Viruses, trojans and worms are going into stealth mode.
A recent study by security vendor Finjan has found a new type of attack that researchers say is harder to detect and stop from spreading. They’re called “evasive attacks,” and here’s how they work: They keep track of the IP addresses of visitors to an infected Web page, and only expose users to the malicious code once. When the user returns to the page, all traces of malicious code are gone. And that reduces the chances of detecting the attack quickly.
Finjan says traditional antivirus products and other security technologies will become less effective as these evasive attacks become more prevalent, and the company recommends new technologies to keep the threats from getting to that point. The study, of course, highlights Finjan’s technology that scans code in real time and prevents the attacks from launching in the first place.
A recent press release from California-based Meru Networks announced the mobile and wireless networking vendor’s newly enhanced partner program. According to the release, the new partner program “is designed to enabled and reward partners for the value they add in helping customers address business critical wireless challenges.” To catch the value-added reseller’s (VAR’s) attention, though, they promise “financial incentives and simplified program requirements”.
Apparently, Meru is attempting to make their partners’ jobs of selling their products easier. One of the larger changes to the vendor’s partner program is the offering of free software downloads and discounts on products so that VARs will have the latest releases and versions of Meru’s products to demonstrate to potential customers.
With these changes and fortifications to their partner program, Meru is joining a growing number of networking vendors who are recognizing the importance of their resellers and partners, and doing their best to meet those partners’ needs. For more information on their partner program, contact Meru.
Almost half of companies that have not yet started implementing service oriented architecture (SOA) plan to within three years, according to a survey by TechTarget sister site SearchOracle.com.
SAP’s NetWeaver shows customers the benefits of SOA better than Oracle’s Fusion project, according to experts quoted in the article, but IBM surpasses both. Of companies that responded to the survey, 84% haven’t started implementing SOA at all.
Companies should understand their businesses needs before they pick SOA products to address them, experts said, and they should consider that SOA isn’t about specific products — it’s about the approach for getting those products to work together.
On Monday Microsoft announced Stirling, a codename for the next release of its Forefront business security product. According to new reports, Stirling “integrates Microsoft’s antivirus, antispam and content filtering software, Internet Security and Acceleration (ISA) Server, Forefront Client Security and network access control> tools while working with the Microsoft Network Access Protection (NAP) policy.”Over in Redmond, Microsoft isn’t exactly bashful about touting what it believes to be the many virtues of Stirling. Their senior director of Security Product Marketing, Margaret Arakawa, had this to say:
The reality is other vendors are not able to deliver the level of integration or unified protection, reporting and visibility that Microsoft can. It is not easy to take disparate security technologies and management capabilities that sit in various parts of the infrastructure and the IT organization and unify them in an interconnected system of protection and management. Microsoft can do this because we have developed our Forefront portfolio with comprehensive protection and secure-access technologies across the infrastructure and have built Forefront on a common management and policy infrastructure.
Some IT managers remain cautious about the potential that an all-in-one offering like Stirling has to restrict IT shops flexibility. “Being able to use one product would be a good thing because a big problem we have [with security] is that we have too many places to look for relevant information,” said Peter Gluck, technology director with advertising agency Cline Davis and Mann Inc. in New York. “In general, consolidation across products is good as long as it remains flexible. All-in-one frameworks tend to get rigid,” he said.
But that’s a big if. VARs will have to wait to see if Microsoft can deliver that elusive combination of power, integration and flexibility. If Stirling does live up to its billing, it could provide VARs with a powerful network security suite that makes enterprise network security deployments less painful. But of course Symantec, McAfee and other Microsoft rivals won’t sit idly by while Microsoft sucks up their market share, so VARs would be wise to adopt a wait-and-see approach before recommending Stirling to their clients.
