Cyber-Ark – Don’t give cyber attackers the privilege

Written by Admin. Posted in All

Cyber-Ark has released a very informational ebook about the rising threat of cyber-attacks and the need to protect privileged accounts, positioning Cyber-Ark as a thought leader on this topic.

2011 saw a record number of cyber attacks on corporations. In 2012 they are growing exponentially. Don’t become a statistic – learn how to mitigate the risk

Read the ebook online


Rapid7 Wins Coveted SC Magazine Award for Best Vulnerability Management Tool

Written by Admin. Posted in All

As the number of attacks and vulnerabilities continue to rise, security professionals need real security risk intelligence to help them prioritize threats and remediate the greatest risks first. Rapid7′s web-based vulnerability management product, NeXpose, leverages one of the largest vulnerabilities databases to identify vulnerabilities across networks, operating systems, databases and web applications.

NeXpose manages the entire vulnerability management lifecycle, including discovery, detection, verification, risk classification, impact analysis, reporting and mitigation. Risk is classified based on real exploit intelligence combined with industry standard metrics, such as CVSS, as well as temporal and weighted risk scoring. NeXpose provides a detailed, sequenced remediation roadmap with time estimates for each task. NeXpose is used to help organizations improve their overall risk posture and security readiness, as well as to comply with mandatory regulations, including security requirements for PCI, HIPAA, ARRA HITECH ACT, FISMA (including SCAP compliance), Sarbanes-Oxley (SOX) and NERC CIP.

Read the announcement from SC Magazine


Rapid7 NeXpose 5.0 Release

Written by Admin. Posted in All

From the Rapid7 Community blog, the latest NeXpose update now encompasses virtualized environments

Today we released the latest version of Nexpose. This is a great release for those of you who are working in virtual environments as it adds dynamic virtual asset tracking, allows you to track configuration policy scans, and even introduces a new look and feel for the product itself. Additionally, it includes capabilities to generate a Real Risk score that incorporates known Malware Exposure and allows you to track risk trends over time.

Here’s the link to the original announcement made at UNITED Security Summit


Need for greater cyber security

Written by Admin. Posted in All

Is your current security infrastructure, or the lack of an adequate one, stopping you from achieving more with your business?

Infocomm security experts who spoke to Channel NewsAsia said many business are afraid of the unknown risk in the cyberworld, and that is hindering them from adopting emerging technologies like cloud computing.

Palo Alto Networks Next-Generation firewalls allow enterprises to securely enable using business-relevant concepts, instead of following the traditional “all-or-nothing” approach offered by traditional port-blocking firewalls used in many security infrastructures.

Read the full article on Channel NewsAsia


CSO Online in-depth article on Next-generation firewalls

Written by Admin. Posted in All

Excellent article on why your next network security purchase should be a next-generation firewall. As Palo Alto Networks says it, its time to “fix the firewall”.

Traditional stateful inspection firewalls, with their port- and protocol-based controls, have limited visibility into the contemporary Web-based network landscape. Thanks to the explosive popularity of Web 2.0, thousands of Web-based business and consumer apps and attacks are launched primarily through the application layer. Stateful inspection firewalls cannot distinguish what applications are passing via http and https over ports 80 and 443. Attackers have become adept at using low-and-slow techniques in targeted attacks that evade intrusion-prevention systems (IPS).

The article goes on to say

This is a fast-growing market, created when Palo Alto Networks appeared on the scene in 2007 with the capabilities and feature sets that characterize what are now known as next-gen firewalls. Most other firewall and unified threat management vendors have introduced, or are at least developing, network security products that provide fine-grained application and user controls in integrated, high-performance appliances.


DBS Bank Extends Relationship with Cyber-Ark in APAC

Written by Admin. Posted in All

DBS Bank, one of the largest financial services organizations in Asia utilizes Cyber-Ark’s PIM Suite, and now its PSM suite, to secure and manage Privileged Identities and Sessions.

NEWTON, Mass. – October 12, 2011 – Cyber-Ark® Software, the leading global information security provider for protecting and managing critical applications, identities and sensitive information, today announced that DBS, a leading financial services group in Asia, has expanded its relationship with Cyber-Ark to five additional markets in Asia-Pacific, including Hong Kong, Taiwan, India, China and Indonesia. DBS has also expanded its use of Cyber-Ark solutions to encompass the Privileged Session Management (PSM) Suite, alongside its existing Privileged Identity Management (PIM) Suite.


Rapid7® receives a “Strong Positive” in Gartner VA report

Written by Admin. Posted in All

Rapid7® receives a Strong Positive – the highest possible rating given – in the Gartner: MarketScope for Vulnerability Assessment 2011. Vendors included in this MarketScope:

  • Use their own VA engines
  • Perform active network VA
  • Provide vulnerability information and reference multiple vulnerability IDs, including common vulnerabilities and exposures, SANS Top 20, Bugtraq ID and vendor-specific IDs
  • Provide remediation guidance
  • Offer an enterprise-level product that supports central administration of multiple distributed scanners and consolidated reporting
  • Focus on the security organization
  • Provide asset classification capabilities

Read the full report from Gartner


GovernmentWare 2011 is here

Written by Admin. Posted in All, Events

The Ministry of Home Affairs (MHA), Singapore, is proud to present the 20th GovernmentWare seminar and exhibition. This annual event, convened since 1991, will be held from 27 to 29 September 2011 at the Suntec International Convention & Exhibition Centre.


SPF alert on software phone scams

Written by Admin. Posted in All

The Singapore Police Force (SPF) has issued alerts to the public warning against rising phone scams from people masquerading as IT technical support.