A Virtual Private Network, or VPN, is a private communications network usually used within a company, or by several different companies or organizations, to communicate over a public network. VPN message traffic is carried on public networking infrastructure (e.g. the Internet) using standard (often insecure) protocols, or over a service provider's network providing VPN service guarded by well defined Service Level Agreement (SLA) between the VPN customer and the VPN service provider.
The GB-Ware is a software firewall powered by GNAT Box® System Software certified to ICSA 4.0 Corporate criteria. The GNAT Box System Software was designed from the ground up as an integrated firewall system with interoperability of features, easy installation and remote management. We supply the OS and firewall software – you supply the hardware.
McAfee UTM Firewall (formerly Secure Computing SnapGear) is a complete office network-in-a-box Internet security appliance for small and medium-size businesses (SMBs). It features wide-area networking tools that you would normally only see with enterprise-class devices. Because the last thing SMBs need is another single-purpose security appliance to add to their network.
The GB-250 and GB-250e Firewall UTM Appliances are GTA’s entry level systems that provide big security for smaller business offices. Designed and priced to meet the needs of smaller organisations, the GB-250 and GB-250e include the same security and UTM features of our larger enterprise firewall UTM appliances, but scaled to fit the needs of offices with fewer than 50 employees.
The GB-2000 Firewall UTM Appliance Family provides powerful enterprise level security and comprehensive features that are easy to implement and administer. The GB-2000, GB-2000e and GB-2000X are all designed for SME organizations that desire a single, dedicated appliance to handle their complex network environments and multiple Internet security zones.
AppGate Mobility Server is an easy, secure and cost-efficient way of making information accessible via mobile devices, without the need of rebuilding infrastructure.
The AppGate Distributed Device Firewall protects windows systems by checking all traffic to and from the network. It can be used as a standalone product or as a companion to the AppGate VPN clients. Accompanied by an AppGate client, it can be configured to allow only one outbound connection, the authorised and encrypted secure tunnel, when connected to an AppGate server.
Uniquely designed for mid-sized businesses, the GB-800 and GB-800e Firewall UTM Appliances provide corporate level Internet security and unified threat management (UTM) features. Comprehensive firewall and unified threat management features combine into a single, dedicated appliance for completed Internet security.
The 3e-010F-C-2/3e-010F-A-2 Crypto Client software provides advanced interoperable 802.11i wireless data security with AES and 3DES encryption. These advanced security options include the standards as established by FIPS 140-2 Level 1 - the Federal Information Processing Standards mandated by the US Department of Defense for use in wireless environments.
The RA510 Series of rack-mountable proxy appliances provides small to mid-sized sites with the power to extend remote access to employees, partners, and customers while delivering on demand endpoint security and information protection features.
The RA8100 Series of rack-mountable proxy appliances provides large-sized sites with the power to extend remote access to employees, partners, and customers while delivering on demand endpoint security and information protection features.
BorderWare SteelGate is the leading application-based firewall appliance for perimeter network security to prevent attacks, block malicious behavior, control network traffic, and centrally manage the perimeter defense infrastructure in a single security solution. BorderWare SteelGate provides organisations with the ability to prevent network risks, enforce policies and ensure operational efficiencies.
Intelligent Application Gateway (IAG) is a remote access gateway that boosts productivity by giving mobile and remote workers, partners, and customers easy, flexible, and secure access to virtually any application from a broad range of devices and locations. Using a combination of SSL VPN (secure socket layer virtual private network), a Web application firewall, and endpoint security management, IAG provides employees, partners, vendors, and customers with secure and easy access from a broad range of devices and locations including kiosks, PCs, and mobile devices.
As part of the industry's leading high-performance networking solution, the Juniper Networks DX application acceleration platform delivers a complete data center acceleration solution for Web-enabled and IP-based business applications.
At the heart of Juniper's Unified Access Control (UAC) solution is the Infranet Controller, a hardened policy management server that leverages Juniper's proven, best-in-class security and access control products. The Infranet Controller can push the UAC Agent down to the endpoint to collect user authentication, endpoint security state and device location information; or, alternatively, can gather that same information in agent-less mode.
At the heart of Juniper's Unified Access Control (UAC) solution is the Infranet Controller, a hardened policy management server that leverages Juniper's proven, best-in-class security and access control products. The Infranet Controller can push the UAC Agent down to the endpoint to collect user authentication, endpoint security state and device location information; or, alternatively, can gather that same information in agent-less mode.
The Juniper Networks Secure Services Gateway 5 (SSG 5) and Secure Services Gateway 20 (SSG 20) are purpose-built security appliances that deliver a perfect blend of performance, security and LAN\WAN connectivity for small branch office and small business deployments. Traffic flowing in and out of the branch office can be protected from worms, Spyware, Trojans, and malware by a complete set of Universal Threat Management (UTM) security features including Stateful firewall, IPSec VPN, IPS, Antivirus (includes Anti-Spyware, Anti-Adware, Anti-Phishing), Anti-Spam, and Web Filtering.
Designed for the fixed telecommuter / small remote office environment, the Juniper Networks NetScreen-Hardware Security Client (NetScreen-HSC) solution is the most cost-effective integrated security solution for the fixed telecommuter and small remote office. Combining a complete set of best-in-class UTM security features including IPS, Antivirus (includes Anti-Spyware, Anti-Adware, Anti-Phishing), Anti-Spam, and Web Filtering allow the NetScreen-5GT to defend the network against worms, Spyware, Trojans, malware and other emerging attacks, it can easily be deployed and managed in large deployments using Rapid Deployment capabilities within Juniper Networks NetScreen-Security Manager to eliminate expensive staging steps.
Juniper Networks offers a robust set of enterprise-class network security solutions for small businesses and branch offices alike. These include the Juniper Networks NetScreen-5GT, NetScreen-5GT ADSL, NetScreen-5GT Wireless and NetScreen-5XT appliances. These cost-effective, remote office security products are fully capable of securing a small remote office, retail outlet, or broadband telecommuter.
The Juniper Networks Secure Services Gateway 140 (SSG 140) is a purpose-built security appliance that delivers a perfect blend of performance, security, routing, and LAN\WAN connectivity for medium sized branch offices and business deployments. Traffic flowing in and out of the branch office is protected from worms, Spyware, Trojans, and malware by a complete set of Unified Threat Management (UTM) security features including Stateful firewall, IPSec VPN, IPS, Antivirus (includes Anti-Spyware, Anti-Adware, Anti-Phishing), Anti-Spam, and Web Filtering.
The Juniper Networks Secure Services Gateway (SSG) 300 Series represents a new class of purpose-built security appliance that delivers a perfect mix of performance, security and LAN/WAN connectivity for regional and branch office deployments. Traffic flowing in and out of the branch office is protected from worms, Spyware, Trojans, and malware by a complete set of Unified Threat Management (UTM) security features including Stateful firewall, IPSec VPN, IPS, Antivirus (includes Anti-Spyware, Anti-Adware, Anti-Phishing), Anti-Spam, and Web Filtering.
