldwide leader in cost-effective network security solutions, today announced the release of GB-OS version 3.7. This latest version is now shipping pre-installed on GTA's family of appliance firewalls - GB-2000, GB-2000e, GB-750, GB-500, GB-250 and GB-250e and GB-Ware, GTA's software firewall.
GB-OS version 3.7 contains numerous new standard features and product enhancements including: innovative Internet load sharin......
[more] CyberGuard Breaks New Ground with Introduction of SG560 Security/WAN Appliance CyberGuard Corporation, a global provider of security solutions that protect the critical assets of the largest and most complex information networks for Global 2000 enterprises and government organizations, today announced the release of a feature-rich, compact, network security and Wide Area Network (WAN) connectivity device designed to secure small and medium businesses and the small branch offices of larger compa......
[more] Defending against LAN phloods The latest buzzword in wireless LAN security involves a group of simultaneous but geographically distributed attacks that target a businesss authentication or network log-in structure.
Dubbed phlooding, the goal is to overload a business's central authentication server, according to wireless LAN security maker AirMagnet, which coined the term.
Company officials say they named it phlooding because it creates floods of incoming authentication requests.
According......
[more] Hacker fear boosts IT security spending Fuelled by increasing fears of virus and hack attacks, global network security appliance and software sales continue to climb steadily, rising four per cent to $1bn between the first and second quarters of this year, according to newly published figures.
The latest Network Security Appliances and Software study from Infonetics Research also predicted that security appliance and software sales will grow by 23 per cent to $1.3bn by the second quarter of 20......
[more] Vernier Networks Extends NAM to Remote Users and VoIP Phones Vernier Networks today announced the addition of the EdgeWall Rx network access management appliance to its EdgeWall product family. EdgeWall Rx extends network access management to remote users, significantly reducing the risk of security threats and intrusions from external devices and limiting access to sensitive assets.
The company also strengthened the entire EdgeWall line by adding support for VoIP phones and bolstering existi......
[more] AppGate Network Security Launches version 7.1 of the AppGate Security Server This latest version of the AppGate server provides new and improved features to support wireless and mobile working.
The ability to synchronize calendar and contacts on mobile devices with MS Exchange over the AppGate secure tunnel has been added. The Exchange synchronization has been tested on the Nokia 9300/9500 and Sony Ericsson P800/P900/P910.
Many companies use VLAN tagging on their networks to segment off wire......
[more] PatchLink Issues Patch Tuesday Preparation Guide PatchLink Corporation, the global leader for security patch and vulnerability management solutions, today issued comprehensive best practice guidelines to help organizations prepare for what has become a notoriously stressful IT day, Patch Tuesday. While Patch Tuesday is often the cause of many late nights testing and applying patches, organizations face a continuous onslaught of vulnerabilities and patches that can adversely affect IT infrastruc......
[more] Akonix Attains Gold Certified Partner Status In Microsoft Partner Program Akonix Systems, Inc., the premier provider of instant messaging (IM) management, development and security products, today announced it has attained Gold Certified status in the Microsoft Partner Program with a competency in both Networking Infrastructure Solutions and Security Solutions, recognizing Akonix's expertise and total impact in the technology marketplace. As a Gold Certified Partner, Akonix has demonstrated expe......
[more] How to calculate the cost of a new security control Working out how much a new security control should cost can be complicated, so here are some tips to help you plan When it comes to identifying, assessing and managing security risks to networks and infrastructures, most organisations have adopted a risk-management approach. The steps of this method are fairly straightforward and generally lead to either acceptance of the risk or implementation of a new security control. Of course, when the sol......
[more] Norwich pioneers free city wi-fi Norwich is pioneering a free wi-fi project which covers three sectors of the UK city and its centre. The £1.1m, 18-month pilot has been live for three weeks and is backed by the East of England Development Agency. Paul Adams, from Norfolk county council said: "It allows people to see the benefit of wireless technology." The city centre, county hall and educational establishments such as the university all have wi-fi access. Mr Adams, director of c......
[more] SnapGear Awarded CRN Test Center's "Recommended" for Securing Wired and Wireless Access for SMEs Secure Computing Corporation, the experts in securing connections between people, applications and networks, today announced that Computer Reseller News (CRN) has awarded the "CRN Test Center Recommended" designation to the SnapGear SG565. The review praises the SG565 for delivering an exceptional all-in-one appliance that secures both wired and wireless access for small- and medium-sized......
