Security News & Reviews

  • Data Security Firm's Report Highlights Consumer Susceptibility to Cyber Attack
Imperva, the leader in Data Security, announced today the release of study analyzing 32 million passwords recently exposed in the breach.  Imperva's Application Defense Center (ADC) analyzed the strength of the passwords in a report, Consumer Password Worst Practices, that analyzes 32 million passwords to help consumers and website administrators identify the most commonly used passwords they should avoid when using social networking or e-commerce sites.
  • New Software Eliminates Cost and Complexity by Integrating Wireless, Wired, and Mobile Device Management
Aruba Networks, Inc., a global leader in 802.11n wireless LANs and secure mobility solutions, recently announced AirWave 7, a major extension of its award-winning operations solution that integrates the management of wireless networks, wired infrastructure, and client devices into a single interface. As increasingly mobile enterprise users connect to networks from more locations, using a wider variety of devices than ever before, IT organizations have struggled with the proliferation of vendor-specific, single-purpose management tools need to support these networks. AirWave 7 solves this problem by providing a single point of visibility and control for the entire network edge, including wired and wireless infrastructure as well as individual client devices. In so doing, AirWave 7 reduces the cost and complexity of network management, while improving service quality for users.
  • Fully Automated Key Management and Rollover Eliminates Barriers to DNSSEC Adoption

Infoblox Inc. recently announced availability of additional functionality to help organizations simplify deployment of the Domain Name System Security Extensions (DNSSEC), a suite of IETF specifications for securing information provided by DNS.

Many security researchers are expressing growing alarm over the state of DNS security. Security researcher Dan Kaminsky, Director of Penetration Testing at IO Active who exposed the "Kaminsky DNS vulnerability" and is advocating implementation of DNSSEC, commented: "The lack of DNS security not only makes the Internet vulnerable, but is also crippling the scalability of important security technologies.

And, underscoring the importance of DNS security and DNSSEC, implementation of DNSSEC is mandated for U.S. Federal government agencies by the end of December 2009.