Latest Computer and PC Security News

GFI EndPointSecurity 4 gives administrators deep granular control over device usage on the network
posted on 09/01/2008

The capacity of portable storage devices has increased so much that it is possible to copy entire databases within a few minutes. There are dozens of examples of security breaches due to the negligent or malicious use of endpoint devices in companies. In 2007, for example, a former Boeing employee was accused of stealing 320,000 files and leaking them to a newspaper. He copied the sensitive information to a portable drive during a period from 2004 to 2006, breaching Boeing’s security policies. The firm calculated that the potential damage could cost between $5 and $15 billion. GFI Software has announced the release of the latest version of GFI EndPointSecurity, a solution that helps to control the use of portable storage devices – such as iPods, flash drives, USB sticks and PDAs – on the network and prevent the leakage or theft of sensitive data. The latest version of GFI EndPointSecurity comes with advanced access control functionality and a whitelist/blacklist feature to limit usage of... [more]

Dealing with the security risks of greylisted devices
posted on 08/01/2008

Most organisations believe they have a fairly clear picture of how their enterprise network is configured and the devices attached to it. When it comes to identifying rogue assets, it’s usually a matter of white or black. Whitelisted assets are clearly inventoried and actively managed by the enterprise. Blacklisted assets can include virus-infected computers or machines that may pose no overt harm, but do not conform to the enterprise security dress code. IT departments must now also deal with a third class of network assets, greylisted devices. Greylisted devices are usually brought into an organisation by employees and used to perform legitimate work. They often tend to be consumer products that users believe are faster, easier to use, and generally more advanced than standard equipment issued by the enterprise. For many end users, it can be a painful experience to use a three-year-old computer when they believe that performance of currently available equipment has quadrupled sinc... [more]

Checklist for a Layered Approach to Laptop Security
posted on 08/01/2008

Here is a quick checklist of best practices for protecting data on mobile assets: 1. Understand the risks. As organisations open up their networks to their mobile workforce, partners, customers and others, they expose themselves to greater security risks than when traffic was mostly internal. 2. Be proactive. If you cannot identify the weaknesses in your network’s security, someone or something will exploit those vulnerabilities. Educate yourself on current security risks, including the tools and techniques used by cyber criminals. Data security is a moving target that requires ongoing attention. 3. Use cable locks on laptops as visual deterrents. Most cable locks can be ripped off the plastic exterior of a laptop with a strong tug. Like ink-filled garment security tags in clothing stores, cable locks leave a mark when removed by force, but are ineffective at preventing many thefts. 4. Avoid leaving unsecured notebooks unattended. Lock them in cupboards, notebook carts... [more]

Engate Technology Announces Significant Growth in 2007
posted on 07/01/2008

Engate Technology Corporation has announced that 2007 marked a successful year for the company, with major customer wins, innovative technology and product launches, strategic OEM and channel partners, and the addition of key personnel to accelerate strategic growth. In 2007 Engate achieved several milestones: - Demonstrated the company’s continued leadership and technology innovation with the industry’s first network profiling anti-spam solution that has achieved 99% accuracy and the lowest rate of false positives; - Expanded customer footprint with increased wins in enterprise, small to mid-sized business and service provider markets, including WebCrossing, Software Development Forum, Network Child Care Services, and New Revenue Solutions, to name a few; - Launched the Engate Global Anti-Spam Channel Program for value-added resellers, technology OEMs and managed service providers; - Signed an OEM agreement with Net Integration, a provider of all-in-one small business serv... [more]

Virtualisation: Why existing security measures are no longer enough
posted on 03/01/2008

Although virtualisation is not a new concept its present implementations are changing the face of corporate IT, through the reduction of the number of physical servers, the consolidation of rack space and the cutting of energy costs. Virtualisation allows the Virtual Machines (or VMs) running the applications to be divorced from their physical environment. A VM provides an isolated ‘sandbox’ for running applications, with Hypervisor processes managing multiple VMs on each physical machine. This separation of functionality from physical location allows superior management and a pooling of resources with the ability to meet workload on demand. Virtualisation technology is not just applicable to server applications within a data centre it applies across the enterprise be it within storage, security, the network or at the desktop. The use of virtualisation technologies however causes the complexity of computing environments to mushroom and as we all know additional complexity breeds insec... [more]

Other Security news and resources