[more] Learn about Vista's changes to user security Vista's long-awaited release is getting closer, and Mike Mullins is taking the opportunity to look at some of the changes to user security controls you can expect in Microsoft's newest OS. Get the scoop in this edition of Security Solutions. As the long-awaited release of Windows Vista approaches, it's a good idea to get acquainted with some of the security enhancements we can expect in Microsoft's latest operating system. With Vista, Microsoft has m......
[more] Macdonald Group Boosts Operational Efficiency With Network Security Solution From AppGate Expanding hotel group deploys secure remote access solution for mobile workers and improves IT efficiency Macdonald Hotels and Resorts, the UK's largest privately owned hotel group, has implemented a secure remote access solution from AppGate to enable staff and managers to use laptops to access the corporate network securely from any location.As a result of continued growth, the company, which operates ove......
[more] Microsoft develops new tunneling protocol Microsoft is working on a new tunneling protocol for Vista and Longhorn that will provide secure network access from anywhere on the Net. The Secure Socket Tunneling Protocol (SSTP) creates a VPN tunnel that travels over Secure-HTTP, eliminating issues associated VPN connections based on the Point-to-Point Tunneling Protocol (PPTP) or Layer 2 Tunneling Protocol (L2TP) that can be blocked by some Web proxies, firewalls and Network Address Translation (NA......
[more] Vernier Networks Supports Microsoft Network Access Protection Enforcement in EdgeWall NAC Appliances Vernier Networks, the leading supplier of award-winning network access control (NAC) appliances, today announced support for Microsoft Network Access Protection (NAP) in Vernier's EdgeWall 7000 and 8000 series appliances. Enhancements to Vernier's EdgeWall NAC solutions enable customers using Microsoft Network Policy Server to ensure system health and enforce validated network access policies wi......
[more] Vernier Networks Supports Microsoft Network Access Protection Enforcement in EdgeWall NAC Appliances Vernier Networks, the leading supplier of award-winning network access control (NAC) appliances, today announced support for Microsoft Network Access Protection (NAP) in Vernier's EdgeWall 7000 and 8000 series appliances. Enhancements to Vernier's EdgeWall NAC solutions enable customers using Microsoft Network Policy Server to ensure system health and enforce validated network access policies wi......
[more] Warning over rogue wi-fi security risk Rogue and insecure wi-fi access points are increasingly posing a threat to the security of corporate networks.One of the main worries about wireless security is users unwittingly accessing insecure or malicious wireless networks when they are out of the office, according to a survey this week. And 10 out of the 12-strong silicon.com CIO Jury IT user panel agreed that wi-fi security is a major concern.Gavin Whatrup, group IT director at marketing services c......
[more] 'Evil twin' Wi-Fi access points proliferate There is little consumers can do to protect themselves from hackers eavesdropping on wireless communications The next time you splurge on a double latte and sip it while browsing the Internet via the cafe's Wi-Fi, beware of the "evil twin." That's the term for a Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up by a hacker to eavesdrop on wireless communications among Internet surfer......
[more] Wireless security: Balancing act Organisations need to weigh the convenience of wireless networking against the risks to the integrity of their IT systems. Steve Gold reports.A quick glance around any high-street IT store will reveal that wireless networking - commonly referred to as WiFi - has taken off in a big way. It's now possible to buy a data-accelerated 802.11g WiFi-enabled broadband router for around £50.Suddenly it's possible for an employee of even smaller firms to go out and b......
[more] Laptop security? Never heard of it... Despite rising levels of laptop theft and high-profile instances of data loss, businesses are failing to understand the need to encrypt their hard drives or better protect sensitive data.Research conducted by silicon.com has found worrying levels of insecurity where it comes to laptops, with 63 per cent of respondents saying their company does not encrypt the data on their laptops. Furthermore, 67 per cent of respondents said their companies do not provide......
[more] Laptop users taking more security risks than desktop users Employees that use laptops are taking more security risks than those that use desktops, but both types are taking unnecessary risks, according to the "Trust & Risk in the Workplace Study" from SurfControl. The study, conducted by Dr. Monica Whitty of Queen's University Belfast, was based on a survey of 1,000 mobile and desktop employees in the U.S., Australia, the Netherlands, Singapore and the U.K. The study found that em......
[more] Consumer-tech use threatens corporate security The use of consumer-based technology such as web email, instant messaging, smartphones and games consoles by employees is one of the most significant threats to corporate IT security. Analyst companies Forrester and Gartner have both warned this week that the entrance of consumer technologies into the enterprise is impossible to eliminate and challenges traditional security models.Consumer-based communications tools such as Hotmail, instant messagin......
