Cisco a annoncé son intention d’acquérir la société ScanSafe, fournisseur de services de filtrage web en mode SaaS. Comme l’évoque Tom Gillis, general manager de la business unit sécurité chez Cisco “With the acquisition of ScanSafe, Cisco is executing on our vision to build a borderless network security architecture that combines network and cloud-based services for advanced security enforcement. Cisco will provide customers the flexibility to choose the deployment model that best suits their organization and deliver anytime, anywhere protection against Web-based threats.”

Cette annonce rejoint pleinement la stratégie Cisco qui consiste à offrir des services de sécurisation des flux internet à la pointe de la technologie, ces services étant disponibles sous forme d’appliance, de service hosté, ou dans un mode hybride pour profiter du meilleur des deux mondes. Une intégration éventuelle avec Anyconnect permettra d’augmenter la sécurité des nomades dans un monde où le réseau n’a plus de frontières….

ChannelWeb

                  
ScanSafe aparece como base para que a fabricante construa seu portfólio de soluções de segurança na nuvem

A linha de pensamento da Cisco de absorver empresas de nicho se mantém mais esta semana. A corporação anuncia a intenção de adquirir a ScanSafe, fornecedora de segurança na web, por US$ 183 milhões, em cash, mais incentivos retidos, com expectativa de fechamento no início de 2010.

“Com a compra da ScanSafe, a Cisco executa, em nossa visão, a estrutura para construir uma arquitetura de segurança de borderless network, que combina rede e serviços na nuvem para segurança avançada”, disse Tom Gillis, vice-presidente e general manager da unidade Security Technology Business (STBU) da Cisco, em comunicado. “A Cisco vai prover aos clientes a flexibilidade de escolher o modelo de desenvolvimento que melhor cabe em sua empresa, e entregar a qualquer hora, em qualquer lugar a proteção contra ameaças da web”.

A ScanSafe, companhia privada fundada em 2004, em São Francisco, produz soluções SaaS para o SMB e o enterprise e possui uma rede global de data centers.

De acordo com a Cisco, os produtos ScanSafe se tornarão parte do Cisco”s AnyConnect VPNClient e a fabricante planeja usar ambas arquiteturas de data center e de nuvem compartilhada para, no futuro, construir seu próprio portfólio de produtos de segurança na nuvem.

O time gestor da ScanSafe, por sua vez, será parte da estrutura STBU, reportando-se a Gillis.

“A ScanSafe foi pioneira no Mercado de segurança SaaS e continua a liderar nesse mercado em rápido crescimento. Em um cenário em que empresas estão, cada vez mais, focadas em um ambiente de trabalho flexível e móvel, a necessidade de soluções de hosteamento híbrido em segurança é maior do que nunca. Unindo-nos à Cisco, seremos capazes de oferecer proteção ainda maior e mais flexível aos nossos clientes”, disse o CEO da empresa, Eldar Tuvey, em nota.

Na semana passada, a Cisco anunciou planos de comprar a especialista em infraestrutura móvel Starent Networks. No início do mês, também incrementou seu portfólio de vídeo com a Tandberg.

Après 10 ans de succès ininterrompu, les équipements de sécurité Tout-en-Un ont sérieusement marqué le pas en 2009. C’est ce qui ressort des rapports financiers des constructeurs spécialisés, notamment celui du constructeur français coté en bourse (allez jeter un œil sur boursorama.com, et tapez « firewall utm » dans le moteur de recherche…). L’atonie générale de l’informatique suffit-elle à l’expliquer, ou y a-t-il des phénomènes plus profonds ?

Dans ce contexte, le lancement du nouveau Cisco SA500 pose une autre question. Pourquoi Cisco réussirait-il sur le marché de la PME en investissant apparemment à contretemps ? Je vous livre ma pensée : La demande n’est pas prête de se tarir, c’est la manière d’y répondre qui est en train de se transformer.  Le Cisco SA500 offre du filtrage du contenu (Antivirus, AntiSpam, Filtrage Web) qui s’exécute « dans le nuage » et non plus sur le firewall, contrairement à ce qui était en vigueur sur le marché des solutions de sécurité « tout-en-un » pour les PME.

Selon Gartner, qui a récemment publié une étude dédiée aux équipements de sécurité tout-en-un pour PME (avant l’annonce du SA500 cependant), le marché va continuer à grossir de 20% par an jusqu’en 2012. Et si on écoute Canalys, les services de sécurité hébergés pour les entreprises représentent déjà 5% d’un marché européen de 2 milliards de dollars au premier semestre 2009. Ce marché fragmenté avec beaucoup de petits constructeurs spécialisés va changer profondément : si la sécurité s’exécute « dans le nuage », il va falloir posséder les Datacenters et la base de données temps réel des menaces. On comprend mieux la stratégie de Cisco, et l’annonce ce matin du rachat de Scansafe, une entreprise de Sécurité Web « dans le nuage ».

Más de 50,000 páginas web se han visto afectadas por un ataque de inyección SQL que amenaza con causar el caos entre usuarios inocentes. Al menos eso es lo que se afirma en un nuevo informe de ScanSafe.

La empresa de seguridad dice en un blog, que ha sido la primera en detectar el problema, que se inició el pasado viernes. El ataque inserta un ‘iframe‘ malicioso en el site que, tras ser visitado por un usuario, empieza a descargar lo que la investigadora de seguridad de ScanSafe, Mary Landesman, describe como “un potente cocktail de troyano con puertas traseras y ladrones de contraseñas”

Actualmente el número de sites afectados alcanza los 57,000 y desde ScanSafe afirman que los más afectados serán las pequeñas empresas que no cuentan con el personal apropiado y sí con tráfico en sus páginas web.

