IBM announced new capabilities designed to address the security and compliance concerns of businesses creating dynamic and interactive Web sites. As companies infuse more Web 2.0 content into their global, online presence, they are seeing an increased risk of security vulnerabilities. Using IBM Rational AppScan, companies can now test Web 2.0-based applications to identify security vulnerabilities on a frequent basis, helping to make the Web experiences they provide to customers more secure from hackers. The new features also enhance customers' abilities to address.

IBM also announced new risk assessment capabilities in this new version of IBM Rational AppScan. The new features help customers better understand where security vulnerabilities are located and suggest an action plan to minimize further risk. Through new production monitoring capabilities delivered with IBM's Rational AppScan OnDemand offering, users can also catch and be alerted to vulnerabilities, making it easier and quicker to repair flaws and remain compliant. Additionally, security alerts can be sent to mobile devices as they occur, allowing customers to quickly fix vulnerabilities. Customers can also lower costs by implementing security testing throughout the entire software delivery lifecycle, from development through the post-production phase.

Back to Top

In light of a new man-in-the-middle (MITM) type of attack unveiled this week at Black Hat D.C., VeriSign is providing simple tips end users and businesses can use to effectively thwart the online threat. 

The highlighted attack is the latest twist on the venerable MITM attack, which relies on a user being fooled into going to the wrong Web site.  What makes this attack different than previous MITM attacks is that the fraudulent site attempts to leverage false visual cues, namely replacing the fraudulent site’s favicon with a padlock icon, which has traditionally been recognised as a visual cue to signify an SSL-protected site. But while this scheme is capable of reproducing the padlock, it is not capable of recreating the legitimate HTTPS indicator or the even more noticeable green glow in the address bar of high security Web browsers, where the site is secured with an Extended Validation SSL Certificate.

“Though online criminals have been using low-authentication SSL Certificates in phishing and man-in-the-middle types of attacks for years, the Black Hat presentation last week is a good reminder for end users to remain vigilant when transacting online,” said Tim Callan, vice president of product marketing for VeriSign.  “Security threats come in many forms and staying a step ahead requires education on the end-user side and a comprehensive, layered security approach from Web sites to help ensure that users have a secure experience.”

Back to Top

Aladdin Knowledge Systems announced that Aladdin eSafe is the industry's first-ever Web security solution that offers advanced Web 2.0 application controls for popular social networking sites such as LinkedIn and Facebook.

With the latest update to Aladdin eSafe, businesses now have the capability to not just block or allow access to social networking sites, but can actually control specific functions within the sites. The latest release of Aladdin eSafe AppliFilter now allows eSafe customers to restrict specific functionality on popular social networks, such as Facebook's "Invite a Friend" or "Add a Friend" or LinkedIn's "Huddle Workspace" application.  The result is a level of control that enables the use of sites by employees without the risk of data leakage or misuse that comes from specific features. Existing eSafe customers will be automatically updated to the latest version and can begin using Web 2.0 application controls immediately.

Back to Top

BT announced the launch of its BT Intelligent Virtual Private Network (iVPN) service in 172 countries, allowing global organizations to better manage and improve the performance of their IT network and business applications, and reduce technical and operational costs.

The development of BT iVPN was made possible by BT’s investment in its 21st Century Network (21CN) global platform. 21CN is BT’s global, software driven customer network platform that introduces a new, simpler portfolio of next generation services. With BT iVPN, businesses can reduce their technical running costs and improve productivity besides driving operational cost savings through faster implementation.

Back to Top

IBM announced it is the first vendor to commit to monthly testing to measure the security effectiveness across its entire product portfolio. The testing will be conducted by NSS Labs, a leading global independent testing lab that focuses on security product testing and certification. At the same time, IBM Internet Security Systems (ISS) is announcing results from its latest NSS Labs Security Update Monitor (SUM) report from December that showed 100 percent protection against tested exploits.

"Monthly testing isn't only a call to the industry to raise the bar, but a commitment to our customers to keep reducing the cost and complexity of security," said Greg Adams, director of product and services management at IBM ISS. "Everything we do is intended to ease the lives of our customers and this is one more step in taking the burden off of their shoulders."

Back to Top

Microsoft Corp. announced a partnership with technology industry leaders and academia to implement a coordinated, global response to the Conficker (aka Downadup) worm. Together with security researchers, Internet Corporation for Assigned Names and Numbers (ICANN) and operators within the Domain Name System, Microsoft coordinated a response designed to disable domains targeted by Conficker. Microsoft also announced a $250,000 reward for information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet.

Along with Microsoft, organizations involved in this collaborative effort include ICANN, NeuStar, VeriSign, CNNIC, Afilias, Public Internet Registry, Global Domains International Inc., M1D Global, AOL, Symantec, F-Secure, ISC, researchers from Georgia Tech, the Shadowserver Foundation, Arbor Networks and Support Intelligence. More information about how to protect yourself from Conficker can be found at http://www.microsoft.com/conficker. Customers interested in learning more about staying safe online can visit http://www.microsoft.com/protect.

Back to Top

BitDefender announced the availability of the beta version of BitDefender QuickScan. BitDefender QuickScan is an advanced online tool used for detecting running malware. It makes use of “In-the-Cloud” scanning to determine if files accessed by running processes are malicious.

The QuickScan online service is intended to provide an alternative to traditional online system scanning solutions, which are heavy on both bandwidth and system resources. BitDefender QuickScan easily and quickly checks the machine, scanning for patterns and virus signatures already known as threats.

