2010-09-03
Vuln: KSP '.m3u' File Buffer Overflow Vulnerability

2010-09-03
Vuln: Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability

2010-09-03
Vuln: HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

2010-09-03
Vuln: Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability

Bugtraq: Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?

Bugtraq: VUPEN Security Research - Google Chrome Focus Processing Memory Corruption Vulnerability (VUPEN-SR-2010-249)

Bugtraq: [SECURITY] [DSA-2102-1] New barnowl packages fix arbitrary code execution

Bugtraq: [ MDVSA-2010:170 ] wget

More rss feeds from SecurityFocus

Network Security

There are three areas that need to be secured in any network: the interior, the perimeter, and the exterior. The interior is defined as the local network itself, everything that is sheltered from the outside world. This includes servers, desktops, switches, routers and other hardware and software attached to the network; this also includes the media the network uses to communicate, whether over copper cable, fiber, or wireless. The perimeter is the boundary between the interior network and the outside world; this is typically a connection to the Internet. The exterior consists of business partners, branch offices, and remote users that need access to the company's interior network. Securing these three areas should be a primary concern in any business.

Capital Data Service (CDS) engineers are trained to design, implement, monitor and maintain Intrusion Prevention Systems, firewalls and Virtual Private Networks which increase network security without degradating bandwidth and network resources. Choosing CDS as your Network Security Partner allows you to focus on your business and insures network integrity.

Server Security

Installing and correctly configuring a server is one of the most important steps in having a useful IT infrastructure. All mission critical data should be stored on a server and not a desktop, which makes having a reliable and healthy server a primary concern for any business.

Server hardware should be selected for quality and reliability. Servers need to be sized correctly to ensure their continued use for many years; they should also be scalable to handle unexpected demands. Critical servers should be designed with redundancy in mind; hot-swappable, redundant components reduce downtime and ensure against data loss and business disruption.

Server software should be chosen with the same care that goes into hardware selection. Whether using Windows, Solaris, Linux, or OS/400, installation and configuration can be a daunting task. Security and auditing settings are critical in preventing unauthorized access. Ensuring compatible software and patches are installed to prevent errors can be difficult.

In the event a disaster does befall a company a tested and functional backup plan must be in place and executed. A thorough tape rotation scheme is needed to ensure that the most recent company data is stored and available for recovery. A restoration plan needs to be ready and tested on a regular basis.

Desktop Security

With uninformed users and malicious software abound, desktops are typically the weakest link in the security chain. Steps should be taken to limit users’ computer usage to business tasks. Desktops should be locked down to avoid installation of unauthorized software and use of unauthorized devices.

Using Group polices CDS can limit access to only those resources needed to perform business functions. By setting user rights and privileges correctly future issues can be avoided.

Each desktop needs to be protected by Anti-Virus software. In addition to A/V software most companies can benefit from an Anti-Spyware package and content management.

Intrusion Prevention Systems

We are a TippingPoint partner providing enterprise class IPS appliances and services. We provide an in-line hardware intrusion prevention system that will protect your organization against internal and external attacks. Centrally manage and secure network traffic in your organization to protect it against malicious attacks, release of confidential data and reclaim network bandwidth from unwanted traffic.

Using an Intrusion Prevention System (IPS) and monitoring network traffic is a good start in keeping a network healthy and safe. By having sensors throughout the network to sort through traffic and identify unusual activity, harmful actions can be stopped prior to business disruption.

Firewalls

Securing the perimeter of the network with a robust firewall with continuously updated firmware can prevent nearly all external attackers from compromising a company's network.

Continuous Data Protection

Protect your data right now, as it changes. We provide protection for our customers so you are able to backup your data by automatically saving a copy of every change made, essentially capturing every version of the data that is saved. The data can then be restored to any point. Our offsite storage of critical data and file level restore as well as onsite storage of business critical data is proven and affordable.

Secure Remote Access

Securing remote access is just as important as securing the network interior; allowing insecure connections to the network leaves an open back door to all of the company's assets. By using virtual private networks and the Secure Desktop methodology these risks can be avoided.