The Juniper Networks Secure Services Gateway 500 Series (SSG) represents a new class of purpose-built security appliance that delivers a perfect mix of performance, security and LAN/WAN connectivity for regional and branch office deployments. Traffic flowing in and out of the branch office is protected from worms, Spyware, Trojans, and malware by a complete set of Unified Threat Management (UTM) security features including Stateful firewall, IPSec VPN, IPS, Antivirus (includes Anti-Spyware, Anti-Adware, Anti-Phishing), Anti-Spam, and Web Filtering.
The Juniper Networks NetScreen-25 and NetScreen-50 appliances are integrated security devices for enterprise branch and remote offices, as well as small to medium-sized companies. They provide solutions for perimeter security with multiple DMZs, VPNs for wireless LAN security, or protection of internal networks. The NetScreen-25 appliance offers 100 Mbps of firewall and 20 Mbps of 3DES or AES VPN performance, with support for 32,000 concurrent sessions, and 125 VPN tunnels. The NetScreen-50 appliance is a high-performance integrated security appliance, offering 170 Mbps of firewall and 45 Mbps of 3DES or AES VPN performance, with support for 64,000 concurrent sessions, and 500 VPN tunnels.
LinkProof is a multi-WAN switch that lets you maximize the effectiveness of your WAN by bypassing bottlenecks and service-provider outages, managing bandwidth consumption, and letting you decide which links are used for which applications and when. It’s the only on demand solution that fits your current and future WAN link load balancing needs and lets you effortlessly add, manage and load-balance multiple ISP connections while you mix-and-match VPNs, private and public links for back-up or in response to growing bandwidth needs.
Imprivata OneSign is an easy, smart and affordable appliance that provides breakthrough user authentication and access management to IT networks, applications and Building / IT security. OneSign helps organizations improve security access management and compliance, while maximizing user convenience and productivity.
The Juniper Networks Secure Access 700 (SA 700) SSL VPN appliance provides small to medium enterprises a secure, cost-effective way to deploy remote access to the corporate network. Because the SA 700 uses Secure Sockets Layer (SSL) to provide encrypted transport, it enables instant remote access from just a Web browser. This clientless architecture eliminates the high cost of installing, configuring, and maintaining client software on every device, significantly reducing the total cost of ownership versus traditional VPN solutions. SSL delivery also eliminates the Network Address Translation (NAT) and firewall traversal issues encountered with traditional remote access products, allowing your remote users reliable and ubiquitous access from external networks such as home or hotels.
The Juniper Networks Secure Access 2000 (SA 2000) SSL VPN enables small- to medium-sized companies to deploy cost-effective remote and extranet access, as well as intranet security. Users can access the corporate network and applications from any standard Web browser. The SA 2000 uses SSL, the security protocol found in all standard Web browsers, as a secure access transport mechanism. The use of SSL eliminates the need for client-software deployment, changes to internal servers, and costly ongoing maintenance.
The Juniper Networks Secure Access 6000 (SA 6000) SSL VPN appliances is designed for medium to large enterprises and features best-in-class performance, scalability, and redundancy for organizations with high-volume secure access and authorization requirements. The SA 6000 hardware platform is designed to scale to the largest enterprise deployments and to optimize application delivery, with available options that include redundant hot swappable hard disks, power supplies and fans, as well as GBIC-based multiple Ethernet ports for redundant or meshed configurations. The SA 6000 appliance also features a state-of-the-art SSL acceleration chipset to speed CPU-intensive encrypt/decrypt processes, as well as built in compression for all traffic.
The Juniper Networks Secure Access 6000 SP is the industry's first SSL VPN platform with comprehensive virtualization designed to enable Service Providers (SPs) to deliver network-based SSL VPN services to multiple enterprises of any size from a single appliance/cluster. Combining Juniper Networks expertise in working with Service Providers with the industry-leading Instant Virtual Extranet (IVE) platform, the Secure Access 6000 SP platform provides SPs with a sophisticated, end-to-end virtualization framework that is optimized for highly available and highly scalable network-based SSL VPN managed services.
Using industry recognized stateful detection and prevention techniques, Juniper Networks IDP provides zero-day protection against worms, Trojans, spyware, keyloggers, and other malware from penetrating the network and spreading from already infected users to others. In addition to protecting networks against attacks, Juniper Networks IDP provides information on rogue servers as well as types and versions of applications and operating systems that may have unknowingly been added to the network. Combined with granular level of control such as rate limiting, not only can administrators control the access of specific applications, but they can now ensure business critical applications receive a predictable quality of service.
The Juniper Networks Integrated Security Gateways (ISG) are purpose-built, security solutions that leverage a fourth generation security ASIC, the GigaScreen3, along with high-speed microprocessors to deliver unmatched firewall and VPN performance. The Juniper Networks ISG 1000 and ISG 2000 are ideally suited for securing enterprise, carrier and data center environments where advanced applications such as VoIP and streaming media dictate consistent, scalable performance. Integrating best-in-class Deep Inspection firewall, VPN and DoS solutions, the ISG 1000 and ISG 2000 enable secure, reliable connectivity along with network and application-level protection for critical, high-traffic network segments.
The Juniper Networks NetScreen-200 series includes two enterprise network products: the NetScreen-204 appliance with four 10/100 interfaces, and the NetScreen-208 appliance with eight 10/100 interfaces. Together, they are among the most versatile security appliances available today, easily integrating into many different environments, including medium to large enterprise networks, offices, e-business sites, data centers, and carrier infrastructures. Complete with either four or eight auto-sensing 10/100 Base-T Ethernet ports, the NetScreen-200 series performs firewall functions at wire speed (375 Mbps). Even the most computationally intense applications, such as 3DES and AES encryption, are performed at speeds up to 175 Mbps. In addition to physical interface density, the NetScreen-200 series optionally supports virtualization, including VLAN support and additional custom security zones and virtual routers.
The Juniper Networks NetScreen-500 system is a purpose-built, integrated security system that provides a flexible, high-performance solution for medium and large enterprise central sites and service providers. The NetScreen-500 network security system integrates firewall, DoS, VPN, and traffic-management functionality in a low-profile, modular chassis. It provides high levels of total throughput for firewall and VPN plus support for virtual systems and security zones. Its flexible and resilient hardware architecture incorporates modular physical interfaces, redundant power supplies, fans, and high-availability interfaces. The NetScreen-500 system is well suited to match the peak load and strong deterrence requirements of the most demanding environments.
GTA Mobile VPN Client provides the vital ability for remote users to initiate VPN communications with corporate resources. Using VPNs, "road warriors" or telecommuters can safely access corporate networks from unsecured public networks or un-trusted local networks. A VPN Connection can also be used to connect end users that need a secure "end user to host" connection to transmit sensitive information over an intranet. GTA Mobile VPN Client used in conjunction with firewall-to-firewall gateway VPN Connection provides a total IPSec VPN solution. GTA Mobile VPN Client meets IPSec standards.
The WSA secure access solution enables remote access from diverse endpoints through a single point of entry to almost any business application and file share, while enforcing user authentication and authorisation over a policy-defined application-layer connection.
The Check Point Software Blade Architecture supports a complete and increasing selection of Software Blades, each delivering a modular security gateway or security management function. Because Software Blades are modular and moveable, Software Blades enable users to efficiently and quickly tailor Security Gateway and Management functionality to specific and changing security needs. New blades are quickly licensed as needed without the addition of new hardware.
