|
Top Security News |
Securing SSH Sessions The Easy Way
Recently I've had a good deal of people ask me about SSH connections, and how they can better secure them, and I've been shocked at the sheer number of people that still use keyboard-interactive password...
The Horror Of Spyware
Coding Horror's Jeff Atwood ventured onto the Internet in search of no-cd game patches for a fresh re-installation of Windows XP SP2, and got nailed by a drive-by malware installation. By venturing online to websites...
Firefox Automatic Update
Firefox automatic update might be something security folks need to watch out for when they automatically update. Most companies do not want employees to automatically update their software, they...
ColdFusion Security Reminder - READ NOW
I know I've blogged this before, and it's covered in my security checklist, but folks, stop what you are doing and make these changes right now on your production server... In the ColdFusion Admin, Debug Settings...
Unifying Fragmented...
One of the promises of Web 2.0 widgets is that it can take data from various inputs and output them into various formats, and views. Some of the more...
Retiring The Browser
The time when Internet Explorer, Safari, Netscape, and Firebox as your window to the internet is just about done for. What is going to replace it? Rich internet applications that use components of your desktop and your...
|
|
|
07.24.07
Maiffret Talks REM, Apple, And Black Hat
 By
David Utter
eEye CTO Marc Maiffret chatted with SecurityProNews ahead of his firm's release of their hardware
appliance for managing security and asset vulnerability assessment ahead of the Black Hat conference.
Maiffret described the eEye REM-1505 as a device derived from customer feedback.
People wanted something configured out-of-the-box to handle the tasks of securing a network and finding problems with the assets on that network.
The 1505's management capabilities allow it to be configured remotely after connecting it to a network.
When everything is up and running, it lets administrators centrally deploy software agents with the Blink security package to PCs.
Administrators can review hardware assets by scanning them for potential vulnerabilities.
The 1505 detects all of the operating systems and applications running on the network, and can determine patch levels for patch management purposes.
Greater attention from criminals to applications rather than the operating system necessitated a need to protect those different layers of technology.
Maiffret noted the device will update automatically to respond to threats as they become known to eEye.
| Learn How We Increased Conversion By 816% and Become A Certified Online Testing Professional™ Click Here |
|
As part of our conversation, we touched on Apple and its progressive gains in market share.
Their systems have come under more attention from attackers as more people add a Mac or an iPhone to their digital lives.
Maiffret characterized Apple's security efforts as being 5 years behind Microsoft, which has endured a seemingly nonstop stream of attacks for years.
Apple's "elite perception" of itself could "come back to bite them" right in the security bits.
Once Black Hat opens, Maiffret expects controversy to grab attention again.
Two years ago, Michael Lynn caused a stir with his proposed talk about a flaw in Cisco devices, and last year saw the revelation of an issue with Apple's wireless connection drivers.
This year could be a continuation of the iPhone hack, as its discoverers plan to present a paper at Black Hat on August 2. Or it could be something completely different.
About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.
|
