Bit9 Provides Tips for Effective Desktop Security in Light of Recent WMF Exploits.

CAMBRIDGE, Mass. -- In Second Installment of its Security TIPS Program, Bit9 Company Founder Dr. Todd Brennan Provides Enterprises with Best Practices for Managing Endpoint Security

Bit9, Inc., which solves the problem of unwanted software at the endpoint, today issued new recommendations for security best practices as part of its ongoing Bit9 Security TIPS Program. This program is a series designed to alert enterprises of security risks at the endpoint and to provide advice for proactive remedies. In this second installment, Bit9 is responding to the recent discovery of a critical vulnerability in Windows that could allow attackers to take control of enterprise endpoints.

In its January 5th WMF (filename extension) wmf - The filename extension for a Windows Metafile. FAQ (Frequently Asked Questions) A group of commonly asked questions about a subject along with the answers. Vendors often display them on their Web sites for use as troubleshooting guidelines. , Computerworld noted that the exploit "can be any kind of executable file See executable code. , but payloads so far appear to be mainly of the adware and spyware type. Some versions attempt to 'recruit' machines into zombie A computer that has been covertly taken over in order to perform some nefarious task. It is estimated that millions of PCs around the world have been compromised and, under the control of a third party, routinely transmit messages unbeknownst to the user. armies, presumably pre·sum·a·ble
adj.
That can be presumed or taken for granted; reasonable as a supposition: presumable causes of the disaster. to be deployed for nefarious purposes at a later date." Dozens of known exploits and hundreds of attack methods have been publicized pub·li·cize
tr.v. pub·li·cized, pub·li·ciz·ing, pub·li·ciz·es
To give publicity to.

Adj. 1. publicized - made known; especially made widely known
publicised prior to the patch. Although Microsoft has now released a patch, many enterprises were caught off-guard while waiting for it.

"Malformed mal·formed
adj.
Abnormally or faultily formed. data files, such as WMFs, are a good example of how porous a modern network is," says Dr. Todd Brennan, a founder and the CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. of Bit9, an endpoint security provider. "Malformed data files are similar to buffer overruns in that they often use unexpected inputs to confuse the system into executing malicious code. A side effect of this is that when the attacker does gain control of the system, it is often in a confused and jumbled state by definition. This usually necessitates an attack with two stages: first, the target program (the data file reader) is mangled/subverted, and second, the mangled program then loads and installs new software on the machine to execute."

But securing enterprise endpoints against these kinds of attacks need be neither reactive nor after the fact. According to according to
prep.
1. As stated or indicated by; on the authority of: according to historians.

2. In keeping with: according to instructions.

3. Dr. Brennan, a strong file defense -- such as blocking new and unknown software -- is the most powerful protection for enterprise desktops, laptops, and servers.

In addition, Dr. Brennan is advising that when detecting and stopping new and unknown software, that companies do not rely solely on methods that look for known malware signatures or behavioral patterns In software engineering, behavioral design patterns are design patterns that identify common communication patterns between objects and realize these patterns. By doing so, these patterns increase flexibility in carrying out this communication. .

"That's because what is known bad is always after the fact, and therefore out of date. The days of patch and pray - or pray for a patch -- should be long behind us," he says. "And behavioral solutions are very complex to configure given that behavioral patterns are constantly changing."

Unfortunately, software that has no business being on enterprise computers continues to increase. According to the 2005 Deloitte Global Security Survey, 31% of businesses rate spyware as a major threat this year, while Forrester Research Forrester Research is an independent technology and market research company that provides its clients with advice about technology's impact on business and consumers. Corporate facts

Founded: 1983 by George F.

estimates that 27% of small or medium-sized businesses do not use an anti-spyware product. Meanwhile Webroot has found that a full third of scanned enterprise PCs were infected with adware. Even so, Dr. Brennan suggests that spyware and malware are only part of the larger problem of unwanted software, which includes unlicensed applications and any non-business application that companies don't want running.

As well, he adds, different groups of computers may require different protection levels at different times. "One size of security does not meet all of the needs of today's dynamic enterprise," says Dr. Brennan. "Companies need simple, reliable, effective solutions that are flexible and easy to implement."

Dr. Todd Brennan is a founder and Chief Technology Officer of Bit9, Inc., which is solving the problem of unwanted software at the endpoint. Prior to Bit9, Dr. Brennan founded Okena, which was acquired by Cisco in 2003.

Unlike other endpoint security products that focus on what's wrong or malicious, Bit9 Parity is the only solution that detects and controls what's new and unknown--without relying on malware signatures or behavioral patterns. Based on patent-pending technology, this approach offers protection and coverage that today's other solutions can't.

About Bit9, Inc.

Bit9 is the first company to solve the problem of unwanted software at the endpoint. As the only solution to detect and stop spyware, malware, and non-business applications on desktops, laptops, and servers, Bit9 gives IT professionals unprecedented, network-wide visibility and control in real time. Bit9 provides the earliest and best possible protection against known and unknown intrusions, including Zero-day attacks. Founded in 2002 and headquartered in Cambridge, Massachusetts This article is about the city of Cambridge in Massachusetts. For the English university town, see Cambridge, England. For other places, see Cambridge (disambiguation).
Cambridge, Massachusetts is a city in the Greater Boston area of Massachusetts, United States. , Bit9 is a privately held company privately held company

A firm whose shares are held within a relatively small circle of owners and are not traded publicly. . For more information, visit www.bit9.com.

Bit9, Inc. and Parity are trademarks or registered trademarks of Bit9, Inc. All other names and trademarks are the property of their respective owners.

COPYRIGHT 2006 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Date:	Jan 16, 2006
Words:	767
Previous Article:	Research and Markets: Natural Gas Today Accounts for Nearly 22% of the World Energy Mix and Its Share in the World Consumption is Expected to Almost...
Next Article:	Commercial Announces 25.2% Increase in Annual Sales: Earnings Outperform Previous Periods.
Topics:	Software

Related Articles
New products announced by Washington Mortgage.
Washington Mortgage expands.
Firm closes $11M in 'Common Sense' loans.
TREND TALK.
Report Claims Microsoft Seeks To Eliminate MP3.
STEEL HORSE EXPRESS BIKERS FOLLOW HISTORIC ROUTE FOR CANCER FIGHT.
Delight.
Security news and products; top tewnty viruses reported to kaspersky in December.