Linksys mirrors Cisco with new partner program Linksys is following in the footsteps of its parent, Cisco Systems, with a revamped channel program that adds technology specializations for partners focused on small businesses. The program is slated to be unveiled Wednesday. [ChannelWeb]
Net firms lose in House spyware vote Over objections from Internet companies and online advertisers, the U.S. House of Representatives on Wednesday approved a bill touted as an antispyware measure, a move that sets the stage for a political showdown in the Senate later this year. [CNET]
Online shoppers will pay more for privacy People are willing to pay more to buy items from online retailers who make their privacy policies clear, a new Carnegie Mellon University study showed. [Press Esc]
LG Electronics signs pact with Microsoft South Korea’s LG Electronics Inc. has signed a patent cross-licensing agreement with Microsoft Corp. covering a variety of hardware and software products, the companies said Thursday. [Associated Press]
Sun CEO says Apple shifting to Solaris file system Sun Microsystems president and CEO Jonathan Schwartz, speaking at a company event, said that Sun’s ZFS file system will be “the” file system for Apple’s upcoming Leopard version of Mac OS X. Apple will announce this, he said, at Apple’s Worldwide Developers Conference June 11-15 in San Francisco. [eWeek]
Dell to exit LCD television business Dell Inc. is leaving the LCD television business to focus on its core PC products amid an ongoing company overhaul by founder Michael Dell, Taiwan media reported on Thursday. [Reuters]
Cisco’s Linksys One brings SMB-focused gear tied to services After more than a year-and-a-half delay, Cisco this week launched its Linksys One offering, aimed at providing small businesses with packaged routing, switching, voice, wireless and security gear tied to managed services. [Network World]
Vendors virtualize Microsoft environments Software vendors this week at TechEd are taking the opportunity to update their application virtualization products to support Microsoft environments including
Vista. [Network World]
Canonical refines mobile Ubuntu Linux At the Computex trade show in Taiwan, the company announced particulars of a mobile version of Linux, Ubuntu Mobile and Embedded Edition. The first full release of the software, which will permit video, sound and full-featured Internet browsing, is due to arrive in October. [CNET]
Microsoft delivers test build of new tool for building line-of-biz apps Microsoft released a first Community Technology Preview (CTP) build of “Acropolis,” a set of components and tools for building line-of-business, portal-style .Net applications. [All About Microsoft]
Gartner: Portal, process and middleware market on the rise The market for portal, business process and middleware applications rose 16 percent in 2006, according to a new report from Gartner. [eWeek]
Zango zapped in first part of PC Tools legal battle Adware company Zango has lost the first part of its legal battle to stop antimalware company PC Tools flagging its software as potentially troublesome adware. [Computerworld]
IRS moves to close tax shelter after IBM uses it to save $1.6 billion For the second time in 12 months, the government has moved to block a tax shelter that had been aimed at converting billions of dollars of corporate profits, on which taxes have yet to be paid, into profits that will never be taxed. The move by the Internal Revenue Service came two days after International Business Machines said that it used the technique to avoid paying $1.6 billion in income taxes. [New York Times]
Sun launches new blade architecture Sun Microsystems is after a larger piece of the blade space with a new line of systems that will offer three choices of microprocessors, including the first Sun server to use an Intel chip since the two companies announced an agreement earlier this year. [eWeek]
Microsoft threatens its most valuable professional What’s the best way to attract a pile of threatening lawyers’ letters from Microsoft? Sell pirate copies of Windows? Write a DRM-busting program? Londoner Jamie Cansdale has just discovered a new approach. He had the temerity to make Redmond’s software better. [The Register]
Symantec releases raft of security, storage fixes In the past week, Symantec has patched several vulnerabilities affecting its storage and System Center security management products. [ChannelWeb]
Google acquires programming toolmaker PeakStream Google has acquired PeakStream, a start-up that sells tools for writing software that can take advantage of multicore processors as well as graphics and gaming chips. [CNET]
Vendors seek unity on identity protocols Microsoft will participate in a meeting later this month with vendors and organizations that are backing several different identity management systems, an indication that cooperation between the software giant and its peers is improving. [NetworkWorld]
Channel role in Asia’s SaaS market is hazy Software-as-a-service, or SaaS, is growing very rapidly in
Asia with increased adoption and awareness. Yet, the role of the traditional IT channel in this new software ecosystem is still unclear, according to a study by Springboard Research and Channel Enablers. [Tekrati]
Mozilla plugs Thunderbird security hole Mozilla is certainly having a nightmarish security week. Late June 4, it released a security-fix Version 184.108.40.206 of its Thunderbird e-mail client, after updating its Firefox browser, a Firefox Google toolbar extension and its SeaMonkey Web application suite — all within the last six days. [eWeek]
3PAR, NetApp hook up on new utility storage package Utility storage vendor 3PAR and NetApp announced June 5 a partnership to build a storage package that unites 3PAR’s InServ Storage Server with NetApp V-Series systems. [eWeek]