The Alcatel-Lucent OmniAccess 3500 Nonstop Laptop Guardian is a secure, always-on 3G wireless platform that allows enterprise IT managers to track, troubleshoot and manage mobile laptops 24/7, even when they are powered off or offline.
AEP Net is an independently assured encryptor that protects IP traffic across networks. AEP Net provides both data confidentiality and source authentication for network traffic enabling high confidence Virtual Private Network (VPN) communications. AEP's solution has a proven track record of protecting National and International classified networks.
The AEP Net Remote extends the security, functions and features of AEP Net into the remote access domain. Like its big brother the AEP Net Remote provides both data confidentiality and source authentication for IP network traffic.
AEP Networks, the specialist in network and application access security, delivers infrastructure security solutions that are easy to use and manage while offering exceptional value and mission-critical reliability.
Appliances, standards boost WLAN security When we looked at wireless LAN security last October in a previous Roundup, we painted a fairly bleak picture. At that time, virtual private networks (VPNs) were the best way to fix the well-known vulnerabilities in the Wireless Encryption Protocol (WEP), which guards most wireless LANs. But VPNs cost as much as $1,500 per wireless access point (AP) and often forced you to lock yourself into one vendor's gear.
Since then, we've seen progress on both...... [more]
BT says: Protect your network from professional hackers It's not just the warchalkers you need to worry about... BT Openworld has this week thrown its weight behind the fight against 'Warchalking' - the practice of scrawling chalk marks on the outside of buildings with Wi-Fi networks to encourage passers by to surf on companies' unprotected bandwidth.
However, the UK ISP has warned that it's not just bandwidth pirates you need to worry about. Warchalkers have also drawn attention to the very...... [more]
VPN, Firewall Sales Set to Climb Worldwide revenue from sales of virtual private network and firewall hardware and software will grow by 31 percent from $668 million in the third quarter of 2002 to $874 million in the third quarter of next year, according to research released Wednesday by Infonetics Research.
Worldwide annual revenue in this market will reach $4.9 billion in 2005, Infonetics said.
A key market driver is the ready availability of low-cost Internet bandwidth which enables...... [more]
VPN experts downplay 'splitting' headache At a time when protecting corporate networks is paramount, many users are steering clear of a feature of IP Security VPNs called split tunneling, a move that can give a false sense that remote-access networks are more secure than they really are, experts say.
Split tunneling was created to allow Web surfing and corporate VPN access simultaneously from remote PCs. The benefit of split tunneling is that corporations can conserve bandwidth needed for I...... [more]
The Wireless-Security Balancing Act If you choose an EAP that doesn't gain de facto standard status, the access point will be to other EAP clients what a two-hole electrical outlet is to three-pronged plugs. Wireless LANs have been billed as the great security wasteland. But thanks to the 802.11b Wi-Fi community's frenetic activity in the last year, an abundance of good security choices now exist, with more on the way.
Wi-Fi security efforts have focused on encryption and authentication, wi...... [more]
Security 2004: How it will shape up Even with growing security budgets and abundant technology choices, 2003 was a mixed year for information security professionals. Internet business processes, new technologies and more regulations combined to impose unique security concerns on overburdened security staffs. What's more, the year was punctuated by numerous malicious code attacks that led to business interruption, constant emergency activity and lots of overtime.
Security will remain a hot to...... [more]
Mobility at the cost of security? The ability to log on to the Internet in a cafe or on a train has obvious benefits for workers on the road - but just how secure is it? The mass media has had a lot of fun with wireless security: war driving, virus insertion and bandwidth stealing have all had their day in the sun. Public hot spots are more vulnerable to attack than private networks, where individual users can have their hardware authenticated as permanent network members. This means when you lo...... [more]
City sees the benefits of wireless networks Survey shows more businesses are convinced but security is still lax The third annual Wireless Security Survey of London has highlighted a significant increase in the use of wireless networks by businesses.
In the two years since the survey was first undertaken, the number of wireless networks used in the City has increased from 124 in 2001, to 328 in 2002 and 1078 in 2003.
The benefits of the technology appear to have convinced companies, and th...... [more]
Opportunities for Wi-Fi hackers on the increase London home to rogue access points IT managers are catching up to the dangers of Wi-Fi, but opportunities for drive-by hackers in London may actually be increasing. New wireless LANs are popping up very fast, and many of them are insecure 'rogue' access points.
This year, only two-thirds of the City's Wi-Fi networks have WEP (wired equivalent privacy), the basic Wi-Fi security standard turned on. That's not a great record, but it is better than l...... [more]
Security Flaw Found in Firewall Software Two dangerous software flaws that could become attractive targets for hackers have been discovered in widely used computer-security software made by Check Point Software Technologies Ltd If hackers create programs to exploit the flaws, which security experts found in Check Point's firewall and virtual-private network software, they could wreak havoc on the corporate networks they're designed to protect.
Check Point's firewalls are used to control Inte...... [more]
Security Flaw Found in Firewall Software Two dangerous software flaws that could become attractive targets for hackers have been discovered in widely used computer-security software made by Check Point Software Technologies Ltd If hackers create programs to exploit the flaws, which security experts found in Check Point's firewall and virtual-private network software, they could wreak havoc on the corporate networks they're designed to protect.
Check Point's firewalls are used to control Inte...... [more]
Vernier WLAN System 'Best Wireless LAN Solution' of 2004 The Vernier gateway IS 6500p wireless local area networks (WLAN) Integrated System earned Technology of the Year Recognition from InfoWorld Magazine. Flexible management and unparalleled scalability earned the wireless local area networks solution the ‘Best Wireless LAN Solution’ 2004 award. Vernier Networks(TM), the leader in secure managed access for the enterprise wireless local area networks (WLAN), announces that the Vernier gateway I...... [more]
Through the security looking glass The annual RSA Conference, which just concluded in San Francisco, is the technology industry's premier security event. After covering a half-dozen RSA conferences in the 1990s (including several for CNET News.com), I returned this year for the first time since 1999. Talk about a time warp.
As cybersecurity has become an ever larger concern, the data security industry has mushroomed. But although the lingo has changed from the prespam days, you can divide th...... [more]
Security appliances, not software, are way forward IDC study points to new trend. Small businesses are rolling out security appliances, in place of security software, to lower the cost of increasingly complex security requirements, according to a new study.
Spending on server security appliances increased in Western Europe by 24 percent in 2003, with year-on-year growth of 46 percent in the final quarter of the year, according to IDC. Total spending in the region was $402.1 million (£219.4m)...... [more]
F5 Networks Makes $29M Security Splash With eyes fixed on the red-hot application security market, Seattle-based F5 Networks (Quote, Chart) will shell out $29 million in cash to acquire firewall specialist MagniFire WebSystems and fold it into a newly created security business unit.
F5 Networks, which markets server appliances to handle load balancing, said the new business unit will handle research and development, marketing, sales and services in the application security market.
The M...... [more]
VPN and Firewall Sales Rocket Worldwide Virtual Private Network (VPN) and firewall hardware and software sales jumped 11 per cent to $733m in the first quarter of this year over the last quarter of 2003.
