Core Security and PatchLink Partner to Deliver Comprehensive Risk Analysis, Vulnerability Management and Remediation Across The Enterprise.BOSTON and SCOTTSDALE, Ariz. -- Two Industry Pioneers Integrate Technologies to Deliver Advanced Penetration Testing A test of a network's vulnerabilities by having an authorized individual actually attempt to break into the network. The tester may undertake several methods, workarounds and "hacks" to gain entry, often initially getting through to one seemingly harmless section, and from there, and Remediation Capabilities to Customers Worldwide To combat the increasing threats of viruses, worms and hacker A person who writes programs in assembly language or in system-level languages, such as C. The term often refers to any programmer, but its true meaning is someone with a strong technical background who is "hacking away" at the bits and bytes. attacks, Core Security Technologies, provider of CORE IMPACT(TM), the first-to-market penetration testing product for assessing specific information security risks, and PatchLink(R) Corporation, the global leader in patch and vulnerability management, have partnered to help protect core assets within the enterprise by integrating their products. The combined solution enables administrators to automatically gain access to rogue computers using CORE IMPACT to quickly identify and penetrate these machines and deploy the PatchLink Update(TM) agent to facilitate quick and easy remediation of that system. Once the PatchLink Update agent is installed on the rogue computer, patches and service packs can be quickly downloaded and installed along with any other required software or policy settings needed to bring that system back into compliance with local network security policies. Given the escalating pace of attacks on corporate networks, even one vulnerable machine can pose a threat. Yet IT administrators are frequently faced with new systems being added every day to the network - rebuilt employee systems, new computers purchased by the company, Virtual Machine-based systems, visitor laptops or even remote access users connecting through a VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. - that can be completely out of policy compliance. A single vulnerable machine can pose a tremendous threat to an organization as it can be used as an entry point for further widespread attack. The ability to effectively manage this common computing environment poses a significant challenge for IT without automated tools to quickly test machines and rapidly remediate re·me·di·a·tion n. The act or process of correcting a fault or deficiency: remediation of a learning disability. re·me vulnerabilities prior to accessing the network. "Protecting the enterprise from the escalating number of software vulnerabilities requires two steps; finding the vulnerabilities, which must include discovering all the devices on your network which have vulnerabilities, and then delivering patches to all those machines," said Charles Kolodgy, research director of Security Products at IDC. "By combining the vulnerability remediation capability of PatchLink with the 'attacker view' penetration testing of Core Security, enterprises could greatly reduce their exposure to vulnerabilities by ensuring they find and fix all machines." CORE IMPACT makes it easy, efficient and cost-effective for any security professional or network administrator to perform a penetration test. With just a point and click, CORE IMPACT allows a user to safely exploit vulnerabilities within their network, replicating the kind of access an intruder An attacker that gains, or tries to gain, unauthorized access to a system. See attacker, intrusion and IDS. could achieve. By exploiting these vulnerabilities and the relationships that exist among network components, CORE IMPACT helps users intelligently prioritize pri·or·i·tize v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem v.tr. To arrange or deal with in order of importance. v.intr. remediation efforts, validate the security of vital information stored on critical severs, and accurately evaluate the effectiveness of IDS, IPS (1) (Inches Per Second) The measurement of the speed of tape passing by a read/write head or paper passing through a pen plotter. (2) (IPS) (Intrusion Prevention S and other deployed or considered security technologies. "Enterprises are grappling with protecting their networks against an ever-increasing barrage of vulnerabilities that could leave them open to attack and theft of corporate assets," said Jeff Cassidy, vice president of business development, Core Security. "By integrating CORE IMPACT's industry-leading, automated penetration testing capabilities with PatchLink's solution, we are helping customers further improve their security postures through an advanced vulnerability management and remediation process." "PatchLink is committed to helping customers effectively protect their networks with integrated tools that address key challenges such as unmanaged machines accessing their networks," said Chris Andrew, vice president of security technologies, PatchLink. "Through our partnerships with technology innovators innovators people who will try new things. early innovators important figures in the farming or client community because they are the leaders in the introduction of new techniques and management systems. like Core Security, PatchLink looks to provide solutions that extend beyond our core patch and vulnerability management capabilities and deliver greater value to our customers as they seek to eliminate risks and reduce overall IT costs." About PatchLink(R) Corporation PatchLink(R) Corporation (www.patchlink.com) is the global leader for multi-platform, multi-vendor security patch A fix to a program that eliminates a vulnerability exploited by malicious hackers. See vulnerability and patch. , vulnerability and compliance management software, solutions and services with offices in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. , Australia, Hong Kong Hong Kong (hŏng kŏng), Mandarin Xianggang, special administrative region of China, formerly a British crown colony (2005 est. pop. 6,899,000), land area 422 sq mi (1,092 sq km), adjacent to Guangdong prov. , Singapore and the United Kingdom. Providing a highly scalable, extensible, multi-platform technology for network security, including endpoints, PatchLink Update(TM) gives customers access to the world's largest repository of tested and security patches and mis-configuration updates for deployment across their enterprises. About Core Security Technologies Core Security Technologies develops strategic solutions that help security-conscious organizations worldwide develop and maintain a proactive process for securing their networks. The company's flagship product A primary product of a company, which is typically why the company was founded and/or what made it well known. For example, MS-DOS, Windows and the Microsoft Office suite have been flagship products of Microsoft. CorelDRAW is a flagship product of Corel Corporation. , CORE IMPACT, is the first automated penetration testing product for assessing specific information security threats to an organization. Penetration testing evaluates overall network security and identifies what resources are exposed. It enables organizations to determine if current security investments are detecting and preventing attacks. Core augments its leading technology solution with world-class security consulting services Noun 1. consulting service - service provided by a professional advisor (e.g., a lawyer or doctor or CPA etc.) service - work done by one person or group that benefits another; "budget separately for goods and services" , including penetration testing, software security auditing and related training. Based in Boston, MA and Buenos Aires Buenos Aires (bwā`nəs ī`rēz, âr`ēz, Span. bwā`nōs ī`rās), city and federal district (1991 pop. , Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion