BenchAddix » Security

Dell Announces Agreement to Acquire SonicWall

Nerm — Wed, 14 Mar 2012 03:46:01 +0000

Today Dell announced that they have reached an agreement to acquire firewall maker SonicWall.

“Dell’s distribution, reach and brand are well-recognized across the industry. This transaction aligns well with Dell’s mid-market design focus and allows us to accelerate growth of our flagship SuperMassive Next-Generation Firewall solutions with Large Enterprise customers,” said Matt Medeiros, president and CEO, SonicWALL. “Additionally, SonicWALL is recognized as a leading security solutions provider for small and medium businesses through our UTM solutions. Dell’s phenomenal breadth and reach into small and midsize companies provides a significant opportunity to expand our customer base.”

Dell seems to really be making a push into enterprise networking, however I am not sure if this acquisition improves their strategic plan that well. SonicWall although popular at the small and mid-size network levels has never really seemed to be all that welcomed at the large enterprise level.

I guess as they say “Only time will tell”.

Pentagon to use simulator to practice cyberwar

Nerm — Sat, 18 Jun 2011 04:01:25 +0000

Now I know this makes me sound like a nerd but when I first read this headline the first thought through my head was the movie “War Games”. Regardless of how it turns out the Pentagon is creating an internet simulator to simulate cyber warfare and assess the results.

[Pentagon to simulate cyberwar - networkworld.com]

Intel to buy McAfee for $7.68billion

Nerm — Thu, 19 Aug 2010 23:03:10 +0000

Today Intel announced that they are purchasing antivirus software maker McAfee for $7.68 billion. This will be a major purchase for Intel’s software group as McAfee is a giant in the security market. Intel says this buyout will help progress their ability to meet the ever increasing need of hardware integrated security.

Windows Shell vulnerability patched by Microsoft

Nerm — Tue, 03 Aug 2010 18:41:19 +0000

Microsoft released an emergency patch on Monday. The patch was to fix a known vulnerability in the windows shell that allowed remote code execution via windows shortcuts (.lnk). Microsoft rated this patch as critical and released it immediately rather than waiting until their regular Patch Tuesday.

[Microsoft Security Advisory]

DNS security enhancements start today

Nerm — Thu, 15 Jul 2010 23:55:37 +0000

Starting today the DNS Root Zone is getting DNS Security Extensions (DNSSEC) as an added layer of security against hackers. DNSSEC is an internet standard for protecting against cache poisoning by allowing websites to verify their domains with digital signatures and public-key encryption. Cache poisoning is where web traffic is redirected from a legitimate website to a fake site without the knowledge of the user or the legitimate websites administrator. This security flaw in current DNS architecture is also referred to as spoofing.

Misconfigured Cisco AP could allow unwanted access

Nerm — Thu, 01 Jul 2010 03:58:32 +0000

According to an article at networkworld researchers have found a potential security risk in Cisco’s Aironet 1200 Series Access Points if the devices are configured incorrectly. This is not an actual bug as it has more to do with user error.

“The issue has to do with Cisco’s Aironet 1200 Series Access Point, which is used to power centrally managed wireless LANs. The Aironet 1200 can be set to a WPA (Wi-Fi Protected Access) migration mode, in which it provides wireless access for devices that use either the insecure WEP (Wired Equivalent Privacy) protocol or the more secure WPA standard.

This gives companies a way to gradually move from WEP to WPA without immediately buying all-new, WPA-capable equipment. But while auditing the network of a customer who used the product, Core researchers discovered that even networks that had stopped using WEP devices could still be vulnerable, so long as the Aironet’s migration mode was enabled.

Researchers were able to force the access point to issue WEP broadcast packets, which they then used to crack the encryption key and gain access to the network.”

Anyone that is using this series of access points from Cisco might want to check and make sure that migration mode is not enabled unless absolutely necessary.

[networkworld]

Symantec identifies third more aggressive Conficker variant

Nerm — Sun, 08 Mar 2009 13:33:30 +0000

Symantec has identified a new variant of Downadup also known as Conficker. This is the third variant and is reportedly more aggressive than the two previous versions.

“W32.Downadup.C is a modular component for machines currently infected with Downadup. This variant of Downadup, also called Conficker, is not attempting to self-replicate and appears to behave more like a Trojan than a worm, says Vincent Weafer, vice president of Symantec Security Response. The W32 Downadup.C variant was discovered today in a Symantec honeypot and is still under investigation. Symantec expects to identify additional capabilities shortly, says Weafer, who adds that Symantec has not yet seen W32.Downadup.C in customer networks directly.”

[networkworld.com]