And the market is expected to grow 12 per cent, to $823m, by the first quarter of 2005, according to calculations by Infonetics Research.
The market researcher found that while most VPN vendors reported single-digit growth this quarter, one market leading manufacturer enjoyed a "phenome...... [more]
Checkpoint Firewall-1 vulnerability announced VPNs allow for easy identification Security testing company NTA Monitor has today issued a vulnerability warning for the Checkpoint Firewall-1 system – Checkpoint Firewall-1 VPNs are apparently visible to external hackers, which makes it possible for attackers to identify the firewall type and version number.
A fingerprinting technique, developed by NTA Monitor and dubbed IKE Vendor ID fingerprinting, allows the specific version of Firewall-1 to...... [more]
Don't abandon using VPN for wireless security too soon Many people use VPN technology to overcome the past shortcomings of wireless security, and they might want to continue doing just that for a while.
The IEEE has approved a new standard for wireless security called 802.11i that is supposed to address the shortcomings of earlier standards, Wired Equivalent Protection (WEP) and Wi-Fi Protected Access (WPA).
Maybe 802.11i will succeed in its goals, but users should consider two things befor...... [more]
CyberGuard Makes Offer For Secure Computing The acquisition, valued at just under $300 million, would be CyberGuard's fourth in about a year. Network security vendor CyberGuard Corp. said Monday it has made an offer to acquire Secure Computing Corp.
The acquisition will be a one-for-one stock exchange based on the companies' July 9 closing stock price, CyberGuard said in a statement. According to the statement, the swap would represent a 22% premium for each Secure Computing share. The deal w...... [more]
SSL VPNs energise security sales Secure Sockets Layer catches up with IPSec for virtual private networks While IPSec remains the dominant technology used to implement Virtual Private Networks (VPNs), Secure Sockets Layer (SSL) is rapidly gaining mainstream acceptance, with its use nearly doubling in the US between 2004 and 2006, research has claimed.
According to Infonetics Research, VPN adoption in the US will rocket over the next two years.
"By 2006, nearly 70 per cent of respondents' mobile...... [more]
SSL making strides against IPSec VPNs Secure Sockets Layer remote-access gear is winning out over IPSec in some businesses because use of browser-based SSL technology can lead to cost savings, simpler administration and easier connections with partners.
Assent, a national equities-trading firm in Hoboken, N.J., lost potential business because it connects customers to Assent servers via IPSec VPNs, says Pankaj Chandhok, director of networking. The security policies of many potential customers...... [more]
Happy Anniversary MSBlast A year ago this week, MSBlast stormed onto the Internet, infecting millions of Windows PCs, disrupting business operations, and sending everyone and his uncle scrambling for the patch they should have deployed weeks before.
MSBlast hit the Net August 11, 2003, just 26 days after Microsoft released a fix for the vulnerability the worm exploited. Even though users had nearly a month to get ready -- and were warned ahead of time by security experts to expect a major att...... [more]
Hack attacks and spam set to increase IDC warns of the growing importance of enforcing security policies Spam and malicious attacks will rise over the next three years presenting IT departments with bigger security concerns than ever before, says analyst IDC.
IT security spending is set to almost double from 2.5 per cent of overall technology spending to four per cent within the next four years, while spam is will increase from 17 billion emails today to 23 billion by 2007.
'Almost half of ema...... [more]
Google Desktop Security Warning Issued Two analysts issued independent warnings today suggesting Google's Desktop Search tool -- released in October -- poses security risks for the enterprise.
The most significant threat is when desktop search is used while connected to a virtual private network (VPN), according to Dana Hendrickson, an analyst with VPN Central.
In a similar alert issued to Meta Group clients, analyst Timothy Hickernell wrote, "Companies must be aware of potential security r...... [more]
WLAN Security Adoption Still Trailing Despite Widespread Use of Wireless in the Workplace Around 70 percent of British organisations are either already using or planning to use wireless connectivity as part of everyday business. Yet security remains top of the list when it comes to wireless networking concerns, with more than a third of companies admitting that they would have no way of knowing if their wireless security measures were breached. These are some of the main findings of an independ...... [more]
Access all areas Doubts about security have long discouraged many firms from deploying mobile computing. But wireless technology has moved on When many companies find it hard enough to control the IT use of office-based employees, how do you convince them that giving staff remote access is a good idea?
This is the dilemma that faces all notebook, wireless networking and remote-management software manufacturers and resellers. There are a lot of variables to consider. The process of providing a m...... [more]
Wi-Fi Alliance to Promote WLAN Security The Wi-Fi alliance will use its pull in the industry to improve security measures in wireless LAN hardware over the next year.
The Austin, Texas, trade organization, which confers the right to use the Wi-Fi label on hardware, plans to increase encryption requirements for certification. But members of the security task groups within the alliance stress that the onus of WLAN security still lies with the customer.
Last fall, the group quietly made support...... [more]
Security show tackles online threats The security industry, which is in the business of paranoia, will be looking over its shoulders more frequently at the annual RSA Security Conference this week. With phishing attacks plaguing consumers, viruses showing no signs of abating, and regulations such as the Sarbanes-Oxley Act worrying clients, business has been brisk for security companies.
Yet the continuing rise of online threats underscores the lack of progress in solving corporate and consumer...... [more]
CyberGuard to roll out new look central controller Global Command Center, the security policy management system from CyberGuard has had a face-lift for version 3.0, leaving it with a look that promises a more consistent, graphical drag and drop environment for defining and implementing enterprise security policies. The addition of more intuitive GUI is expected to lead to better coordination of the processes managed through the central control system. Global Command Center is built around a qua...... [more]
Handheld Security Too Expensive For Enterprise? If your enterprise relies on PDAs and smartphones to get business done, you may be paying too much to secure it, according to a report issued Monday.
An analyst at IT research firm Burton Group found that the cost of a complete set of security products (antivirus, VPN, device security and management) can be higher than the cost of the device itself.
In his research report, "Handheld Device Security," Eric Maiwald surveyed the market of busines...... [more]
Fewer permissions are key to Longhorn security Questions remain about Microsoft's plans for a new user privileges model Software engineers who attend Microsoft's annual Windows Hardware Engineering Conference later this month could get their first taste of a new Windows user permissions model that could change the way thousands of programs are developed and run. But as the company prepares for the final Longhorn development push, questions remain about its plans for a new user privileges model...... [more]
AEP to enhance its security products at InfoSecurity AEP Networks will announce new enhancements to its network security product range next week at InfoSecurity Europe. The company will also unveil the latest addition of its IP VPN encryptors.
"As underscored by the breadth of our offerings, we'll quite possibly be the only company at Infosecurity with a product mix specialized enough to satisfy the infrastructure security requirements of small- to mid-sized businesses, all the way up to the...... [more]
CyberGuard launches wireless security appliance for SMEs CyberGuard Corporation has announced a new all-in-one wireless workgroup security and data access appliance, the CyberGuard SG565, designed to secure the wireless and wired local area networks of small and medium-sized enterprises.
