Configuresoft ECM Protects Against ZoTob Variants, Bozori, IRCbot, W32/Tpbot-A and W32/Dogbot-A Worms; Award-winning Security Compliance & Control Solution Fights Current and Future Threats.COLORADO SPRINGS Colorado Springs, city (1990 pop. 281,140), seat of El Paso co., central Colo., on Monument and Fountain creeks, at the foot of Pikes Peak; inc. 1886. It is a year-round resort and a booming military, technological, and commercial city. , Colo. -- Configuresoft, an innovator in systems management technology and the creator of enterprise compliance management software, announced today that its Enterprise Configuration Manager (ECM (1) (Enterprise Change Management) See version control and configuration management. (2) (Error Correcting Mode) A Group 3 fax capability that can test for errors within a row of pixels and request retransmission. ) customers were not affected by the recent Internet worms exploiting the MS05-039 Plug and Play vulnerability. Configuresoft offers enterprise configuration, policy compliance and remediation software that manages Microsoft Windows See Windows. (operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. NT/2000/XP/2003 servers, workstations and mobile systems. The ZoTob (aka Mytob) worm, its variants and other Internet worms take advantage of a stack-based buffer overflow A common cause of malfunctioning software. If the amount of data written into a buffer exceeds the size of the buffer, the additional data will be written into adjacent areas, which could be buffers, constants, flags or variables. defect in the Plug and Play service for Microsoft Windows 2000, XP and 2003 operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. . The vulnerability allows remote attackers to execute arbitrary code In computer security, arbitrary code is executable code introduced externally that runs despite the intent of the original programmer. The code is injected into a currently-running application or its memory space, thus making the application execute the code. via a crafted packet and local users to gain privileges. "Red Robin was confident that its network was protected from the recent ZoTob outbreak. We were able to validate that our most susceptible Windows 2000 systems were up-to-date with the recent Microsoft Security Updates and anti-virus definitions," said Bill Randall, director of IT at Red Robin Gourmet Burgers. "The Configuresoft ECM tools allowed us to easily confirm which systems were at risk and remediate the vulnerabilities before the outbreak spread to these machines." With the large number of Internet worms exploiting this Windows 2000 vulnerability, the time required to assess and remediate is critical. A large Midwestern research hospital that protects its enterprise with ECM/SUM successfully patched and rebooted its 1,200 servers in just six minutes. "Configuresoft Enterprise Configuration Manager (ECM) and its Security Update Manager (SUM) module has the information and functionality necessary to easily assess and remediate all vulnerable machines across the enterprise in just minutes," said Chris Farrow farrow see farrowing. , director of Configuresoft's Center for Policy & Compliance. "To successfully and cost-effectively address dynamic threats and business risks requires proactive IT control across the enterprise. Global organizations must address internal and external threats and compliance policies in order to protect systems. To do this they must understand what they actually have vs. what they want to have, coupled with the ability to remediate problems across the enterprise. ECM/SUM can help prevent the next outbreak or intrusion with comprehensive security configuration management," added Farrow. About Enterprise Configuration Manager ECM centralizes and automates the tasks of monitoring, managing and auditing the hardware and software configurations deployed in large enterprise networks or Web server farms. By standardizing server and client configurations, ECM ensures operational compliance to regulatory, industry and corporate standards throughout a computing infrastructure. Sustained by the industry's most proven scalable architecture, ECM collects detailed critical configuration data from each Windows, UNIX UNIX Operating system for digital computers, developed by Ken Thompson of Bell Laboratories in 1969. It was initially designed for a single user (the name was a pun on the earlier operating system Multics). , and Linux server and workstation--storing that information in a centralized database for immediate access, analysis and reporting. ECM enforces security policies by automatically resetting configurations to their pre-defined standards when an unauthorized change (or deviation) occurs. These powerful capabilities help IT organizations keep their critical systems properly configured, while ensuring security compliance with regulatory requirements such as HIPAA (Health Insurance Portability & Accountability Act of 1996, Public Law 104-191) Also known as the "Kennedy-Kassebaum Act," this U.S. law protects employees' health insurance coverage when they change or lose their jobs (Title I) and provides standards for patient health, , GLBA GLBA Gramm-Leach-Bliley Act of 1999 (Financial Modernization Act of 1999) GLBA Gay and Lesbian Business Association GLBA Great Lakes Booksellers Association GLBA Glacier Bay National Park and Preserve , Sarbanes-Oxley and FISMA FISMA Federal Information Security Management Act of 2002 FISMA Federal Information System Management Act . About Configuresoft's Center for Policy & Compliance The Center for Policy & Compliance (CP&C) is comprised of a team of security and policy experts, IT auditors and early contributors to the Federal mandates and industry best practices. While Configuresoft's goal includes helping administrators better understand and evaluate the security of their networks, the driving factor behind the CP&C is to help the market gain a better understanding of the tools that can help customers plan and implement automated strategies that effectively address regulatory and policy compliance issues. About Configuresoft Configuresoft is an innovator in systems management technology, serving eight of the world's 25 largest companies. Based in Colorado Springs, Colorado The City of Colorado Springs is the second most populous city (after Denver) in the state of Colorado and the 48th most populous city in the United States.[4] The city is the county seat of El Paso County. , the Company offers enterprise configuration, policy compliance and remediation products that span both operations and IT security. At a time in which organizations must maintain a continuous state of audit throughout their infrastructure, Configuresoft ensures these environments conform to any desired or mandated state. To contact Configuresoft, call 719.447.4600, visit us on the Web at www.configuresoft.com or write to info@configuresoft.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion