Tolly Report: Anti-Virus Performance in VMWare ESX Virtual Environments [ Source: Symantec ]

October 2012- Symantec Corp. commissioned Tolly to benchmark the performance of its new Symantec Endpoint Protection (SEP) 12.1 within VMware ESXi 5 virtual environments vs. Trend Micro Deep Security 8. Specifically, this testing focused on the system resource requirements of each solution when performing on-demand and on-access scanning, and during distributed virus definition update

Cerberus: Malware Triage and Analysis [ Source: AccessData Group ]

October 2012- This document reviews new malware analysis technology, Cerberus, which determines the behavior and intent of suspect binaries without the need for signatures, white lists or a sandbox environment. Using this “triage” approach, organizations are able to detect unknown threats that signature-based technologies will miss. In addition, they are able to gain critical information immediately, allowing them to take decisive action prior to engaging a malware team. There are tens of thousands of static executables on ...

Achieving Compliance in Digital Investigations [ Source: Guidance Software ]

October 2012- 80% of organizations suffering payment card breaches had not achieved compliance with PCI DSS at the time of the breach. – Verizon 2011 Data Breach Investigation Report

As regulation and litigation increase, internal investigators must support an alphabet soup of compliance obligations: SOX, GLBA, FISMA, HIPAA, PCI DSS, regional privacy laws, and more. Although each regulation is different, these laws share common investigation requirements in three areas: policy, control infrastructure, and incident response.

This ...

Forrester Research - Disaster Recovery Exercises Fall Short of the Finish Line [ Source: VMware ]

October 2012- Though many enterprises have advanced disaster recovery technologies put in place, they still fall short when it comes to actual preparedness due to a lack of formal processes and a strict regimen for exercising DR plans.

This report details 10 tips for updating and improving your current DR exercise program to help you meet expected recovery objectives when faced with an unexpected event.

2012 NSS Labs Next-Generation Firewall Product Analysis Report [ Source: Sourcefire ]

October 2012- Looking to separate hype from reality when it comes to Next-Generation Firewalls?

Look no further.

NSS Labs, the trusted authority in independent product testing, recently evaluated the Sourcefire FirePOWER 8250 in the industry's most rigorous NGFW testing available to date.

The Sourcefire FirePOWER™ 8250 NGFW set a new standard in security effectiveness, performance and value:
•  protection against all attacks
•  firewall enforcement
•  application control
•  identity/user awareness
•  ...

Global Threat Report: September 2012 [ Source: ESET ]

October 2012- Get the most up-to-date view of the IT security threat landscape from the experts at ESET. This monthly threat report is required reading for anyone involved with IT Security.

Securing the Cloud [ Source: F5 ]

October 2012- Cloud computing has become another key resource for IT deployments, but there is still fear of securing applications and data in the cloud. These concerns include authentication, authorization, accounting (AAA) services; encryption; storage; security breaches; regulatory compliance; location of data and users; and other risks associated with isolating sensitive corporate data. Add to this array of concerns the potential loss of control over your data, and the cloud model starts to get a little scary. ...

Vulnerability Shielding: The Patch Management Challenge [ Source: Trend Micro ]

September 2012- Each year thousands of critical software flaw vulnerabilities are reported in operating systems, databases, servers, and other applications. Patching these vulnerabilities can be disruptive and time consuming, requiring systems to be rebooted and impacting service level agreements. Even when a patch is available, it can take weeks or even months before the patch can be fully deployed.

Download "Vulnerability Shielding: The Patch Management Challenge" to learn about some of the key features and ...

Empowering Endpoints: Unifying Data Protection and Collaboration [ Source: Druva ]

September 2012- This white paper presents the IT challenges caused by an increasing mobile and collaborative workforce and discusses how Druva can solve these challenges.

The Authentication Revolution: Phones Become The Leading Multi-Factor Authentication Device [ Source: PhoneFactor ]

October 2012- Escalating IT security threats and strengthening regulatory requirements are driving adoption of multi-factor authentication to unprecedented levels. Increasingly, new and expanded multi-factor implementations are leveraging phone-based authentication instead of hardware security tokens, which had previously dominated the multi-factor market. According to Goode Intelligence, an information security research and analysis firm, phone-based authentication will comprise 61% of the multi-factor authentication market by the year 2014.

This paper will address the key drivers for this market shift ...

Evolving Endpoint Malware Detection: Dealing with Advanced and Targeted Attacks [ Source: Trusteer ]

May 2013- Advanced malware targeting employee endpoints is a major threat to corporate intellectual property, regulated data and financial assets. Perimeter and traditional endpoint defenses are struggling to meet this emerging threat in the face of a changing IT landscape: desktop virtualization, remote access, BYOD and Cloud migration.

This whitepaper explains how advanced malware challenges traditional defenses to take advantage of the increased exposure of employee endpoints. It review's the evolution of advanced targeted attacks, ...

Application Control in Windows 8 [ Source: Bit9 ]

August 2012- One of the biggest challenges in desktop administration is application control. If administrators are to keep desktops secure, then they must be able to ensure only safe applications are installed on user desktops.

Download this whitepaper to learn how Bit9 has emerged as the most effective application control mechanism.

2012 Bit9 Cyber Security Research Report [ Source: Bit9 ]

August 2012- Anonymous hacktivists, cyber criminals and nation-states are viewed as the top three threats in 2012 in this Bit9 survey of more than 1,800 IT professionals. And more than 60 percent of those surveyed believe that they will be the target of a cyber-attack in the next 6 months.

Download this research report to find out how your security and IT colleagues view the world of advanced cyber threats and find out how you compare.