[more] iPhone, Gmail and blogs - a corporate security nightmare The use of consumer-based technology such as web email, instant messaging, smart phones and games consoles by employees is one of the most significant threats to corporate IT security.Analyst companies Forrester and Gartner have both warned this week that the entrance of consumer technologies into the enterprise is impossible to eliminate and challenges traditional security models.Consumer-based communications tools such as Hotmail, insta......
[more] Sobering Realities of Enforcing NAC: Top 5 Challenges that Solutions Need to Address Network Access Control (NAC, a.k.a. Network Admission Control), has generated a lot of enthusiasm, and correspondingly, a large number of corporate initiatives to address a rapidly evolving network security challenge. NAC was developed to ensure the security of endpoints connecting to the corporate network, which has become an increasingly important issue given the large number of external users, mobile systems......
[more] Researchers say Web apps over Wi-Fi put data at risk Users who access Google Inc.'s Gmail or the Facebook social-networking site over Wi-Fi could be putting their accounts at risk of being hijacked, according to research from Errata Security Inc., a computer security company. It's not just those sites but any rich Web applications that exchange account information with users, including blogging sites such as Blogspot or even software-as-a-service offerings such as those of Salesforce.com Inc.,......
[more] Does compliance make encryption always necessary? Encryption has been around since the days of Caesar, when simplistic ciphers were used to protect communications between Roman generals. A lot has changed since then, but not everything. Encryption has been integral to data protection. Many organisations -- especially larger ones -- still look to encryption to protect sensitive data. Caesar would be proud of the fact that the hundreds of millions of people who use the Internet also use encryption......
[more] Aladdin's eSafe upgraded to halt proxy menace Security vendor Aladdin Knowledge Systems has added an element to its eSafe secure web gateway that it claims can block the operation of 'anonymous' proxies. Anonymous proxies (or anonymisers) are websites that allow users to connect to the Internet through an external website, thereby allowing users to bypass local network security restrictions. This bypass mechanism was originally designed for safe, anonymous Web surfing (for example to access MyS......
[more] Wireless Protocols Learning Guide Ensuring wireless security can still be a big hold-up to the actual deployment or the continued use of a wireless network in the enterprise. This section of the Wireless Protocols Learning Guide covers monitoring and security policies for a wireless network in addition to a discussion of available tools and configurations that enhance wireless security. WLAN technology deployments have increased, and federal regulations (such as HIPAA, Sarbanes Oxley and Gramm-L......
[more] GSS warns over Windows 2000 random number generator flaw A potentially serious flaw in Windows 2000 that can compromise emails, passwords and other details keyed on a PC keyboard has been revealed. "The problem stems from a flaw in the random number generator in Windows 2000. The flaw allows encrypted Web data and email transmissions to be decoded," says David Hobson, managing director of Global Secure Systems (GSS), the IT security specialist and integrator. According to Hobson, thos......
[more] Subverted search sites lead to massive malware attack in progress Trojans, rootkits, password stealers hit users who click on a bad link after a search. A large-scale, coordinated campaign to steer users toward malware- spewing Web sites from Google and other Internet search engines is under way, security researchers said Tuesday. Users searching Google, Yahoo, Microsoft Live Search and other engines with any of hundreds of legitimate phrases -- from the technical "how to cisco router vpn......
[more] VoIP phone phreaked by security hole Researchers have discovered a serious vulnerability in the web interface used to control a commonly-found VoIP phone, SNOM Technology's model 320. Attackers need the IP address of the phone being targeted to start the attack, but assuming they have this they can use a cross-site scripting approach to hack the phone's built-in management interface, allowing a range of unwelcome activities. These include stealing or tampering with phone logs and address book,......
[more] iPhone SDK exceeds developer expectations Apple's iPhone SDK offers far more than many developers expected, according to developers that InfoWorld spoke with after the long-awaited SDK unveiled today. "It looks like this is what everybody wanted," said Tony Meadow, principal at Bear River Associates, a mobile application development vendor. "Apple is doing it the right way." Forrester Research analyst Simon Yates, concurred, saying that the Apple SDK should please three core constituencies: Dev......
[more] HMRC swipes villain award from ISPs The internet has a new villain. Alongside notorious botnets, crime hubs and black-hat hackers can be added a name to strike fear into the hearts of anyone who holds security dear – the UK’s HM Revenue & Customs (HMRC). This is the provocative opinion of the Internet Services Providers' Association (ISPA), which used a gala dinner on 14 March to hand the government service the 'Internet Villain' of the year award for 2007, "for failing to take the protect......
