Kaspersky Lab, announced the launch of Kasperskyasia.com, a new corporate site created especially for the Asia-Pacific region. The new site has been designed specially for Kaspersky Lab’s customers and partners in the 26 countries of its Asia-Pacific region that covers countries such as China, India, Australia, South Korea, Malaysia, Indonesia, Thailand, Singapore and the Philippines.

Kasperskyasia.com will enable local users to obtain information about the company’s products and regional marketing events in the format most convenient for them. Kaspersky Lab’s knowledge base and forum are available in English and Chinese, and visitors to the site can get immediate technical support via local contacts. Official Kaspersky Lab offices have now been opened in all key regions around the world. Last year alone, the company opened offices in Australia, Canada, Austria, Switzerland, Malaysia, Turkey, Romania and the United Arab Emirates as well as its headquarters for the Asia-Pacific region in Hong Kong.

Back to Top

RSA announced enhancements to RSA enVision, its market-leading single, integrated 3-in-1 log management solution for Security Information and Event Management (SIEM). The RSA enVision 4.0 platform is designed to simplify compliance, enhance the efficiency and effectiveness of security operations and risk mitigation, and optimize IT and network operations through the automated collection, analysis, alerting, auditing, reporting and storage of IT log data.

The latest release of RSA enVision contains enhancements that allow customers to assign risk values to certain threats and enable IT organizations to fine-tune the effectiveness of security policies, processes and resources. These enhancements are designed to help customers reduce security incident response time and improve the efficiency and productivity of their security operations personnel. Additional new features include integration with common configuration management and vulnerability assessment solutions, which providing regular threat and vulnerability information, to ease the process of importing accurate and up-to-date asset and event data and mapping it to current threats. It also enhances alerting capabilities to notify analysts when high risk vulnerabilities are discovered, or when attackers try to exploit those vulnerabilities.

Back to Top

WatchGuard Technologies announced the results of an in-depth, independent lab test of the WatchGuard Firebox X Peak 8500 UTM appliance, which was tested by Miercom and recently published as a cover story in Communications News. Testing focused on both effectiveness of the solution as well as performance in terms of throughput and blocking.

As stated in the Communications News feature, "Comprehensive security provision is asking a lot of one box, especially at enterprise level demand. Three of the four tested units failed to block many of the security threats delivered by the three security effectiveness test systems. The WatchGuard Firebox Peak X 8500e was the exception and performed well on all security effectiveness tests."

The BreakingPoint system delivered a strike level 5 test that included exploits, network worms, denial-of-service attack, reconnaissance attacks, Trojan horse and backdoor intrusions. The complete Miercom Lab Testing Summary Report of the WatchGuard appliance is available at:

ttp://www.watchguard.com/miercom. The complete Communications News review is available at: http://tinyurl.com/cudjnb.

Back to Top

IT security and control firm Sophos has warned Apple Mac users to be on their guard against websites hosting malicious code designed to infect their systems. The advice follows the discovery of a new version of the OSX/RSPlug Trojan horse that is being distributed via a legitimate-looking website offering HDTV software.

Sophos notes that the criminal gang behind this malware attack is targeting Windows computers as well as Mac OS X. "Windows users shouldn't be feeling smug about this attack against Mac users. If you visit the website from a Windows computer, it will serve up a malicious Windows executable from the Zlob family of malware rather than the RSPlug-F Mac OS X Trojan horse. By targeting both platforms with their malicious website, the hackers can kill two birds with one stone," explained Cluley. "Once a piece of malware like this is in place on your computer, it can do whatever the hacker wants it to do. Mac users are gambling with the security of their data if they believe they are somehow magically immune from threats that Windows users have lived with everyday for years."

Sophos experts have determined that the RSPlug-F Trojan horse changes DNS Settings on Apple Mac computers, meaning users may find they are taken to bogus websites which may attempt to steal personal information, display revenue-generating adverts, or install further malware.

Back to Top

Kaspersky Lab has detected a new modification of Kido. This latest variant differs from previous ones in that it extends the Trojan functionality used in earlier versions of the malicious program.
Net-Worm.Win32.Kido.ip, Net-Worm.Win32.Kido.iq, and other variants are all representative of this latest modification of Kido, which is capable of preventing antivirus products from functioning effectively on infected machines. The new variant of the malicious program also generates a dramatically increased number of unique domain names which it can contact to download daily updates: 50,000 in contrast to the 250 generated and contacted by previous versions.

Kido has Trojan Downloader functionality, which means that it delivers other malicious programs to infected computers. The first Kido infections were detected in November 2008. A record for new Kido variants was added to Kaspersky Lab antivirus databases on Saturday, March 7.  Kaspersky Lab recommends again that all users install the relevant operating system security update (http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx). An antivirus solution with up-to-date signature databases and a properly configured firewall can also prevent infection.

Back to Top

Comodo Security Solutions’s Disk Encryption offers easy-to-use protection for businesses who want to protect their information from falling into the wrong hands. Using security algorithms, Comodo Disk Encryption encrypts any drive partition or even virtual partitions, without disrupting computer usage or performance.