Unifying defences to combat blended threats via a single device combining firewall, intrusion prevention and gateway anti-virus is quickly becoming a requirement for small and medium-sized businesses. CyberGua...... [more]
UK.gov warns over VPN crypto flaw Firms using IPsec VPNs for remote access could be vulnerable to hacker attack because of cryptographic weaknesses in key sub-protocols, a UK government UNIRAS alert warns.
The UK's National Infrastructure Security Coordination Centre (NISCC) describes weaknesses in the certain configurations of IPsec VPNs as "high risk". The issue is not product specific: instead it revolves around how systems are set up. Three attacks that apply to certain configurations of I...... [more]
Cyberguard brings networking to small businesses Cyberguard is coming out with a box that tries to be the only networking equipment needed in small offices.
Called SG565 the device includes a firewall, VPN support, intrusion protection, anti-virus software, traffic shaping, a five-port Ethernet switch and two USB ports that can support a printer and external storage. In addition to all that, it also includes an 802.11b and g Wi-Fi access point.
A box like this could support a small business...... [more]
CyberGuard targets small business with $750 U appliance CyberGuard Corp, a company that has made its name as a supplier of firewalls to big business and the defense sector, is to target small companies with a $750 all-in-one security appliance. Last month the company announced plans for an 'all in one' appliance for small businesses and branch offices later this summer. That unit, the SG565 was described as an $859 appliance that includes firewall and VPN features, anti-virus and intrusion preve...... [more]
GTA Announces GB-OS Version 3.7 Global Technology Associates, Inc. (GTA), a worldwide leader in cost-effective network security solutions, today announced the release of GB-OS version 3.7. This latest version is now shipping pre-installed on GTA's family of appliance firewalls - GB-2000, GB-2000e, GB-750, GB-500, GB-250 and GB-250e and GB-Ware, GTA's software firewall.
GB-OS version 3.7 contains numerous new standard features and product enhancements including: innovative Internet load sharin...... [more]
CyberGuard Breaks New Ground with Introduction of SG560 Security/WAN Appliance CyberGuard Corporation, a global provider of security solutions that protect the critical assets of the largest and most complex information networks for Global 2000 enterprises and government organizations, today announced the release of a feature-rich, compact, network security and Wide Area Network (WAN) connectivity device designed to secure small and medium businesses and the small branch offices of larger compa...... [more]
Defending against LAN phloods The latest buzzword in wireless LAN security involves a group of simultaneous but geographically distributed attacks that target a businesss authentication or network log-in structure.
Dubbed phlooding, the goal is to overload a business's central authentication server, according to wireless LAN security maker AirMagnet, which coined the term.
Company officials say they named it phlooding because it creates floods of incoming authentication requests.
According...... [more]
Hacker fear boosts IT security spending Fuelled by increasing fears of virus and hack attacks, global network security appliance and software sales continue to climb steadily, rising four per cent to $1bn between the first and second quarters of this year, according to newly published figures.
The latest Network Security Appliances and Software study from Infonetics Research also predicted that security appliance and software sales will grow by 23 per cent to $1.3bn by the second quarter of 20...... [more]
Vernier Networks Extends NAM to Remote Users and VoIP Phones Vernier Networks today announced the addition of the EdgeWall Rx network access management appliance to its EdgeWall product family. EdgeWall Rx extends network access management to remote users, significantly reducing the risk of security threats and intrusions from external devices and limiting access to sensitive assets.
The company also strengthened the entire EdgeWall line by adding support for VoIP phones and bolstering existi...... [more]
AppGate Network Security Launches version 7.1 of the AppGate Security Server This latest version of the AppGate server provides new and improved features to support wireless and mobile working.
The ability to synchronize calendar and contacts on mobile devices with MS Exchange over the AppGate secure tunnel has been added. The Exchange synchronization has been tested on the Nokia 9300/9500 and Sony Ericsson P800/P900/P910.
Many companies use VLAN tagging on their networks to segment off wire...... [more]
PatchLink Issues Patch Tuesday Preparation Guide PatchLink Corporation, the global leader for security patch and vulnerability management solutions, today issued comprehensive best practice guidelines to help organizations prepare for what has become a notoriously stressful IT day, Patch Tuesday. While Patch Tuesday is often the cause of many late nights testing and applying patches, organizations face a continuous onslaught of vulnerabilities and patches that can adversely affect IT infrastruc...... [more]
Akonix Attains Gold Certified Partner Status In Microsoft Partner Program Akonix Systems, Inc., the premier provider of instant messaging (IM) management, development and security products, today announced it has attained Gold Certified status in the Microsoft Partner Program with a competency in both Networking Infrastructure Solutions and Security Solutions, recognizing Akonix's expertise and total impact in the technology marketplace. As a Gold Certified Partner, Akonix has demonstrated expe...... [more]
How to calculate the cost of a new security control Working out how much a new security control should cost can be complicated, so here are some tips to help you plan When it comes to identifying, assessing and managing security risks to networks and infrastructures, most organisations have adopted a risk-management approach. The steps of this method are fairly straightforward and generally lead to either acceptance of the risk or implementation of a new security control. Of course, when the sol...... [more]
Norwich pioneers free city wi-fi Norwich is pioneering a free wi-fi project which covers three sectors of the UK city and its centre. The £1.1m, 18-month pilot has been live for three weeks and is backed by the East of England Development Agency. Paul Adams, from Norfolk county council said: "It allows people to see the benefit of wireless technology." The city centre, county hall and educational establishments such as the university all have wi-fi access. Mr Adams, director of c...... [more]
SnapGear Awarded CRN Test Center's "Recommended" for Securing Wired and Wireless Access for SMEs Secure Computing Corporation, the experts in securing connections between people, applications and networks, today announced that Computer Reseller News (CRN) has awarded the "CRN Test Center Recommended" designation to the SnapGear SG565. The review praises the SG565 for delivering an exceptional all-in-one appliance that secures both wired and wireless access for small- and medium-sized...... [more]
Learn about Vista's changes to user security Vista's long-awaited release is getting closer, and Mike Mullins is taking the opportunity to look at some of the changes to user security controls you can expect in Microsoft's newest OS. Get the scoop in this edition of Security Solutions. As the long-awaited release of Windows Vista approaches, it's a good idea to get acquainted with some of the security enhancements we can expect in Microsoft's latest operating system. With Vista, Microsoft has m...... [more]
Macdonald Group Boosts Operational Efficiency With Network Security Solution From AppGate Expanding hotel group deploys secure remote access solution for mobile workers and improves IT efficiency Macdonald Hotels and Resorts, the UK's largest privately owned hotel group, has implemented a secure remote access solution from AppGate to enable staff and managers to use laptops to access the corporate network securely from any location.As a result of continued growth, the company, which operates ove...... [more]
Microsoft develops new tunneling protocol Microsoft is working on a new tunneling protocol for Vista and Longhorn that will provide secure network access from anywhere on the Net. The Secure Socket Tunneling Protocol (SSTP) creates a VPN tunnel that travels over Secure-HTTP, eliminating issues associated VPN connections based on the Point-to-Point Tunneling Protocol (PPTP) or Layer 2 Tunneling Protocol (L2TP) that can be blocked by some Web proxies, firewalls and Network Address Translation (NA...... [more]