[more] What firewalls do and don’t do Over the last few years, security threats to companies have grown and altered dramatically and so have the defences. Traditional firewalls, installed over three years ago, are often not best suited for current threats and don't protect against a number of newer threats. What firewalls doA firewall is a system designed to prevent unauthorised access to or from a private computer network. Firewalls are frequently used to prevent unauthorised Internet users from acce......
[more] Six burning questions about network security Security issues often seem to smolder more than burn, but these six are certainly capable of lighting a fire under IT professionals at a moment's notice. Handle with care. Is server virtualization worth the risk? The benefits of moving away from traditional servers to virtual-machine (VM) arrangements are the cost savings in hardware consolidation and remarkable flexibility. But less-welcome consequences can be security gaps and virtual-server spraw......
[more] Enterprises, Prepare for iTunes In his keynote address at the Worldwide Developers Conference in San Francisco today, June 9, Apple CEO Steve Jobs confirmed many of the rumors surrounding the next-generation iPhone. While we already knew about the software features of the iPhone 2.0 software (the SDK, App Store, Exchange ActiveSync and Cisco VPN client) from his announcements in March, this time Jobs confirmed that the new hardware will have a 3G radio, integrated GPS and a much more attractive......
[more] Total cost of ownership, ease of management and low initial price are the most important issues for customers choosing UTM appliances Total cost of ownership, ease of management and low initial price are the three most important issues for customers choosing UTM appliances, according to new research by Check Point Software Technologies Ltd. The results of Check Point's recent survey also showed the most desirable and popular functions of UTMs for users, and the relevance of other factors such a......
[more] Small Business A Big Target For Cyber Attacks Once upon a time, most small-to-midsize businesses enjoyed a relatively secure status, free from malicious cyber threats. Not so anymore, experts say. "It used to be that SMBs were not a target just because of how small they were," said Andy Klein, senior product marketing manager, e-mail security division for SonicWall Inc., Sunnyvale, Calif. "So they could put up a Web server and no one would ever see it. But that's changed. Two, t......
[more] This IT shop isn't worried about bandwidth demands from the Olympics The 2008 Olympic Games in Beijing are just a week away. Is your IT department ready to handle the impact on your business from employees downloading online video of the opening ceremonies or the latest gymnastic feat? Some users are already prepared, such as Brunswick Corp., a maker of boats and marine engines and fitness, bowling and billiards equipment. The company is using a technology that enables its 20,000 employees worl......
[more] The University of Exeter deploys Juniper's ethernet solution Juniper Networks has announced that The University of Exeter in the UK has deployed its EX-series ethernet switches as well as MX-series ethernet services routers, integrated security gateway firewall/VPN/intrusion prevention platforms and SSL VPN platforms, to upgrade its campus-wide network infrastructure. According to Juniper Networks, the network infrastructure created by its MX-series and the EX-series running on Junos software,......
[more] AppGate Supports Digital Certs for Mobile VPN AppGate adds support for soft certificates in its mobile VPN clients AppGate's new mobile VPN client now supports soft certificates, enabling improved user authentication with no added complexity for the user. With this development, mobile phones no longer have to be the security exception in the corporate infrastructure and more and more organizations can start to rely on certificates to identify users and to control access to information. The AppGa......
[more] AppGate adds support for soft certificates in its mobile VPN Clients AppGate's new mobile VPN client supports soft certificates, enabling improved user authentication with no added complexity for the user. With this development, mobile phones no longer have to be the security exception in the corporate infrastructure and more and more organizations can start to rely on certificates to identify users and to control access to information. The AppGate mobile client now supports X.509 certificate a......
[more] WiFi is no longer a viable secure connection Global Secure Systems has said that a Russian's firm's use of the latest NVidia graphics cards to accelerate WiFi ‘password recovery' times by up to an astonishing 10,000 per cent proves that WiFi's WPA and WPA2 encryption systems are no longer enough to protect wireless data. David Hobson, managing director of GSS, claimed that companies can no longer view standards-based WiFi transmission as sufficiently secure against eavesdropping to be used with......
[more] How to use public Wi-Fi safely Sandwich chain Pret A Manger became the latest venue to announce free wireless internet access this week. But while public 'hotspots' are growing in number, free bandwidth comes with an element of risk, warns security specialist David Hobson. Once you are associated to an access point, you are on the same network as others connected to the same access point, in the same way as plugging into the same network segment. A simple network discovery will show who else is......