Firefox 3.0 may block sites fingered by Google Mozilla Corp. is considering adding a tool to Firefox 3.0 that would automatically block Web sites thought to harbor malicious downloads, but the company’s security chief refused to spell out details, saying Mozilla is “not ready to talk about the feature.” [Computerworld]
IBM settles SEC probe of options report An investigation of IBM Corp. by the Securities and Exchange Commission ended Tuesday without penalty, although the government found that the technology company misled analysts about employee stock-option expenses in 2005. [Associated Press]
Microsoft readies new managed services Hosted SharePoint Server, Exchange Server and Live Communications Server products are already on the Microsoft price list. And there are some new managed services in the near-term pipeline about which Microsoft hasn’t gone public. [All About Microsoft]
Spam spikes wreak havoc Extremely aggressive spam blasts against individual domains, dubbed “spam spikes,” are on the upswing and can disrupt small and midsize businesses as much as a determined attack designed to knock a company offline. [ComputerWorld]
Gartner analysts to IT pros: Learn the language of risk Corporate execs often miss the importance of risk assessments because their IT officers dump too much tech jargon on them, analysts say. [SearchSecurity.com]
VeriSign adds managed wireless intrusion-prevention service VeriSign plans to announce the expansion of its managed security services offerings to include support for wireless LAN intrusion prevention. [NetworkWorld]
Logicalis buys regional HP VAR Carotek Logicalis on Monday said it acquired regional Hewlett-Packard solution provider Carotek in a bid to strengthen its presence in the Southeast. Terms of the deal weren’t disclosed. [ChannelWeb]
Microsoft cuts patent deal with Xandros Linux Shortly after declaring that Linux and other open-source software violates 235 Microsoft patents, Redmond jointly announced a collaboration agreement with Xandros Linux. [PC World]
Microsoft debuts SQL Server 2008 CTP, ‘Stirling’ Security Platform Microsoft on Monday announced the first Community Technology Preview and the official name of its next-generation database, SQL Server 2008. [ChannelWeb]
IBM broadens its chip technology offerings IBM is looking for more ways to bring its microprocessor technology to a larger audience. At the Design Automation Conference in San Diego June 5, Big Blue is announcing that it will offer once proprietary chip technology to a much larger audience, which will have new implications for enterprise customers and consumers. [eWeek]
SanDisk launches two secure USB drives Portable data memory maker SanDisk on June 4 introduced a pair of new USB flash drives designed to deliver security and speedy access to data for business users with Windows computers. [eWeek]
Intel, Asustek announce plans for low-cost laptop Intel Corp. has detailed plans to team up with Asustek Computer Inc., the world’s largest maker of computer motherboards, to make a notebook PC that would cost as little as $200 and be aimed at mass markets in developing countries. [Reuters]
An ad deal for GoogleThe online software pioneer SalesForce.com will help the Internet search leader Google sell ads as part of a partnership. [NYT]
Ramat Gan, Isreal-based Tufin Technologies offers SecureTrack, a firewall management device that helps organizations manage rulesets, troubleshoot misconfigurations, audit corporate policies and more via a Web interface.
According to Chris Clements, security architect for Nashville, Tennessee-based Flat Earth Networking, SecureTrack provides a window to see firewall data coherently. Flat Earth Networking is packaging its sales of Check Point firewalls with SecureTrack.
“Our large customers must efficiently and consistently match corporate policies with firewall changes, and we see Tufin’s SecureTrack firewall operations management solution as the clear choice for optimizing and auditing firewall policies,” said Dave Wilson, Flat Earth’s South Eastern regional director.
SecureTrack supports Check Point, Cisco and Juniper firewalls.
According to a press release, Tufin has more than 24 channel partners spanning 27 countries. The new global channel partner program marks the company’s official entry into the U.S. market. The partner program offers full sales and technical training, beta program access, direct Tufin support, an online partner center and more.
Oracle amended its lawsuit against SAP today to include allegations of copyright infringement and breach of contract.
The suit still lists 50 “Doe” defendants, which Oracle will try to identify during the discovery phase of the suit. Oracle suing SAP could be trouble for resellers and systems integrators, experts said, if they used materials which are deemed to have been illegally taken from Oracle.
Oracle would not comment further about the suit. SAP wrote in a press release that it is “eager to vigorously defend” the allegations, but could not be reached for further comment.
Apple to launch IPhone on June 29 Apple Inc.’s highly anticipated iPhone will be available June 29, according to both TV commercials broadcast Sunday night and a company spokesman. [AP]
EMC buys authentication service provider Verid Verid’s service searches public records for difficult-to-answer questions that can be used to establish the identity of a user. [Computerworld]
VeriSign, AirMagnet team up for wireless IPS Gartner IT Security Summit: VeriSign and AirMagnet announce collaboration on the new VeriSign Wireless Intrusion Prevention Service (IPS) to help IT shops defend Wi-Fi users.
[SearchSecurity.com] Continued »