Vernier Networks Supports Microsoft Network Access Protection Enforcement in EdgeWall NAC Appliances Vernier Networks, the leading supplier of award-winning network access control (NAC) appliances, today announced support for Microsoft Network Access Protection (NAP) in Vernier's EdgeWall 7000 and 8000 series appliances. Enhancements to Vernier's EdgeWall NAC solutions enable customers using Microsoft Network Policy Server to ensure system health and enforce validated network access policies wi...... [more]
Vernier Networks Supports Microsoft Network Access Protection Enforcement in EdgeWall NAC Appliances Vernier Networks, the leading supplier of award-winning network access control (NAC) appliances, today announced support for Microsoft Network Access Protection (NAP) in Vernier's EdgeWall 7000 and 8000 series appliances. Enhancements to Vernier's EdgeWall NAC solutions enable customers using Microsoft Network Policy Server to ensure system health and enforce validated network access policies wi...... [more]
Warning over rogue wi-fi security risk Rogue and insecure wi-fi access points are increasingly posing a threat to the security of corporate networks.One of the main worries about wireless security is users unwittingly accessing insecure or malicious wireless networks when they are out of the office, according to a survey this week. And 10 out of the 12-strong silicon.com CIO Jury IT user panel agreed that wi-fi security is a major concern.Gavin Whatrup, group IT director at marketing services c...... [more]
'Evil twin' Wi-Fi access points proliferate There is little consumers can do to protect themselves from hackers eavesdropping on wireless communications The next time you splurge on a double latte and sip it while browsing the Internet via the cafe's Wi-Fi, beware of the "evil twin." That's the term for a Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up by a hacker to eavesdrop on wireless communications among Internet surfer...... [more]
Wireless security: Balancing act Organisations need to weigh the convenience of wireless networking against the risks to the integrity of their IT systems. Steve Gold reports.A quick glance around any high-street IT store will reveal that wireless networking - commonly referred to as WiFi - has taken off in a big way. It's now possible to buy a data-accelerated 802.11g WiFi-enabled broadband router for around £50.Suddenly it's possible for an employee of even smaller firms to go out and b...... [more]
Laptop security? Never heard of it... Despite rising levels of laptop theft and high-profile instances of data loss, businesses are failing to understand the need to encrypt their hard drives or better protect sensitive data.Research conducted by silicon.com has found worrying levels of insecurity where it comes to laptops, with 63 per cent of respondents saying their company does not encrypt the data on their laptops. Furthermore, 67 per cent of respondents said their companies do not provide...... [more]
Laptop users taking more security risks than desktop users Employees that use laptops are taking more security risks than those that use desktops, but both types are taking unnecessary risks, according to the "Trust & Risk in the Workplace Study" from SurfControl. The study, conducted by Dr. Monica Whitty of Queen's University Belfast, was based on a survey of 1,000 mobile and desktop employees in the U.S., Australia, the Netherlands, Singapore and the U.K. The study found that em...... [more]
Consumer-tech use threatens corporate security The use of consumer-based technology such as web email, instant messaging, smartphones and games consoles by employees is one of the most significant threats to corporate IT security. Analyst companies Forrester and Gartner have both warned this week that the entrance of consumer technologies into the enterprise is impossible to eliminate and challenges traditional security models.Consumer-based communications tools such as Hotmail, instant messagin...... [more]
iPhone, Gmail and blogs - a corporate security nightmare The use of consumer-based technology such as web email, instant messaging, smart phones and games consoles by employees is one of the most significant threats to corporate IT security.Analyst companies Forrester and Gartner have both warned this week that the entrance of consumer technologies into the enterprise is impossible to eliminate and challenges traditional security models.Consumer-based communications tools such as Hotmail, insta...... [more]
Sobering Realities of Enforcing NAC: Top 5 Challenges that Solutions Need to Address Network Access Control (NAC, a.k.a. Network Admission Control), has generated a lot of enthusiasm, and correspondingly, a large number of corporate initiatives to address a rapidly evolving network security challenge. NAC was developed to ensure the security of endpoints connecting to the corporate network, which has become an increasingly important issue given the large number of external users, mobile systems...... [more]
Researchers say Web apps over Wi-Fi put data at risk Users who access Google Inc.'s Gmail or the Facebook social-networking site over Wi-Fi could be putting their accounts at risk of being hijacked, according to research from Errata Security Inc., a computer security company. It's not just those sites but any rich Web applications that exchange account information with users, including blogging sites such as Blogspot or even software-as-a-service offerings such as those of Salesforce.com Inc.,...... [more]
Does compliance make encryption always necessary? Encryption has been around since the days of Caesar, when simplistic ciphers were used to protect communications between Roman generals. A lot has changed since then, but not everything. Encryption has been integral to data protection. Many organisations -- especially larger ones -- still look to encryption to protect sensitive data. Caesar would be proud of the fact that the hundreds of millions of people who use the Internet also use encryption...... [more]
Aladdin's eSafe upgraded to halt proxy menace Security vendor Aladdin Knowledge Systems has added an element to its eSafe secure web gateway that it claims can block the operation of 'anonymous' proxies. Anonymous proxies (or anonymisers) are websites that allow users to connect to the Internet through an external website, thereby allowing users to bypass local network security restrictions. This bypass mechanism was originally designed for safe, anonymous Web surfing (for example to access MyS...... [more]
Wireless Protocols Learning Guide Ensuring wireless security can still be a big hold-up to the actual deployment or the continued use of a wireless network in the enterprise. This section of the Wireless Protocols Learning Guide covers monitoring and security policies for a wireless network in addition to a discussion of available tools and configurations that enhance wireless security. WLAN technology deployments have increased, and federal regulations (such as HIPAA, Sarbanes Oxley and Gramm-L...... [more]
GSS warns over Windows 2000 random number generator flaw A potentially serious flaw in Windows 2000 that can compromise emails, passwords and other details keyed on a PC keyboard has been revealed. "The problem stems from a flaw in the random number generator in Windows 2000. The flaw allows encrypted Web data and email transmissions to be decoded," says David Hobson, managing director of Global Secure Systems (GSS), the IT security specialist and integrator. According to Hobson, thos...... [more]
Subverted search sites lead to massive malware attack in progress Trojans, rootkits, password stealers hit users who click on a bad link after a search. A large-scale, coordinated campaign to steer users toward malware- spewing Web sites from Google and other Internet search engines is under way, security researchers said Tuesday. Users searching Google, Yahoo, Microsoft Live Search and other engines with any of hundreds of legitimate phrases -- from the technical "how to cisco router vpn...... [more]
VoIP phone phreaked by security hole Researchers have discovered a serious vulnerability in the web interface used to control a commonly-found VoIP phone, SNOM Technology's model 320. Attackers need the IP address of the phone being targeted to start the attack, but assuming they have this they can use a cross-site scripting approach to hack the phone's built-in management interface, allowing a range of unwelcome activities. These include stealing or tampering with phone logs and address book,...... [more]
iPhone SDK exceeds developer expectations Apple's iPhone SDK offers far more than many developers expected, according to developers that InfoWorld spoke with after the long-awaited SDK unveiled today. "It looks like this is what everybody wanted," said Tony Meadow, principal at Bear River Associates, a mobile application development vendor. "Apple is doing it the right way." Forrester Research analyst Simon Yates, concurred, saying that the Apple SDK should please three core constituencies: Dev...... [more]