Landesman ha pedido a las empresas que busquen información sobre cómo impedir esos ataques en la web, donde hay incluso herramientas que ayudan a detectar si una página web tiene ‘iframes’ maliciosos.

Where’s all the television coverage about this one?

A few websites that give more information on what seems to be a more menacing threat:

“Experts: Gumblar attack is alive, worse than Conficker” – Cnet Security news

“Gumblar” Computer Virus A Growing Threat” – CBS News

Check your own system -  ScanSafe STAT Blog

Hart’s PC Repair

Hmm, seems Sir Paul McCartney has a malicious virus and it ain’t Heather. OK, its on his website people. The nasty piece of software is known as LuckySploit (again, nothing to do with Heather) and gives hackers the ability to access the personal details of visitors. Which makes me wonder why they bothered to hit a Beatle, since his main audience would be middle aged, baby boomers who have a natural fear of placing credit cards anywhere near the net. Anyways ScanSafe,bless their souls, discovered the virus after a burst of traffic following McCartney/Starr reunion and have fixed the problem. And order was once again restored to the world. Hurry up already with some news we can at least pretend to care about!!!

The major email security vendors on the market namely Google (powered by Postini), Symantec (who also acquired Messagelabs), MX Logic, ScanSafe, Trend Micro, McAfee, Websense and Microsoft, all form part of the email security “boundary”. This boundary offers two significantly different email security models. On the one hand we have the Legacy Model; the traditional method of securing in-house security with an on-premise software and hardware infrastructure, which is maintained by in-house staff. On the other side of the sphere you have the SaaS Model; the email security model that secures and manages your network from within “the cloud”, by managed security service providers (MSSP’s)

IT departments can invest in vendors that naturally provide an integration of both on-premise and SaaS solutions, or they can invest in vendors at opposite ends of the security boundary. The one side provides a pure on-site infrastructure and the other a complete off-site (in the cloud) infrastructure.

During the economic slowdown (or the recession in some cases, lets not name any names; but the UK!) the solution that competes at top level, but is more cost effective, must surely be the most desired email security investment among the options? right?

Some professionals say that the SaaS approach is not ready for the big-business market, but with extremely competitive prices and with the security and compliance surety, provided by Postini, the Google Apps platform continues to march forward. With an one-million-strong customer base on Google Apps, and an estimated 45,000 businesses on the Google Security platform, it will be hard to suggest that the SaaS model is not a realistic business model. right?

Let us not take anything away from on-premise software and hardware solutions. It has been doing the job for a number of years…, but let me be cliche and say; times are changing. During these tough times, when there is a solution that stops spam and other threats 99.999% of the time, and also provides up to 10 years email archiving, and is significantly cheaper (i hate this word) than competitor offerings, you can be sure to see businesses moving over to SaaS providers and Google Apps services in bigger numbers then ever before.

Want to do a demo on SaaS security and compliance? click here

“The amount of web-based malware on legitimate sites has increased by over 400 percent since last year. 68% of all internet-based malware was now being hosted on legitimate sites.”
www.internetrack.blogspot.com

Etätyö lisää käyntejä pornosivuilla ja erilaisilla laittomilla sivustoilla, kerrotaan uutisissa. Asiaa on tutkinut webin turvapalveluja myyvä Scansafe, joka tutki miljoonia sivulatauksia alkuvuodesta. Kiinteässä työpisteessä työnantajan nettiyhteyttä käytetään mm. pankkiasioiden hoitoon ja nettiostoksiin.

Laittomien sivustojen käyttö (esim. laittomat musiikin lataukset) ja pornosivujen vierailut ovat aikamoinen riski työnantajan näkökulmasta, sillä työnantaja saattaa joutua vastuuseen laittomien ohjelmien käytöstä, pornosivustoilta taas tulee koneelle usein erilaisia haittaohjelmia. Uutisissa lisää aiheesta.

Minä vaan ihmettelen, miten joillakin on työaikana aikaa kaikkeen tuohon…

A popular Indian news and entertainment web site www.indiatimes.com is said to be serving malware to visitors to some sections of its site. Guess what – the PR firm of the security company, that detected the threat, is busy contacting journalists to write about the attack and presumably about the company, ScanSafe. They were even offering interviews with their researchers.

Thanks ScanSafe, but you would be doing everyone a service by contacting the Times of India group instead, and helping them resolve the problem !

Instead your folks are apparently trying to squeeze out mileage in the US media from somebody’s misfortune. All in the name of getting your advisory across to users of www.indiatimes.com in India !!

ScanSafe’s cynical interest in publicity reflects the state of public relations these days in the corporate sector.

A few hours after a call center employee in Pune, India was raped and murdered by the driver of the cab dropping her home, another security company circulated a release informing people that this kind of crime will be avoided if call center companies deploy their technology that monitors staff and taxi activity.

I am sure the technology is worth looking at. But don’t you think it is in bad taste to take advantage of someone’s misfortune to push your product, and that too soon after the murder ?

When I was young, my parents always told me that charity had to be voluntary, and discreet, to respect the dignity of the recipients of the charity. The PR industry has broken that norm too. Most companies follow every little act of charity with a press release and media coverage, sometimes with snaps of the beneficiaries.

For those wanting more information on the malware at IndiaTimes here is a link to ScanSafe’s blog.

Update:

We heard from Mary Landesman at ScanSafe, and it appears that they tried to reach out to IndiaTimes on Thursday. India Times indicated it was a holiday and they would be unlikely to take action until Monday. “Our reaching out to the media is merely an effort to ensure people are protected in the interim,” she added.

Our apologies to ScanSafe – you folks are evidently not one of the cynical manipulators of the media I was talking about.