|
Digital Defense Rolls Out Critical Vulnerability Check for the OpenSSL
Implementation on Debian and Ubuntu Linux Distributions
(Wireless News Via Acquire Media NewsEdge)
Digital Defense (DDI), a provider of information security assessment
services and Software as a Service (SaaS) Security Compliance
solutions, announced they released an update to its vulnerability
scanning engine.
The update contains a check for a newly discovered vulnerability in the
OpenSSL implementation on Debian and Ubuntu Linux distributions. This
vulnerability renders all cryptographic key material generated on a
vulnerable system wide open to brute-force attack and includes all
OpenSSH, OpenVPN, and OpenSSL keys. Non-Debian systems utilizing keys
generated by a vulnerable system are also open to attack.
"We are very proud of the diligence and dedication of our Vulnerability
Research Team (VRT) and the speed with which they respond to newly
discovered vulnerabilities," said Larry R. Hurtado, president and CEO
of Digital Defense. "Our VRT serves our clients in a very important
way. They keep careful watch for new vulnerabilities that, if
exploited, could compromise our clients' information assets. Because
new vulnerabilities can surface at any time, our VRT must continually
be on the lookout. Our VRT, working together with our well credentialed
security analysts, utilizes our proprietary Frontline technology to
provide our clients with unparalleled levels of service and support not
found in other information security or security compliance
organizations."
DDI noted in a release that the Frontline Vulnerability Lifecycle
Management SaaS offering provides enterprise-wide, distributed network
scanning capabilities on an on-demand basis. Clients can scan any host
within their network regardless of its location at any time. A security
information management portal configured to best support the needs of
each client in terms of scan results reporting and workflow management
of detected security vulnerabilities then provides the vulnerability
scan results. Clients can also associate business risk with each host,
which allows them to further optimize the execution of their risk
mitigation plans.
((Comments on this story may be sent to newsdesk@closeupmedia.com))
((Distributed on behalf of 10Meters via M2 Communications Ltd -
http://www.m2.com))
((10Meters - http://www.10meters.com))
Copyright ? 2008 Wireless News
[ Back To TMCnet.com's Homepage ]
|
Find Solutions for Enterprises, SMBs & Service Providers at the INTERNET TELEPHONY Conference and EXPO West, September 16-18, 2008. Los Angeles, California.
