|
WEBSWEEPER
4.1 ADDS URL & PERFORMANCE IMPROVEMENTS
The latest version of the Web content
security solution WEBsweeper 4.1 offers optional restriction of more
than 689 million web pages (URLs) in 40 categories with provision for
14 languages. WEBsweeper 4.1 also offers support for Microsoft
Windows 2000 as well as performance gains of up to 50 per cent when
using Windows 2000 multiprocessor support.
WEBsweeper prevents inappropriate
information leaving and entering an organization by monitoring HTTP
based traffic including Web-based e-mail such as Hotmail or Yahoo!
Mail. WEBsweeper works in tandem with firewall and antivirus solutions
to provide a comprehensive security solution that guards against
breaches in confidentiality and other threats
WEBsweeper allows organizations to
set and enforce a Web usage policy that defines what is and is not
acceptable content in Web pages, Web downloads and uploads, including
Web-based e-mail. These policies can be defined down to an individual
department or user level if required.
The new “URL Filter Category”
database add-on feature to WEBsweeper enables organizations to bar
access to selected categories through a regularly updated URL Filter
Category database. Organizations receive the updates automatically via
the Internet, relieving their network managers from the burden of
constant manual updates.
The database is continuously updated
by a team of 40 researchers, automated tools and customer submissions.
Up to 15,000 updates are added every week into the 40 clearly defined
categories, which include “Adult/Sexually Explicit,” “Finance
and Investment,” and “Gambling.” The URL Filter Category
restricts access to all sites contained in the categories selected,
and category subsets can be applied to different departments within
the organization. For Web pages that have not been specifically
blocked by a selected URL category, WEBsweeper analyzes and restricts
the web page according to the organization’s security policy.
More...
FBI/SANS TOP 20
SECURITY ISSUES UPDATED- ENTERCEPT CAN HELP
A little over a year ago, the SANS
Institute and the National Infrastructure Protection Center (NIPC)
released a document summarizing the Ten Most Critical Internet
Security Vulnerabilities. Thousands of organizations used that list to
prioritize their efforts so they could close the most dangerous holes
first. This new list, released on October 1, 2001, updates and expands
the Top Ten list.
With this new release, SANS has
increased the list to the Top Twenty vulnerabilities and segmented it
into three categories: General Vulnerabilities, Windows
Vulnerabilities, and Unix Vulnerabilities.
The SANS/FBI Top Twenty list is
valuable because the majority of successful attacks on computer
systems via the Internet can be traced to exploitation of security
flaws on this list. For instance, the easy and rapid spread of the
Code Red and NIMDA worms can be traced to exploitation of unpatched
vulnerabilities on this list.
These few software vulnerabilities
account for the majority of successful attacks, simply because
attackers are opportunistic - taking the easiest and most convenient
route. They exploit the best-known flaws with the most effective and
widely available attack tools. They count on organizations not fixing
the problems, and they often attack indiscriminately, scanning the
Internet for any vulnerable systems.
In the past, system administrators
reported that they had not corrected many of these flaws because they
simply did not know which vulnerabilities were most dangerous, and
they were too busy to correct them all. Some vulnerability scanners
search for 300 or 500 or even 800 vulnerabilities, thus blunting the
focus your system administrators need to ensure that all systems are
protected against the most common attacks.
The Top Twenty list is designed to
help alleviate that problem by combining the knowledge of dozens of
leading security experts from the most security-conscious federal
agencies, the leading security software vendors and consulting firms,
the top university- based security programs, and CERT/CC and the SANS
Institute. Click here for the actual list on the SANS Site, and check
this list regularly, as they update it all the time.
http://www.sans.org/top20.htm
One of the key products we offer to
address these issues is Entercept
|
MAIL
ATTENDER FOR EXCHANGE V2.0 NOW AVAILABLE
The sister product to
the highly successful Mail Attender for Domino, Mail Attender
for Exchange Version 2 is now available for Microsoft Exchange
networks.
Mail Attender for
Exchange provides Document & Attachment management, Quota
Management, Folder Management and Reporting within the Exchange
environment.
More...
TWO
MAJOR AWARDS FOR THE MIMESWEEPER SUITE
MIMEsweeper receives
"Editor's recommendation" from PC Professional Magazine
"Mimesweeper from Baltimore
Technologies is the only software program in the PC Professionell test
to offer convincing content security for both Internet and mail in one
package. The suite of different products for mail and Internet
monitoring combines flexibility in defining rules with an excellent
performance. Baltimore's Mimesweeper therefore receives the
"Editor's recommendation".
Click here for full review
PC Magazine awards MAILsweeper and
WEBsweeper Editors Choice Award!
"The Editors' Choice
award goes to the products from Baltimore Technologies -- WEBsweeper
4.0 and MAILsweeper 4.2_5. These packages have been on the market for
a lot longer than most and it shows, chiefly in the wealth of
facilities on offer -- both for Internet and email filtering -- but
also in terms of the logging, alerting and reporting options, which
are excellent. We also liked the cacheing facilities in WEBsweeper and
the ability to extend the packages with add-ons".
Click here for full review
More
on MIMEsweeper...
WEBSENSE
ADDS SUPPORT FOR VOLERA AND FIREWALL-1 NG
Websense Enterprise is the leading
employee Internet management (EIM) software solution. Websense
Enterprise v4.3, Volera Excelerator Edition allows you to
transparently monitor, manage and report on traffic from your internal
networks to the Internet. Using pass-through technology, it is tightly
integrated with Volera Excelerator, giving you the most accurate,
reliable and scalable Internet filtering solution available. Websense
Enterprise is also easy to install and administer. Volera is becoming
a prominent figure in the caching industry by gaining significant
market share in a short period of time and partnering with high
profile OEMs such as IBM, Compaq, Dell, Fujitsu-Siemens and Nortel.
The Websense/Volera integration is an off-box solution.
Websense has also achieved
certification for Check Point's new Next Generation (NG) security
software platform, enabling customers to tightly integrate the
industry's leading employee Internet management (EIM) and
market-leading Internet security software in one joint solution.
The certification means that
Websense's market-leading EIM software has been rigorously tested by
both Websense and Check Point to ensure integration with Check Point's
newly launched NG, creating a seamless solution that is scalable,
flexible and easy to deploy. Customers benefit from Check Point's
streamlined "Security Dashboard" management console,
centralized management and multi-gigabit performance, as well as
Websense Enterprise's comprehensive feature set, which includes eight
different policy management options and the industry's largest and
most accurate database of categorized Web sites.
More...
BANK
INTRUDERS ARE MOST LIKELY EMPLOYEES
The U.S. Treasury says 60 percent of
the computer intrusions reported by banks and other financial
institutions in the first four months of 2001 were committed by
insiders. The findings were included in the department's semiannual
Financial Crimes Enforcement Network report, released last month. The
report also concludes that the number of confirmed identity thefts is
likely to more than double this year, based on earlier figures. U.S.
banks reported 332 cases of identity theft between Jan. 1 and April
30, compared to 637 cases for all of 2000. "That amounts to a 50
percent increase from the same period a year ago," according to
the review.
Perhaps now is the time to review how
your users are using email internally - check out SecurIQ
or MIMEsweeper
Source: Security Wire Digest
|
