|
| [May 19, 2008] |
 |
Digital Defense Releases Critical Vulnerability Check for the OpenSSL Implementation on Debian and Ubuntu Linux Distributions
SAN ANTONIO --(Business Wire)-- Digital Defense, Inc. (DDI), a leading provider of information security assessment services and Software as a Service (SaaS) Security Compliance solutions, today announced they released an update to their vulnerability scanning engine. The update contains a check for a newly discovered vulnerability in the OpenSSL implementation on Debian and Ubuntu Linux distributions. This vulnerability renders all cryptographic key material generated on a vulnerable system wide open to brute-force attack and includes all OpenSSH, OpenVPN, and OpenSSL keys. Non-Debian systems utilizing keys generated by a vulnerable system are also open to attack.
"We are very proud of the diligence and dedication of our Vulnerability Research Team (VRT) and the speed with which they respond to newly discovered vulnerabilities," said Larry R. Hurtado, president and CEO of Digital Defense. "Our VRT serves our clients in a very important way. They keep careful watch for new vulnerabilities that, if exploited, could compromise our clients' information assets. Because new vulnerabilities can surface at any time, our VRT must continually be on the lookout. Our VRT, working together with our well credentialed security analysts, utilizes our proprietary Frontline technology to provide our clients with unparalleled levels of service and support not found in other information security or security compliance organizations."
The Frontline(TM) Vulnerability Lifecycle Management SaaS offering provides enterprise-wide, distributed network scanning capabilities on an on-demand basis. Clients can scan any host within their network regardless of its location at any time. A security information management portal configured to best support the needs of each client in terms of scan results reporting and workflow management of detected security vulnerabilities then provides the vulnerability scan results. Clients can also associate business risk with each host, which allows them to further optimize the execution of their risk mitigation plans.
About Digital Defense
Digital Defense, Inc., an approved scanning vendor by the Payment Card Industry (PCI) Security Standards Council (SSC), delivers a comprehensive portfolio of risk management services including information security programs, regulatory compliance solutions, security testing of IT products and security education offerings. Digital Defense and its Security Operations team uses proprietary Software as a Service (SaaS) technology and industry best practices to deliver a broad array of services to clients, which range from small financial institutions to global Fortune enterprises. Frontline(TM), Digital Defense's flagship service portal, provides clients with instant access to a security information management platform that enables independent oversight of their organization's security posture on an autonomous or Digital Defense managed service basis. For more information about Digital Defense, please visit our web site at www.digitaldefense.net or contact us at 888.273.1412.
Reader Contact Information
Digital Defense, Inc., 9000 Tesoro Drive, Suite 100, San Antonio,
Texas, 78217
Phone - 210.822.2645, Fax - 210.822.9216
www.digitaldefense.net
Digital Defense and the Shield Logo are Registered Service Marks of Digital Defense, Inc. All other trademarks are the property of their respective owners.
[ Back To TMCnet.com's Homepage ]
|
Find Solutions for Enterprises, SMBs & Service Providers at the INTERNET TELEPHONY Conference and EXPO West, September 16-18, 2008. Los Angeles, California.