Password authentication allows computer users to set passwords as access authentication keys to encrypt the required drives. For added security, users and administrators can choose to require a USB memory stick in order to access the encrypted drives. The USB stick acts as a key to unlock the protected information. Combining password and USB authentication produces the most secure disk encryption Comodo offers. Using both at the same time qualifies as "two-factor authentication" required by many regulations such as the PCI DSS and FFIEC.

Comodo Disk Encryption can be used on mobile and desktop computers alike. With Comodo Disk Encryption, users have powerful control over their machines, including specifying who may start a specific computer, or keeping one partition of a shared computer "off limits." USB key users who want to make their information unrecoverable—anywhere—need only destroy their USB keys.

Back to Top

New survey findings released recently show airlines worldwide lost over $1.4 billion to online fraudsters in 2008, about 1.3% of worldwide airlines’ online revenue. The data comes from a new independent Airline Online Fraud Survey commissioned by CyberSource Corporation in association with Airline Information LLC and completed January, 2009.

According to survey data, the ways airlines manage fraud vary significantly by airline category. In 2008, business-class airlines, with higher-priced tickets to protect, typically embraced profit protection measures, whereas low-cost carriers tended to focus on revenue capture. On average, business airlines used the most fraud detection tools (6.5 tools per business-class airline), had the highest rate of manual review (47%), and rejected more bookings due to suspicion of fraud (3.6%). Conversely, low-cost carriers used the least number of automated screening tools (4.9 tools per low-cost carrier), were less likely to manually review bookings (13%), and rejected fewer bookings due to suspicion of fraud (2%). The result of these differing strategies is that in 2008 business airlines lost 1.1% of their revenues to fraud and low-cost carriers, by contrast, lost 1.6%.

According to Dr. Akif Khan, CyberSource Head of Client and Technical Services in the UK, “These findings highlight the need for airlines to adopt a more automated, holistic approach to fraud management—from initial screening through booking review and disposition. Improving the accuracy of automated screening is key. In doing so, they can reduce overhead costs associated with manual review, as well as improve revenue capture and lower fraud loss. With the right tools, airlines can realise these benefits in a matter of weeks—not years.”

Back to Top

K7 Computing, has developed a free tool to counter the threat posed by the latest version of the Conficker worm. This worm exploits Microsoft OS Vulnerability (MS08-67) and has already infected more than 200 million PCs across the globe. This worm can seriously compromise PC security by blocking access to Security Websites (like K7 Computing, Symantec, McAfee etc), disabling Microsoft updates and Windows Security Centre, terminating Security Applications, and add markers for future use by malware and updating itself automatically.

The latest versions Conficker.C and D have been set to look for new updates on the Internet starting from 1st April, 2009. It will visit a website, from a set of 50000+ random sites, to look for latest updates. These malware websites are expected to be enabled on April 1st to host the updated malware.
If a PC is infected and not able connect to www.k7computing.com then the user can visit www.CheckFick.com and download the FREE Downadup Removal Tool.

Back to Top

Recently VeriSign announced a new platform specifically designed to meet the needs of governments looking to implement and manage their own Public Key Infrastructure (PKI). The new VeriSign PKI Platform is an in-premise solution modeled after the same PKI architecture that VeriSign has deployed as a managed service for thousands of customers around the world. This deployment model allows governments throughout Europe, Asia, the Americas, Africa and the Middle East to adapt to specialized security requirements that may be placed on such critical national infrastructure.

The VeriSign PKI Platform gives governments a way to offer citizens fast and easy access to e-services such as health and welfare programs, e-passports, and national ID programs. PKI plays a critical role in e-government by allowing countries to leverage authentication, encryption, and digital signature technologies when issuing identity certificates, business certificates, and device certificates. The trust enabled by these certificates helps governments streamline operations, minimize the risk of fraud and waste, and disseminate information more easily and securely.

Back to Top

Comodo Security Solutions' new LivePCSupport service puts computer users in touch with experts, who can remotely fix many problems over the Internet. Abdulhayoglu is CEO and Chief Security Architect of Comodo, a company whose award-winning PC security software is installed on millions of computers worldwide.

With Comodo LivePCSupport, an online computer repair service, Internet users connect with instant messages to technical support experts. The LivePCSupport subscriber describes the problem or question. The Comodo troubleshooter connects to the subscriber's computer via the Internet. In many cases, the support technician can delete a file or change a setting to fix the problem. This allows the subscriber to enjoy the benefits of the Internet without having to learn the intricacies of his or her computer.

LivePCSupport differs from other support programs in that it is chat—rather than telephone-based. Telephone-based support services provide instructions over the phone. If the pc user is unaccustomed to computers, the instructions can be hard to follow. With hands-on support, Comodo's experts perform diagnose problems and then repair them via an Internet connection.