[more] Ignorance of security policy does not exempt from security breaches Most large organizations maintain a detailed corporate security policy document that spells out the “dos and don’ts” of information security. Once the policy is in place, the feeling is of having achieved ‘nine-tenths of the law’, that is, that the organization is in effect ‘covered’. This is a dangerous misconception. Because much like in the world of law and order, while creation of law is fundamental, implementation and enfor......
[more] Check Point to acquire Nokia's security appliance business Check Point Software Technologies announced Monday it plans to acquire the security appliance business of cell phone giant Nokia. With the acquisition, the security software maker plans to use Nokia's security appliance business to broaden its footprint in the security appliance market. Check Point, which is predominately known for its security firewall business, has branched out into the security appliance business over the past five......
[more] Windows 7: Enterprise features explained The lion's share of attention about the Windows 7 beta has been on consumer features. The new taskbar with its jumplists, mouse-hover features, easy navigation and the more controllable user account control are the immediate attention-grabbers. But the under-the-hood, less "sexy" enterprise features of Windows 7 are not as well known. Popular blogger and editor of Supersite for Windows Paul Thurrott recently said in an interview with CIO.com sister site......
[more] Getting network baselining right While simple in concept, network baselining is often misunderstood. Baselining involves recording network traffic and performance, saving it for future reference and/or reviewing it to see traffic patterns. Once baselines are saved, they can be used as a benchmark with which to compare other traffic patterns. The technique provides the network administrator insight into expected behavior on the network and subsequently, the ability to notice changes. People ofte......
[more] Juniper offers multi-vendor threat management Juniper is set to launch software to allows security products from competing vendors to share and analyse log information in order to determine the root cause of network problems and fix them. Called Adaptive Threat Management, the data-sharing software includes upgrades to its SSL VPN and Unified Access Control devices that enable them to publish log information to a UAC server that shares the data with other platforms. The interface between the SS......
[more] UK organisations fail to protect data with encryption More than half of UK public and private sector organisations are still risking data breaches and leaks, because they do not have data encryption in place to secure information on laptops, handheld devices and removable storage media. This is one of the key findings of the second annual UK data security survey by Check Point Software Technologies Ltd. According to the new survey of 120 IT managers and senior IT staff, 49% of respondents said......
[more] Security appliance market set for more expansion The security appliance market in Western Europe is bucking the downward trend for IT after it grew 14.4 percent in 2008, and is forecast to continue to expand this year, albeit at a slower rate. So shows the latest figures from analyst firm IDC, which found that revenue for security appliances in 2008 was $1.48 billion (£1.03bn). That figure is projected to rise to $1.65 billion this year, resulting in about 9.4 percent growth, said Romain......
[more] Three Free, Easy Ways To Protect Your Network Whether the Conficker worm booms or fizzles, take it as a reminder to keep your networks safe. You could spend money on a security consultant--which isn't such a bad investment if helpful--but here are three free tricks to increase your network's security. Use OpenDNSUse OpenDNS Internet traffic gets routed through IP addresses; the text you type as a URL only sits on top of those numbers. Normally, when you type "pcworld.com," it gets ref......
[more] Wireless and wired security: one and the same Some enterprises believe they don't have to concern themselves with wireless security if they don't run sensitive information on their networks. This can be a costly mistake, as Motorola's Ronald van Kleunen explains. In today's competitive economy, we need the power to do business anywhere, anytime. As such, wireless networks are taking over the enterprise. The flexibility and low cost, plus the ability to increase staff productivity, has resulted......
[more] Five ways to tempt and tame Gen Y The Facebook generation can be dream employees - if you know how to manage them. Danny Bradbury offers tips for keeping them under control and productive. They're young, precocious, tech-savvy - and they like shiny stuff. Generation Y knows what it wants, and if managers and employers want to retain their talents, then they'd better give it to them. The newest generation of employees grew up with technologies that appealed to consumers, such as Facebook, MySpac......
[more] Palo Alto adds VPN gateway, traffic shaping to firewalls Palo Alto Networks is adding an SSL VPN gateway and traffic shaping to its firewalls, offering businesses another opportunity to reduce the number of devices they buy and maintain. While Palo Alto's previous software for its appliances supported site-to-site IPSec VPNs, it had no capacity to establish remote-access connections to individual users. PAN 3.0 software uploads SSL VPN agents to remote machines so they can establish VPNs with t......
[more] New devices make hotspots a hacker's paradise Airport lounges, train stations and hotels represent three of the easiest attack vectors for hackers, according to white hat hacker, Chris Gatford. Speaking at IDC's SecurityVision conference today, Gatford said the vast majority of public hotspot users put their organisation's data at risk by connecting without a VPN to the "Linksys global wireless network" - his term for open networks set up in peoples homes that are left unsecured. Gatford, direc......
