Your Organization Has Just Been Attacked by Malware - Now What? [ Source: Sourcefire ]

December 2012- Jumping the gun? Maybe. But odds are it will happen.

Be ready with your Advanced Malware Survival Kit.

Download our Incident Response Brief: 4 keys to effective malware response From there, access:
• Videos: See the power of malware visibility and control from the network to end-devices
• Special Offer: 100 Free Seats of advanced malware protection

Download the Advanced Malware Survival Kit Now and be prepared before the next attack!

Demystifying PCI DSS: Expert Tips and Explanations to Help You Gain PCI DSS Compliance [ Source: Rapid7 ]

November 2012- The Payment Card Industry Data Security Standards (PCI DSS), with its over 200 requirements, can seem like a daunting set of regulations. Nonetheless, if your organization handles any kind of credit card information, you must be PCI DSS compliant. As difficult as this can seem, you can get expert help with our new eBook: Demystifying PCI DSS: Expert Tips and Explanations to Help You Gain PCI DSS Compliance.

When you download this free eBook, ...

Tolly Report: Anti-Virus Performance in VMWare ESX Virtual Environments [ Source: Symantec ]

October 2012- Symantec Corp. commissioned Tolly to benchmark the performance of its new Symantec Endpoint Protection (SEP) 12.1 within VMware ESXi 5 virtual environments vs. Trend Micro Deep Security 8. Specifically, this testing focused on the system resource requirements of each solution when performing on-demand and on-access scanning, and during distributed virus definition update

Cerberus: Malware Triage and Analysis [ Source: AccessData Group ]

October 2012- This document reviews new malware analysis technology, Cerberus, which determines the behavior and intent of suspect binaries without the need for signatures, white lists or a sandbox environment. Using this “triage” approach, organizations are able to detect unknown threats that signature-based technologies will miss. In addition, they are able to gain critical information immediately, allowing them to take decisive action prior to engaging a malware team. There are tens of thousands of static executables on ...

Achieving Compliance in Digital Investigations [ Source: Guidance Software ]

October 2012- 80% of organizations suffering payment card breaches had not achieved compliance with PCI DSS at the time of the breach. – Verizon 2011 Data Breach Investigation Report

As regulation and litigation increase, internal investigators must support an alphabet soup of compliance obligations: SOX, GLBA, FISMA, HIPAA, PCI DSS, regional privacy laws, and more. Although each regulation is different, these laws share common investigation requirements in three areas: policy, control infrastructure, and incident response.

This ...

Forrester Research - Disaster Recovery Exercises Fall Short of the Finish Line [ Source: VMware ]

October 2012- Though many enterprises have advanced disaster recovery technologies put in place, they still fall short when it comes to actual preparedness due to a lack of formal processes and a strict regimen for exercising DR plans.

This report details 10 tips for updating and improving your current DR exercise program to help you meet expected recovery objectives when faced with an unexpected event.

2012 NSS Labs Next-Generation Firewall Product Analysis Report [ Source: Sourcefire ]

October 2012- Looking to separate hype from reality when it comes to Next-Generation Firewalls?

Look no further.

NSS Labs, the trusted authority in independent product testing, recently evaluated the Sourcefire FirePOWER 8250 in the industry's most rigorous NGFW testing available to date.

The Sourcefire FirePOWER™ 8250 NGFW set a new standard in security effectiveness, performance and value:
•  protection against all attacks
•  firewall enforcement
•  application control
•  identity/user awareness
•  ...

Global Threat Report: September 2012 [ Source: ESET ]

October 2012- Get the most up-to-date view of the IT security threat landscape from the experts at ESET. This monthly threat report is required reading for anyone involved with IT Security.

Securing the Cloud [ Source: F5 ]

October 2012- Cloud computing has become another key resource for IT deployments, but there is still fear of securing applications and data in the cloud. These concerns include authentication, authorization, accounting (AAA) services; encryption; storage; security breaches; regulatory compliance; location of data and users; and other risks associated with isolating sensitive corporate data. Add to this array of concerns the potential loss of control over your data, and the cloud model starts to get a little scary. ...

Vulnerability Shielding: The Patch Management Challenge [ Source: Trend Micro ]

September 2012- Each year thousands of critical software flaw vulnerabilities are reported in operating systems, databases, servers, and other applications. Patching these vulnerabilities can be disruptive and time consuming, requiring systems to be rebooted and impacting service level agreements. Even when a patch is available, it can take weeks or even months before the patch can be fully deployed.

Download "Vulnerability Shielding: The Patch Management Challenge" to learn about some of the key features and ...

Empowering Endpoints: Unifying Data Protection and Collaboration [ Source: Druva ]

September 2012- This white paper presents the IT challenges caused by an increasing mobile and collaborative workforce and discusses how Druva can solve these challenges.

The Authentication Revolution: Phones Become The Leading Multi-Factor Authentication Device [ Source: PhoneFactor ]

October 2012- Escalating IT security threats and strengthening regulatory requirements are driving adoption of multi-factor authentication to unprecedented levels. Increasingly, new and expanded multi-factor implementations are leveraging phone-based authentication instead of hardware security tokens, which had previously dominated the multi-factor market. According to Goode Intelligence, an information security research and analysis firm, phone-based authentication will comprise 61% of the multi-factor authentication market by the year 2014.

This paper will address the key drivers for this market shift ...

Evolving Endpoint Malware Detection: Dealing with Advanced and Targeted Attacks [ Source: Trusteer ]

November 2012- Advanced malware targeting employee endpoints is a major threat to corporate intellectual property, regulated data and financial assets. Perimeter and traditional endpoint defenses are struggling to meet this emerging threat in the face of a changing IT landscape: desktop virtualization, remote access, BYOD and Cloud migration.

This whitepaper explains how advanced malware challenges traditional defenses to take advantage of the increased exposure of employee endpoints. It review's the evolution of advanced targeted attacks, ...