HMRC swipes villain award from ISPs The internet has a new villain. Alongside notorious botnets, crime hubs and black-hat hackers can be added a name to strike fear into the hearts of anyone who holds security dear – the UK’s HM Revenue & Customs (HMRC). This is the provocative opinion of the Internet Services Providers' Association (ISPA), which used a gala dinner on 14 March to hand the government service the 'Internet Villain' of the year award for 2007, "for failing to take the protect...... [more]
What firewalls do and don’t do Over the last few years, security threats to companies have grown and altered dramatically and so have the defences. Traditional firewalls, installed over three years ago, are often not best suited for current threats and don't protect against a number of newer threats. What firewalls doA firewall is a system designed to prevent unauthorised access to or from a private computer network. Firewalls are frequently used to prevent unauthorised Internet users from acce...... [more]
Six burning questions about network security Security issues often seem to smolder more than burn, but these six are certainly capable of lighting a fire under IT professionals at a moment's notice. Handle with care. Is server virtualization worth the risk? The benefits of moving away from traditional servers to virtual-machine (VM) arrangements are the cost savings in hardware consolidation and remarkable flexibility. But less-welcome consequences can be security gaps and virtual-server spraw...... [more]
Enterprises, Prepare for iTunes In his keynote address at the Worldwide Developers Conference in San Francisco today, June 9, Apple CEO Steve Jobs confirmed many of the rumors surrounding the next-generation iPhone. While we already knew about the software features of the iPhone 2.0 software (the SDK, App Store, Exchange ActiveSync and Cisco VPN client) from his announcements in March, this time Jobs confirmed that the new hardware will have a 3G radio, integrated GPS and a much more attractive...... [more]
Total cost of ownership, ease of management and low initial price are the most important issues for customers choosing UTM appliances Total cost of ownership, ease of management and low initial price are the three most important issues for customers choosing UTM appliances, according to new research by Check Point Software Technologies Ltd. The results of Check Point's recent survey also showed the most desirable and popular functions of UTMs for users, and the relevance of other factors such a...... [more]
Small Business A Big Target For Cyber Attacks Once upon a time, most small-to-midsize businesses enjoyed a relatively secure status, free from malicious cyber threats. Not so anymore, experts say. "It used to be that SMBs were not a target just because of how small they were," said Andy Klein, senior product marketing manager, e-mail security division for SonicWall Inc., Sunnyvale, Calif. "So they could put up a Web server and no one would ever see it. But that's changed. Two, t...... [more]
This IT shop isn't worried about bandwidth demands from the Olympics The 2008 Olympic Games in Beijing are just a week away. Is your IT department ready to handle the impact on your business from employees downloading online video of the opening ceremonies or the latest gymnastic feat? Some users are already prepared, such as Brunswick Corp., a maker of boats and marine engines and fitness, bowling and billiards equipment. The company is using a technology that enables its 20,000 employees worl...... [more]
The University of Exeter deploys Juniper's ethernet solution Juniper Networks has announced that The University of Exeter in the UK has deployed its EX-series ethernet switches as well as MX-series ethernet services routers, integrated security gateway firewall/VPN/intrusion prevention platforms and SSL VPN platforms, to upgrade its campus-wide network infrastructure. According to Juniper Networks, the network infrastructure created by its MX-series and the EX-series running on Junos software,...... [more]
AppGate Supports Digital Certs for Mobile VPN AppGate adds support for soft certificates in its mobile VPN clients AppGate's new mobile VPN client now supports soft certificates, enabling improved user authentication with no added complexity for the user. With this development, mobile phones no longer have to be the security exception in the corporate infrastructure and more and more organizations can start to rely on certificates to identify users and to control access to information. The AppGa...... [more]
AppGate adds support for soft certificates in its mobile VPN Clients AppGate's new mobile VPN client supports soft certificates, enabling improved user authentication with no added complexity for the user. With this development, mobile phones no longer have to be the security exception in the corporate infrastructure and more and more organizations can start to rely on certificates to identify users and to control access to information. The AppGate mobile client now supports X.509 certificate a...... [more]
WiFi is no longer a viable secure connection Global Secure Systems has said that a Russian's firm's use of the latest NVidia graphics cards to accelerate WiFi ‘password recovery' times by up to an astonishing 10,000 per cent proves that WiFi's WPA and WPA2 encryption systems are no longer enough to protect wireless data. David Hobson, managing director of GSS, claimed that companies can no longer view standards-based WiFi transmission as sufficiently secure against eavesdropping to be used with...... [more]
How to use public Wi-Fi safely Sandwich chain Pret A Manger became the latest venue to announce free wireless internet access this week. But while public 'hotspots' are growing in number, free bandwidth comes with an element of risk, warns security specialist David Hobson. Once you are associated to an access point, you are on the same network as others connected to the same access point, in the same way as plugging into the same network segment. A simple network discovery will show who else is...... [more]
Ignorance of security policy does not exempt from security breaches Most large organizations maintain a detailed corporate security policy document that spells out the “dos and don’ts” of information security. Once the policy is in place, the feeling is of having achieved ‘nine-tenths of the law’, that is, that the organization is in effect ‘covered’. This is a dangerous misconception. Because much like in the world of law and order, while creation of law is fundamental, implementation and enfor...... [more]
Check Point to acquire Nokia's security appliance business Check Point Software Technologies announced Monday it plans to acquire the security appliance business of cell phone giant Nokia. With the acquisition, the security software maker plans to use Nokia's security appliance business to broaden its footprint in the security appliance market. Check Point, which is predominately known for its security firewall business, has branched out into the security appliance business over the past five...... [more]
Windows 7: Enterprise features explained The lion's share of attention about the Windows 7 beta has been on consumer features. The new taskbar with its jumplists, mouse-hover features, easy navigation and the more controllable user account control are the immediate attention-grabbers. But the under-the-hood, less "sexy" enterprise features of Windows 7 are not as well known. Popular blogger and editor of Supersite for Windows Paul Thurrott recently said in an interview with CIO.com sister site...... [more]
Getting network baselining right While simple in concept, network baselining is often misunderstood. Baselining involves recording network traffic and performance, saving it for future reference and/or reviewing it to see traffic patterns. Once baselines are saved, they can be used as a benchmark with which to compare other traffic patterns. The technique provides the network administrator insight into expected behavior on the network and subsequently, the ability to notice changes. People ofte...... [more]
Juniper offers multi-vendor threat management Juniper is set to launch software to allows security products from competing vendors to share and analyse log information in order to determine the root cause of network problems and fix them. Called Adaptive Threat Management, the data-sharing software includes upgrades to its SSL VPN and Unified Access Control devices that enable them to publish log information to a UAC server that shares the data with other platforms. The interface between the SS...... [more]
UK organisations fail to protect data with encryption More than half of UK public and private sector organisations are still risking data breaches and leaks, because they do not have data encryption in place to secure information on laptops, handheld devices and removable storage media. This is one of the key findings of the second annual UK data security survey by Check Point Software Technologies Ltd. According to the new survey of 120 IT managers and senior IT staff, 49% of respondents said...... [more]