[more] The 10 dumbest mistakes network managers make When you look at the worst corporate security breaches, it's clear that network managers keep making the same mistakes over and over again, and that many of these mistakes are easy to avoid. In 2008, Verizon Business analyzed 90 security breaches that represented 285 million compromised records. Most of these headline-grabbing incidents involved organized crime finding an unprotected opening into a network and using it to steal credit card data, Soc......
[more] Check Point endpoints get 'sandboxed' browser Check Point customers will this week get their hands on the latest version of the company's endpoint security client, R72, which features a new security-boosting ‘sandbox' browsing mode. The new WebCheck technology in R72 uses a mixture of approaches to keep corporate web browsing within certain safe limits, the company said. These included heuristic security checks based on ‘signatures' of known malware websites, analysis of unknown ones fo......
[more] Watchdog TV show slams hotspot security The BBC's Watchdog programme claims to have exposed security weaknesses in many of the UK's wireless hotspots. The consumer affairs show managed to hack into several accounts and send and receive emails using sophisticated but readily available snooping tools, and a coffee shop Wi-Fi connection. The researchers penetrated the accounts of two audience members and Rav Wilding, an ex-policeman and current Crimewatch presenter. The programme identified hotspo......
[more] H1N1 drives demand for secure remote access The H1N1 pandemic is pushing companies to upgrade their secure remote access capabilities in order to enable more employees to work out of their homes and other remote locations in an emergency. Vendors of remote access technologies are reporting an unexpected increase in demand for their products over the past several months as a result of H1N1-related concerns.
"What companies are really looking for is the ability to provide secure, remote access to......
[more] Does your business really need an office? At the recent Workplace Trends conference, one speaker dared to ask: "Do we even need an office these days?" I thought I'd pick up this contentious ball and run with it. What would happen if a large multi-national company, which I'll call Company X, sold its real estate, dished out laptops and went completely mobile? Their new offices would be at homes and in connected 'third places', all around the city or town. I'm only talking about knowledge workers......
[more] Smartphone: From Threat to Asset "Despite a strict policy to use BlackBerry devices, it seems obvious that many of our employees are using the iPhone for both work and play without the knowledge of IT. Apple has made it easy for them to connect to our email service and today's users are savvy enough to figure out how to configure it, and if they're not, YouTube provides plenty of instruction. How can IT put the genie back in the bottle?" Rather than worrying about bottling up mobile experienc......
[more] Hackers view the holiday season as the ideal time for hacking business computer systems Hackers are ready to take advantage of skeleton staff running IT departments over the holidays. According to Michael Hamelin, chief security architect with Tufin Technologies, the Christmas and New Year - holiday periods are the times when the heavy-duty hackers come out to play. "And whilst you're doing your shopping or putting your feet up, our research shows that the would-be `Neos' of this world stop wat......
[more] Report finds most data breaches are 'utterly preventable' Most security breaches are caused by malware, an SQL injection attack or the exposure of remote access credentials such as a VPN password, according to a report by Verizon Business. Verizon's 2009 Supplemental Data Breach Investigations Report, released today, said that malware such as keyloggers and spyware were responsible for the majority of data breaches.
Mark Goudie, managing principal at Verizon Business, told iTnews that the bigge......
[more] Only one in four companies use hard disk encryption to protect sensitive data on corporate endpoints According to a Check Point global customer survey of businesses on endpoint security trends, the number of remote workers continues to grow and businesses need to expand their IT measures to safeguard the increasing mobile workforce. Over 40% of businesses in the last year have more remote users connecting to the corporate network from home or when travelling, compared to 2008. Check Point disco......
[more] The Top 10 Security Threats in Cyberspace The year 2010 promises to be an action packed year in cyberspace. With the giants of the Internet reporting an unprecedented breach in their networks, it is not farfetched to presume that the next world war could be fought in cyber space! Attacks are now exceedingly covert, complex and targeting specific organizations and no million dollar protective blanket of security product/infrastructure can completely secure your machine. The only weapon you have......
[more] Check Point puts VPN in USB stick Check Point has become the latest vendor to push the USB stick as the road warrior's best friend, announcing a way for business travellers to carry around their office desktop on a single drive. Developed in Check Point's homeland of Israel in collaboration with SanDisk, the new drive, dubbed ‘Abra' (as in ‘Abracadabra'), lets users run a virtualised workspace on any PC they encounter while on the road in a way that firewalls it from that system. Pl......