Back to Top

Back to Top

Arcot Systems announced that SBI Cards, one of India’s leading credit card issuers, has selected the Arcot 3-D Secure compliant authentication solution to help protect their cardholders from internet fraud while shopping online. By implementing the Arcot market-leading consumer authentication solution for Internet card transactions, SBI Cards is taking the lead in implementing anti-fraud measures for their customers. Deployment of the Arcot TransFort 3-D Secure solution will dissuade unauthorized use of credit and debit cards for Internet transactions resulting in improved protection from identity theft.

oreover, online retailers who participate in the 3-D Secure authentication protocol are now assured added protection against fraudulent charge backs from SBI Cards transactions. There are currently over 12,000 issuing banks, 200,000 online merchants and 30 million active cardholders using Arcot 3-D Secure solutions worldwide.

Back to Top

HID Global announced that Anton Fischer, program director, eGovernment, will be speaking at Security Document World 2009 in London, U.K., where he will present on e-National ID initiatives in Europe. Focusing on the landscape of standards and requirements facing today’s e-National ID market, Mr. Fischer’s presentation will touch on physical characteristics and performance requirements, including radio frequency power, initialization, anticollision and transmission protocols, as well as highlight by country, the electronic ID projects that have been planned, initiated or completed within the European Union.

Back to Top

Aladdin Knowledge Systems announced that Aladdin eSafe is the industry's first-ever Web security solution that offers advanced Web 2.0 application controls for popular social networking sites such as LinkedIn and Facebook. With the latest update to Aladdin eSafe, businesses now have the capability to not just block or allow access to social networking sites, but can actually control specific functions within the sites. The latest release of Aladdin eSafe AppliFilter now allows eSafe customers to restrict specific functionality on popular social networks, such as Facebook's "Invite a Friend" or "Add a Friend" or LinkedIn's "Huddle Workspace" application. The result is a level of control that enables the use of sites by employees without the risk of data leakage or misuse that comes from specific features. Existing eSafe customers will be automatically updated to the latest version and can begin using Web 2.0 application controls immediately.

Back to Top

Astaro announced availability of version 2.0 of its Astaro Command Center. This new version of the popular management tool adds the ability to centrally configure and maintain IPsec VPN tunnels, increased performance for working with hundreds of devices, and a new role for multi-user permissions.

The Astaro Command Center creates a "throne-room" from which to manage multiple Astaro Gateways, including Astaro Security Gateway, Astaro Web Gateway and Astaro Mail Gateway. The Command Center offers the ability to schedule product update installations across multiple devices, monitor resource usages, get license information and detailed per-installation statistics, as well as access the WebAdmin for any connected Astaro device. Astaro Command Center 2.0 adds a new configuration feature which allows administrators to build IPsec VPN tunnels directly from within the Command Center itself, saving significant deployment time. Administrators simply follow the Wizard-driven interface and select from the prompted parameters, and the resulting VPN will permanently join devices together to share printers, transfer files, and run programs, all over a securely encrypted link.

Back to Top

Cisco announced new managed, hosted and hybrid hosted e-mail security services that provide the industry's most versatile set of e-mail protection offerings. As businesses demand greater agility and flexibility in how they collaborate, the Cisco IronPort Email Security services are aimed at providing them with complete choice and control over where their e-mail security is deployed and managed, whether it be on premise, off-site, in the cloud or a combination of the three.

Spam is the weapon of choice for many criminal networks. Findings from the 2008 Cisco Annual Security Report revealed that spam accounts for nearly 200 billion messages a day, approximately 90 percent of the world's e-mail traffic. Today's announcement features security offerings to help businesses in light of these trends. Cisco IronPort Hosted Email Security, Hybrid Hosted Email Security and Managed Email Security services provide businesses with the ability to choose the e-mail security solution that meets their unique needs. These services enable high levels of e-mail protection, with exclusive preventive and reactive technologies, including spam protection, data-loss prevention, virus defense, e-mail authentication and powerful reporting tools for customized security services.

Back to Top

Fortinet announced its FortiOS 4.0 operating system, a major firmware upgrade which integrates hundreds of new features to significantly improve the value and functionality of its FortiGate multi-threat security appliances. Four of the most notable features of Fortinet's new OS include application control, data leakage protection (DLP), WAN optimization and SSL traffic inspection. The combination of these features will help customers to secure their network by removing the malicious traffic that is reducing available bandwidth and, at the same time, accelerate the clean traffic for optimal network performance. With FortiOS 4.0, Fortinet is redefining the consolidated security landscape it founded by offering a broad and powerful combination of security and networking services in a single, integrated platform.

While FortiOS 4.0 will bring many new enhancements to customers, the additional three security features and one additional network service will serve to intensify the value and ROI of Fortinet's consolidated security devices. The security features added to FortiOS—application control, DLP and SSL inspection—were designed to address (1) the rising level of cyber threats, especially those preying on consumer fear in a down economy, and (2) the evolving nature of user behavior, including broadening security to cover what is now considered to be part of the "network," driven by Web 2.0 innovations. Continuing its strategy to marry security with complementary networking features, Fortinet added WAN optimization to its new OS, giving network managers the ability to make this desirable network enhancement service a part of their overall network security infrastructure.

Back to Top