Latest Firewall News

Rob Rachwald, Director of Security Strategy at Imperva, explains how to stop SQL Injection
posted on 18/01/2012

31st december of 2011, SANS published a story about automated SQL injection attacks affecting 1M plus websites. What will be different with SQL injection in 2012? Nothing. Perhaps more, perhaps some new attack tools. But otherwise, it is "meet the new boss, same as the old boss." Since SQL injection continues to be the major tool for data theft, we will try to devote a blog a month to the topic in an effort to eradicate the world of this problem. Our first entry is a summary of a webinar (registration required) we did late in 2011. Today's blog uses what we outlined in this webinar with respect to a mitigation checklist (minus the honey-voiced narration). Here's what any firm that has data flowing in web applications should do in order to protect themselves from SQL injection: Step 1: Dork yourself The first step hackers often take to find vulnerable websites is simply conducting a Google search. In this case, they search for technical snippets unknowingly left inside of... [more]

top nine cyber security trends for 2012 : Imperva predictions
posted on 06/01/2012

Rise in Big Data and Application DDoS Attacks Among Key Concerns Imperva, a pioneer and leader of a new category of data security solutions for high-value business data in the data center, announced yesterday its predictions for the top cyber security trends for 2012. The analysis, compiled by Imperva’s Application Defense Center (ADC), is designed to help companies shield themselves from the threat of hackers and insiders. “Hacking, by nature, is a discipline that relies on innovation,” explained Imperva CTO Amichai Shulman. “Knowing future, potential threats helps security teams fight against the bad guys.” • A detailed white paper is available. • Imperva will host a webinar with CTO Amichai Shulman and registration is available here. Imperva predicts that the top nine cyber security trends for 2012 are: Trend #9: SSL gets hit in the crossfire - Currently, attackers are exploiting vulnerabilities in the various implementations of the SSL protocol. Furthermore, we are se... [more]

Every cloud has a silver perimeter -- Michael Hamelin, chief security architect with Tufin Technologies
posted on 28/12/2011

Ever since John McCarthy said `computation may someday be organised as a public utility’ in the 1960s, security has been a watchword when it comes to the cloud. And by association, firewalls are inextricably linked to the process of securing the cloud-computing environment. But with the arrival of advanced cloud services such as Facebook and Salesforce, comes with it an increased pressure on the structure and capabilities of the firewall itself. Moving data securely into and out of the cloud takes a lot more processing power – in real time – than checking data as it traverses the internet/Internet perimeter, largely owing to the high data throughputs that are involved with such transfers. Just to make life interesting, we are moving into an era of software and firmware-driven firewalls, meaning that the useful life of a given firewall technology is now greatly extended. Add in the need to meet an increasingly tighter set of compliance rules – created against the backdrop of more c... [more]

Lanner Combines Control, Management and Data Processing in One Network Appliance
posted on 22/12/2011

Lanner Electronics Inc., today released a network appliance platform unlike any other released before. The information security industry is experiencing increasingly sophisticated niche solutions for specific needs such as WAN optimization, email security, application delivery, and intrusion prevention systems. Lanner’s FX-7210 was designed to combine these different requirements into one single network appliance using two motherboards. “The FX-7210 has been in development for a few years” said Jesse Chiang, product planner at Lanner Electronics. “Two of our clients have already used this hardware platform to deploy their new IPS and application delivery appliances. The FIPS and NEBS compliant IPS based on FX-7210 is now used in the datacenters of two Fortune 50 telecom companies, so we are very confident in the platform and are now offering it to other clients. At these datacenters, this appliance is handling 20 Gbps IPS throughput and 100+ Gbps firewall throughput, so this hardware was... [more]

Confident Technologies gives its 2012 Authentication Predictions
posted on 22/12/2011

As we quickly approach the end of the year, here are some Confident Technologies’ top 5 authentication predications for 2012. They include authentication trends that we think will emerge next year, as well as some predictions about some specific attacks that could happen next year. 1. BYOMD (bring your own mobile device) will spell big trouble for businesses in terms of data loss in 2012. Employees and contractors are increasingly bringing their personal smartphones and tablets to work and using the devices for a blend of personal and business related activities. 2012 will bring even more of this and we’ll see a few high-profile incidents of enterprise data loss resulting from allowing employees to connect their personal mobile devices to the company network without proper security protocols in place. The end result will be more businesses enforcing stricter authentication and security policies, particularly in regards to what information can be accessed, used and stored on mobile dev... [more]

Other Security news and resources