Security appliance market set for more expansion The security appliance market in Western Europe is bucking the downward trend for IT after it grew 14.4 percent in 2008, and is forecast to continue to expand this year, albeit at a slower rate. So shows the latest figures from analyst firm IDC, which found that revenue for security appliances in 2008 was $1.48 billion (£1.03bn). That figure is projected to rise to $1.65 billion this year, resulting in about 9.4 percent growth, said Romain...... [more]
Three Free, Easy Ways To Protect Your Network Whether the Conficker worm booms or fizzles, take it as a reminder to keep your networks safe. You could spend money on a security consultant--which isn't such a bad investment if helpful--but here are three free tricks to increase your network's security. Use OpenDNSUse OpenDNS Internet traffic gets routed through IP addresses; the text you type as a URL only sits on top of those numbers. Normally, when you type "pcworld.com," it gets ref...... [more]
Wireless and wired security: one and the same Some enterprises believe they don't have to concern themselves with wireless security if they don't run sensitive information on their networks. This can be a costly mistake, as Motorola's Ronald van Kleunen explains. In today's competitive economy, we need the power to do business anywhere, anytime. As such, wireless networks are taking over the enterprise. The flexibility and low cost, plus the ability to increase staff productivity, has resulted...... [more]
Five ways to tempt and tame Gen Y The Facebook generation can be dream employees - if you know how to manage them. Danny Bradbury offers tips for keeping them under control and productive. They're young, precocious, tech-savvy - and they like shiny stuff. Generation Y knows what it wants, and if managers and employers want to retain their talents, then they'd better give it to them. The newest generation of employees grew up with technologies that appealed to consumers, such as Facebook, MySpac...... [more]
Palo Alto adds VPN gateway, traffic shaping to firewalls Palo Alto Networks is adding an SSL VPN gateway and traffic shaping to its firewalls, offering businesses another opportunity to reduce the number of devices they buy and maintain. While Palo Alto's previous software for its appliances supported site-to-site IPSec VPNs, it had no capacity to establish remote-access connections to individual users. PAN 3.0 software uploads SSL VPN agents to remote machines so they can establish VPNs with t...... [more]
New devices make hotspots a hacker's paradise Airport lounges, train stations and hotels represent three of the easiest attack vectors for hackers, according to white hat hacker, Chris Gatford. Speaking at IDC's SecurityVision conference today, Gatford said the vast majority of public hotspot users put their organisation's data at risk by connecting without a VPN to the "Linksys global wireless network" - his term for open networks set up in peoples homes that are left unsecured. Gatford, direc...... [more]
The 10 dumbest mistakes network managers make When you look at the worst corporate security breaches, it's clear that network managers keep making the same mistakes over and over again, and that many of these mistakes are easy to avoid. In 2008, Verizon Business analyzed 90 security breaches that represented 285 million compromised records. Most of these headline-grabbing incidents involved organized crime finding an unprotected opening into a network and using it to steal credit card data, Soc...... [more]
Check Point endpoints get 'sandboxed' browser Check Point customers will this week get their hands on the latest version of the company's endpoint security client, R72, which features a new security-boosting ‘sandbox' browsing mode. The new WebCheck technology in R72 uses a mixture of approaches to keep corporate web browsing within certain safe limits, the company said. These included heuristic security checks based on ‘signatures' of known malware websites, analysis of unknown ones fo...... [more]
Watchdog TV show slams hotspot security The BBC's Watchdog programme claims to have exposed security weaknesses in many of the UK's wireless hotspots. The consumer affairs show managed to hack into several accounts and send and receive emails using sophisticated but readily available snooping tools, and a coffee shop Wi-Fi connection. The researchers penetrated the accounts of two audience members and Rav Wilding, an ex-policeman and current Crimewatch presenter. The programme identified hotspo...... [more]
H1N1 drives demand for secure remote access The H1N1 pandemic is pushing companies to upgrade their secure remote access capabilities in order to enable more employees to work out of their homes and other remote locations in an emergency. Vendors of remote access technologies are reporting an unexpected increase in demand for their products over the past several months as a result of H1N1-related concerns.
"What companies are really looking for is the ability to provide secure, remote access to...... [more]
Does your business really need an office? At the recent Workplace Trends conference, one speaker dared to ask: "Do we even need an office these days?" I thought I'd pick up this contentious ball and run with it. What would happen if a large multi-national company, which I'll call Company X, sold its real estate, dished out laptops and went completely mobile? Their new offices would be at homes and in connected 'third places', all around the city or town. I'm only talking about knowledge workers...... [more]
Smartphone: From Threat to Asset "Despite a strict policy to use BlackBerry devices, it seems obvious that many of our employees are using the iPhone for both work and play without the knowledge of IT. Apple has made it easy for them to connect to our email service and today's users are savvy enough to figure out how to configure it, and if they're not, YouTube provides plenty of instruction. How can IT put the genie back in the bottle?" Rather than worrying about bottling up mobile experienc...... [more]
Hackers view the holiday season as the ideal time for hacking business computer systems Hackers are ready to take advantage of skeleton staff running IT departments over the holidays. According to Michael Hamelin, chief security architect with Tufin Technologies, the Christmas and New Year - holiday periods are the times when the heavy-duty hackers come out to play. "And whilst you're doing your shopping or putting your feet up, our research shows that the would-be `Neos' of this world stop wat...... [more]
Report finds most data breaches are 'utterly preventable' Most security breaches are caused by malware, an SQL injection attack or the exposure of remote access credentials such as a VPN password, according to a report by Verizon Business. Verizon's 2009 Supplemental Data Breach Investigations Report, released today, said that malware such as keyloggers and spyware were responsible for the majority of data breaches.
Mark Goudie, managing principal at Verizon Business, told iTnews that the bigge...... [more]
Only one in four companies use hard disk encryption to protect sensitive data on corporate endpoints According to a Check Point global customer survey of businesses on endpoint security trends, the number of remote workers continues to grow and businesses need to expand their IT measures to safeguard the increasing mobile workforce. Over 40% of businesses in the last year have more remote users connecting to the corporate network from home or when travelling, compared to 2008. Check Point disco...... [more]
The Top 10 Security Threats in Cyberspace The year 2010 promises to be an action packed year in cyberspace. With the giants of the Internet reporting an unprecedented breach in their networks, it is not farfetched to presume that the next world war could be fought in cyber space! Attacks are now exceedingly covert, complex and targeting specific organizations and no million dollar protective blanket of security product/infrastructure can completely secure your machine. The only weapon you have...... [more]
Check Point puts VPN in USB stick Check Point has become the latest vendor to push the USB stick as the road warrior's best friend, announcing a way for business travellers to carry around their office desktop on a single drive. Developed in Check Point's homeland of Israel in collaboration with SanDisk, the new drive, dubbed ‘Abra' (as in ‘Abracadabra'), lets users run a virtualised workspace on any PC they encounter while on the road in a way that firewalls it from that system. Pl...... [more]
If you need more information about VPN, please feel free to contact us with your VPN questions using our contact form.