[more] Apple unveils iPhone OS upgrade Apple, with its forthcoming iPhone OS 4.0, has added more capabilities for enterprises and features such as multitasking, but there will be no change in the company's rejection of Java and Adobe Flash for the platform. In a rollout of the OS Thursday at Apple headquarters in Cupertino, Calif., company CEO Steve Jobs heralded the release of a developer preview of iPhone OS 4.0 available Apple's developer Web page. Users will be able to get the OS this summer.Built......
[more] New data breach system tries user pop-ups Security giant Check Point has announced a data leak prevention (DLP) system with a neat trick up its sleeve. If it detects that sensitive data is being misused, it tells users through pop-ups. The company is convinced that its first DLP system, Check Point DLP, can remove the incredible complexity that it plausibly identifies as a major hurdle to widespread implementation of the technology beyond specific niches.The UserCheck system is designed to let......
[more] Users find the secrets of WAN optimization While the benefits of WAN optimization are well documented - better application performance for example, - finding the right gear can address unrelated business goals. Blue Coat user Michael Shisko, the director of IT for Hitachi Consulting, said his company started looking for WAN optimization gear when it switched from an Internet VPN to a hub-and-spoke MPLS WAN service. Shisko said while 60% to 70% of the company's VPN traffic was ineligible for op......
[more] iPhone 4, iOS 4 offer deeper enterprise support Apple CEO Steve Jobs promised deeper enterprise support with its iPhone 4 and its iOS 4 software, noting that it will offer better data protection, wireless application distribution and support for multiple Exchange e-mail accounts, as well as SSL VPN security. But all of that still might not be enough for some industry analysts to give IT shops a green light for full iPhone deployments, at least when the iPhone is compared with BlackBerry device......
[more] The pros and cons of Windows 7 security Businesses are eyeing a transition to Microsoft Windows 7, and with a wealth of security features that are part of it, it's worth figuring out the good and bad about each of them, says Gartner analyst Neil MacDonald, who notes in some cases, third-party security products might be the better fit. The AppLocker feature in Windows 7 offers an application-control capability that lets the IT manager set up a list of applications allowed to run, said MacDonald......
[more] Why user provisioning matters All it takes is a single employee to bring an organisation's network to its knees. It is time for user provisioning to shine. For too long, IT departments have isolated account provisioning, making it a standalone process, ignoring how destructive a provisioning mistake can be. But user provisioning, the very act of providing the workforce with network access, is absolutely fundamental to an organisation's security and risk posture. There are a plethora of scenario......
[more] Vendors step up cloud maturity efforts A second quarterly report looking at the developing cloud computing marketplace has found that vendors are redoubling their efforts. The report by consultancy BTC Logic found that fears among customers about security, privacy, data integrity and governance still prevail, while big-name vendors have begun to dominate the different market sectors. BTC Logic said that, without addressing these fears, it would be difficult for the market to drive more rapid ra......
[more] A simple guide to wireless network security Employees are exposing personal and professional information unknowingly as they log onto public WiFi hot spots at hotels, airports and coffee shops, experts say. Ryan Crum, former director of information security at PricewaterhouseCoopers Advisory Services, said he has observed unprotected Social Security numbers, corporate financial data and information about mergers and acquisitions circulating on public WiFi networks, particularly in emails.Securit......
[more] Junos Pulse App Enables iPhone Users to Enjoy Secure Remote Access to Enterprise Networks Juniper Networks has announced that the Juniper Networks Junos® Pulse App, that enables anytime, anywhere secure remote access and connectivity to iPhone and iPod touch, is now available on the App Store. Using the Junos Pulse App, the industry's first downloadable VPN app for the iPhone, coupled with the Juniper Networks SA Series SSL VPN Appliances, users can now access any corporate resource from the......
[more] Check Point launches blade for secure remote working Network security firm Check Point has launched a software blade which integrates encryption and SSL VPN capabilities to offer secure access to corporate assets such as email and business apps for remote workers. The Mobile Access Software Blade allows customers to pre-authorise specific mobile applications, providing easy access to these apps via single sign-on. Centralised management and provisioning capabilities ease the workload of IT secur......
[more] How to protect against Firesheep attacks Security experts today suggested ways users can protect themselves against Firesheep, the new Firefox browser add-on that lets amateurs hijack users' access to Facebook, Twitter and other popular services via Wi-Fi. Firesheep adds a sidebar to Mozilla's Firefox browser that shows when anyone on an open network -- such as a coffee shop's Wi-Fi network -- visits an insecure site. A simple double-click gives a hacker instant access to logged-on sites rangin......
