nCircle Tech Perspectives Blog: January 2012 Archives

Yesterday Symantec issued a security advisory for users of pcAnywhere asking users of the product to delete or disable it immediately until they release a set of updates that resolve currently known vulnerability risks.

Users of PC Anywhere may be at risk because of the theft of Symantec source code in 2006. Attackers have had plenty of time to study the code looking for vulnerabilities that could allow them to use the remote-access software to remotely access pcAnywhere installations. If attackers successfully exploit vulnerabilities in the code, it could give attackers unprecedented access to corporate networks around the world.

According to Symantec's security advisory, "All pcAnywhere 12.0, 12.1, and 12.5 customers are at increased risk, as well as customers using prior versions of the product."

The remote-access software runs on Windows, Mac OS X, Linux, and the PocketPC platform.
Symantec's PC Anywhere has also been bundled with numerous other products from Symantec and other partners.

In addition, Symantec said, "A remote access component of pcAnywhere, called the pcAnywhere Thin Host, is also bundled with a number of Symantec backup and security products."

nCircle customers can easily identify every system running pcAnywhere or pcAnywhere Thin Host on their network with IP360 or our new, cloud-based network security scanner PureCloud.

Forewarned is forearmed. Scan now; make sure your network is protected.

Updated Feb. 6, 2012: Symantec patches for pcAnywhere are now available for manual download here.

Calling all IT solution Providers, resellers and online communities! nCircle recently announced PureCloud our revolutionary new, cloud-based scanning service and it's been pulling in rave reviews from our customers and the industry.

Now it's time for partners to get in on PureCloud ! To make it easy for our partners to promote this new offering we've developed a complete online, click-through referral service that earns cash for every customer that makes a PureCloud purchase from your referral. As a Referral partner you receive 10% of the initial referral purchase of either a PureCloud detailed scan report or annual PureCloud subscription.

This new program makes it simple and easy for anyone with an online presence to make money with PureCloud. It literally takes minutes to sign up and you can track all your referrals and commissions online.

Referral partners have access to a wide range of marketing content designed to make it easy to immediately promote referrals through websites and social media. There are no commitments or minimums, so referral partners can get started monetizing their customer base and web presence instantly.

nCircle provides everything you need to get started. All you need to do is sign up here, get your code and start linking!

A key security initiative for government agencies is the implementation of continuous monitoring. nCircle’s new webinar can provide insight into agency implementations of continuous monitoring and detail the four key practices agencies are using to driving dramatic improvements in their security posture.

Listen to Jim Acquaviva and Keren Cummins discuss the relationship between continous monitoring best practices, metrics and benchmarking and how nCircle Benchmark can provide the foundation for dramatic improvements in your security posture.

You can find the webinar here.

It's stop SOPA day across the Internet. Listen to Episode 26 of our Security Slice podcast and hear Andrew Storms and Tim 'TK' Keanini discuss the flawed thinking behind SOPA.

We've got a great promotion in Spiceworks. Scan up to five IPs with nCircle PureCloud and get complete vulnerability reports, a $225 value. You can ind more information here.

But hurry, this offer is only good through January 31.

Security breaches are a fact of life for everyone, but most organizations don't accurately quantify their security risks.

Listen to Episode 25 of our Security Slice podcast and hear Oliver Lavery and Tim 'TK' Keanini discuss the challenges inherent in accurately assessing security risk and offer suggestions on how to change your security mindset.

1) Step Up Your Risk Management Game

Go beyond the 'find and fix' mentality and begin to measure and manage by counting what matters. Work with other groups towards mutual goals and to share results both good and bad.

Finally, use metrics as a weapon of mass budget allocation and a tool to move budget dollars to where they're needed most.

- Tim Erlin, Director of Product Management

2) Understand IPv6 and All its Security Implications

We've all been avoiding the implications of IPv6 because haven't really needed it, but now we do. Set aside some time to really understand IPv6 because the impact on security is enormous and it's not something that can be integrated in a rush.

Become knowledgeable enough be to explain IPv6 security issues to upper management so you are prepared to fight for the necessary budget allocation before IPv6 issues become an emergency.

- Andrew Storms, Director of Security Operations

3) Start Thinking Like a Cyber Criminal

Imagine you were part of an organized crime unit, and your criminal organization has targeted your company for a cyber attack. What information would you try to steal? What information could be used to make money?

This mental exercise can help you defend your network and your data. Use the same thought process to evaluate cyber attacks originating from nation states and 'hactivists' because each of these groups may target different kinds of information for different reasons.

Understand each group and the data that could be valuable to them so you can make it more difficult for them to carry out any of their strategies on your network

- Tim 'TK' Keanini, CTO

4) Move Toward Continuous Monitoring of Security and Compliance Controls

Security is a business process that should be maturing in all organizations and 2012 is the time to move closer to a continuous view of your security and compliance controls. Maximize your use of automation and technology in 2012 to provide reports and alerts for material deviations from internal policies, provide baseline measurements and goals, and reduce hands-on intervention in routine security processes.
Security talent is a scare resource. Take advantage of the talent you have by having them focus on real risks. Automation can also provide excellent data that compares the performance of your security initiatives to your peers.

- Elizabeth Ireland, VP Marketing