Back to Top

VeriSign recently announced significant milestones achieved by Extended Validation (EV) SSL on the second anniversary of EV’s launch.  Significant milestones include worldwide adoption, a surge in browser enablement, recognition and support from world renowned organizations and standards bodies and bottom line ROI metrics from end-user companies.

With more than 11,000  EV SSL Certificates deployed worldwide in two years, EV SSL Certificates have become one of the fastest-growing technologies ever.  Adoption has grown rapidly since the certificates were formally launched in February 2007 with online brands such as PayPal, eBay, Travelocity and Schwab leading the way as some of the earliest adopters.  The popularity of EV SSL received a boost in 2008 when the latest, most secure versions of Web browsers achieved dominant market share worldwide. Today, more than 70 percent of all Internet users can “see green” when they visit Web sites protected by EV SSL Certificates, according to the latest Browser Market Share report by Net Applications.

Back to Top

As of today, ESET Smart Security 4 and ESET NOD32 Antivirus 4 are in the "release candidate" phase, marking the beginning of intensive testing prior to market release. The new generation of ESET solutions was engineered for optimal effectiveness, with improved detection, even faster scanning speeds, and continued low demand on system resources.

ESET Smart Security was developed as a highly streamlined solution seamlessly integrating four functionalities—antivirus, antispyware, antispam, and a personal firewall. The predecessor to ESET Smart Security 4 has been available since November 2007. ESET NOD32 Antivirus is the company's flagship solution, earning wide accolades since its introduction in 1987. It provides superior protection at home, as well as across company networks, incorporating advanced antispam and antispyware defenses.

Back to Top

Websense Security Labs ThreatSeeker Network has discovered that the eWeek.com Web site is serving malicious advertisements (malvertisements) to visitors. eWeek.com is the online version of the popular business computing magazine. When users browse to the home page of eWeek, a malvertisement hosted on the DoubleClick advertisement network performs a redirect to a malicious Web site through a series of iframes. This causes a redirect to one of two files on hxxp://[removed]inside.com/

Either a pdf document containing exploit code is served, or index.php redirects to the rogue ad-server. With no user interaction, a file named "winratit.exe" (MD5: A12DA1D62B7335CBE6D6EA270247BBC1) is installed in the user's temporary files folder. Two additional files are dropped onto the user's machine and are bound to startup. The host file is also modified so that if the user tries to browse to popular software download sites to remedy the infected machine, s/he is instead directed to a malicious Web site offering further rogue AV downloads. The name of the rogue AV application is Anti-Virus-1. If the user chooses to register the rogue AV, a connection is made to hxxp://[removed]-site.info/ which has been setup to collect payment details. 

Back to Top

SonicWALL announced the SonicWALL SSL VPN 3.5 release, bringing key new enterprise level features to small- to mid-sized businesses (SMBs), including mobile support, enhanced remote support, a sleeker interface design, and IPv6 compatibility. The launch of SonicWALL's 3.5 firmware update provides users with easy-to-use, secure and
clientless remote support and remote access to a broad range of resources on the corporate network.

Back to Top

Tata Communications has launched Secure Franchisee Connect solution which enables an organization to connect all its dealers in a secured way. This service will be of immense value for organizations which have a dealer network and require a secure and seamless connectivity necessary for their business operations.

SFC is not reliant on only one type of connectivity option and can be implemented on any connectivity medium that suits the business requirements, therefore provides the much needed reach for our customers and extension of business applications to the partners of the business. The solution provides the ability to extend their infrastructure and existing MPLS network, provides scalable bandwidth options, always-on connectivity, ease of management and scalability for extended sites.   

The Tata Communications Secure Franchise Connect solution is offered as an overlay on its world-class IP-VPN/ MPLS network and enables organizations to extend seamless connectivity to their dealer locations to MPLS via multiple access options depending on the bandwidth, scalability and user concentration. The solution provides direct integration to core MPLS network enabling a direct access to business applications leading to better performance.

Back to Top

F-Secure Corporation recently discovered a mobile Trojan targeting S60 3rd Edition phones. The sample Trojan:SymbOS/Yxe.A promises a "Sexy View" in the subject line, but instead the message from "Play Boy" tricks users into installing malware on their phones. The Trojan originates in China.

Mobile Trojans are currently the exception, not the rule. There are spy tools and other privacy threats directed at S60 3rd Edition phones, but malware is still mainly an issue on S60 2nd Edition phones. S60 3rd Edition uses a different binary structure than 2nd Edition, and all 3rd Edition applications must be signed. What's special about Yxe is that all evidence suggests it uses a valid Symbian Certificate. With this certificate, the Trojan was signed. And being a signed application it gains privileged access.

Back to Top

Comodo Internet Security puts power in the hands of the people with a default deny approach to installing software. The suite includes both firewall and anti-virus software and is available to Internet users entirely free. Melih Abdulhayoglu, Chief Security Architect and CEO of Comodo said, "Other security software works on a default-allow basis. If you allow software in by default, you admit any software as long as that software is not on a blacklist of known malware." Malware is software that can harm computers or can be used to steal personal information.

Comodo Internet Security instead denies access to all software that is not on Comodo's whitelist. If Comodo Internet Security does not recognize the file, it prevents instructions on the file from running. This gives the computer user a chance to review the file and be sure it is safe before it can harm the computer. (Users who are not certain they can recognize malicious software can utilize Comodo's newest feature called ThreatCast. ThreatCast reports back to the user how other Comodo users have chosen to react to the file, including information on the number of users permitting the software to install itself.)

Back to Top