[more] Zeus malware targeting Citrix Access Gateway Versions of the infamous Zeus malware have begun harvesting login credentials for network appliances, according to researchers. Security firm Trusteer is reporting the discovery of new code within certain Zeus configuration files that attempts to collect data from Citrix VPN tools. The company said that the code appears to be specific to certain Zeus 2.0 installations and instructs an infected machine to capture and transmit a screenshot of all mouse......
[more] Is a next-generation firewall in your future? The traditional port-based enterprise firewall, now looking less like a guard and more like a pit stop for Internet applications racing in through the often open ports 80 and 443, is slowly losing out to a new generation of brawny, fast, intelligent firewalls. The so called next-generation firewall (NGFW) describes an enterprise firewall/VPN that has the muscle to efficiently perform intrusion prevention sweeps of traffic, as well as have awareness......
[more] Analysis: Hybrid security here to stay Vendors to keep pushing layers of products. The market for on-premise, end-point security software is unlikely to be displaced by a growing focus on security in the cloud, industry experts say. According to Gartner security analyst Rob McMillan, virtualisation and cloud computing were driving an evolution in enterprise security demands. He likened the shift to the advent of the internet, which came with greater information flow - and security risks - than e......
[more] Half of UK public and private sector organisations are at risk of data breaches and losses from portable PCs and devices A Check Point survey of 130 UK IT managers and senior IT staff has revealed that over half of UK public and private sector organisations are at risk of data breaches, losses and leaks from portable PCs and devices. A total of 52% of respondents said they do not use data or device encryption to secure their business laptops, and a further 8% admitted they didn't know if encrypt......
[more] Firewall rules management fine-tunes operations Organizations have been building security into their business infrastructure to avoid incurring additional acquisition and operational costs from standalone security products. Firewall rules management vendors are responding to this demand by prioritizing features that facilitate the integration of security operations with network and IT teams. Security vendors in this segment -- such as AlgoSec, RedSeal, SecurePassage, Skybox, and Tufin that were......
[more] IPhone attack reveals passwords in six minutes Researchers in Germany say they've been able to reveal passwords stored in a locked iPhone in just six minutes and they did it without cracking the phone's passcode. The attack, which requires possession of the phone, targets keychain, Apple's password management system. Passwords for networks and corporate information systems can be revealed if an iPhone or iPad is lost or stolen, said the researchers at the state-sponsored Fraunhofer Institute Sec......
[more] Security Manager's Journal: New firewalls should increase protection This week, my company began deploying new firewalls. The old ones have been in place for more than six years; the new ones will allow us to take advantage of the next generation of features. Today, application-based (Layer 7) firewalls provide far more flexibility than was available before. The methods of inspecting traffic enable us to allow or deny traffic based on a variety of factors. In addition, the firewall we chose, whi......
[more] Ex-Gucci techie fingered for VPN raids A former Gucci network engineer has been accused of executing devastating attacks on the fashion retailer's IT infrastructure after being fired. The Manhattan District Attorney's (DA) office announced on Monday it had indicted 34 year-old Sam Yin for launching the raids on Gucci after being fired in May last year. While still employed at Gucci, he had created a fake identity for an inactive virtual private network (VPN) token. Yin kept the token after le......
[more] Newcastle-under-Lyme selects Becrypt Trusted Client to deliver secure mobile working to its officers Newcastle-under-Lyme Borough council provides services to the borough, which covers 21,096 hectares (Approx. 81 square miles) and has a population of approximately 122,000. There are two main town centres, Newcastle and Kidsgrove. Newcastle-under-Lyme Borough Council has selected Becrypt Trusted Client to deliver secure mobile working to its officers. The Council has ordered 90 licences for Trust......
[more] IT managers still rely on firewalls, yet fail to rework security strategies More than two-thirds of IT decision makers have consolidated their security elements to take advantage of less cost, simplified management and tighter security. A survey of 305 European IT decision makers by Fortinet found that 69 per cent of respondents had consolidated their security elements, while 79 per cent said that they will continue consolidating more security over the next 12 months. Patrice Perche, senior vice......
[more] Security Manager's Journal: Stopping the mobile madness I love my iPad, but I hate what it represents. My iPad is lightweight and easy to carry around, it boots up in less than a minute, its programs launch within seconds, and I can play cool games, watch movies or listen to music when I'm bored. On the downside, if I'm not mobile, I'd still rather use my desktop. Several applications that I use just don't scale on the iPad, and I like a large screen and separate keyboard. But those drawbacks ar......
[more] If you need more information about VPN, please feel free to contact us with your VPN questions using our contact form.
