Don't Threaten Me: 10 Of The Hottest Security Updates From RSA Conference

RSA Conference 2014 Showcases Security Products

Security vendors are showcasing a variety of new malware detection, threat management, incident response and risk management services at RSA Conference 2014. The goal of the products is to mitigate risk across an organization and detect a new wave of sophisticated threats, targeted attacks using malware designed to defeat traditional security defenses. In addition, security vendors are adding threat intelligence capabilities, analytics and partnering to provide compromise indicators for better detection capabilities. Here is a roundup of some of the news from the security industry’s biggest conference.

ThreatTrack Announces ThreatSecure For Targeted Attacks

ThreatTrack Security unveiled ThreatSecure, a malware protection platform that provides detection and automated remediation of infections that typically evade traditional signature-based defenses. The company focuses on identifying targeted attacks and zero-day exploits by examining endpoint system behavior. It deploys remediation signatures to compromised systems regardless of what endpoint security product is being used on the PC. The software can integrate with existing alerting and event management systems.

TraceSecurity Highlights Rackspace Partnership

TraceSecurity, which sells the TraceCSO governance, risk and compliance software, said it inked a partnership with cloud hosting provider Rackspace. The partnership is designed to increase exposure of the software to Rackspace users. The two companies have had a close relationship, with Rackspace’s sales team, trained in TraceCSO, referring leads to TraceSecurity. TraceSecurity said it will conduct educational webinars with Rackspace throughout the first half of 2014.

Zscaler Launches Joint BT Platform For Mobile

Cloud security vendor Zscaler said it has created a joint product with communications services provider BT aimed at addressing mobile security risks. The BT Assure Threat Monitoring service will support real-time threat monitoring from the Zscaler Global Security Cloud. The joint products integrate Zscaler Web logs with BT’s service to provide monitoring, data analysis and regulatory compliance.

IBM Adds Incident Forensics To QRadar

IBM unveiled IBM Security QRadar Incident Forensics, adding a new way to diagnose potential threats, probe external attacks and investigate unauthorized insider activities. The module can be added to the QRadar Security Intelligence Platform, the company’s security information event management system. The forensics tool provides a record of activity on the network so incident responders can trace the actions of potential cybercriminal activity. It also can alert on suspicious activity. Existing QRadar clients can test the new module as part of a beta program. The product will be generally available in the second quarter of 2014.

McAfee Unveils Stonesoft Integration Plans

McAfee unveiled Comprehensive Threat Protection, a combined product set that includes its newly acquired Stonesoft next-generation firewall acquisition. The company said the combined suite is built to detect advanced threats by leveraging Stonesoft’s malware detection engine. It can then communicate with the rest of the platform to update protection for endpoints and other network security products to block the spread of threats. The company uses a variety of ways to detect threats and a sandbox to inspect suspicious files. The goal of the connected strategy is to share threat details with connected network and endpoint devices in real time to shut down malware communication and quarantine compromised systems. McAfee said its Threat Intelligence Exchange can stop sophisticated malware in milliseconds.

Fortinet Updates ForitOS To Extend Next-Gen Firewall Capabilities

Fortinet Unveiled FortiOS 5, the operating system behind its Fortigate next-generation firewall platform, adding integrating reporting, protection against targeted attacks and strong authentication. The company said the latest version of its operating system makes performance five times faster than competitive offerings and platform provides faster SSL inspection, out-of-the-box reports with drill-down capabilities from FortiAnalyzer, and tighter integration with its FortiAuthenticator and FortiSandbox appliance.

HP Launches Threat Intelligence Platform

Hewlett-Packard unveiled HP Threat Central, a security intelligence platform that can be used by community members to share threat data and analysis and provide intelligence on adversary methods and motivations. The platform collects, collates and analyzes both structured and unstructured data. It can be integrated with HP ArcSight and HP Tippingpoint appliances. The company said the platform integrates threat feeds from its partner network, which includes Arbor Networks, Blue Coat Systems, InQuest, ThreatGrid, Trend Micro and Wapack Labs. In addition, HP Enterprise Security Services will contribute data feeds.

Huawei Rolls Out Anti-DDoS Appliance

Huawei unveiled an anti-DDoS appliance designed for carriers, data centers, large enterprises and large Internet service providers. Huawei claims the appliance offers 1-Tbps performance and protection from application layer, mobile device and outbound distributed denial of service attacks. The AntiDDoS8000 line of appliances can defend several hundred Gbit-per-second DDoS threats, according to the company. Huawei said it can support a new service card with 160-Gbps protection performance and a high-density line card with 10 10GE ports.

Barracuda Announces Windows Azure Support

Barracuda Networks said its Barracuda NG Firewall is now available on the Windows Azure cloud platform, joining the Barracuda Web Application Firewall. The two products provide application security and secure remote-access capabilities to augment Windows Azure. The Barracuda NG Firewall supports 1-Gbps site-to-site secure remote access from on-premise networks to Windows Azure or virtual networks within Windows Azure, Barracuda said.

CA Unveils Mobile App Security Products

CA Technologies unveiled mobility and API tools for mobile app development, application performance and security from the client to the back end. The company said the CA Mobile Application Management supports containerization of mobile apps to extend access policies while retaining the native app experience. It can enforce access policies related to geographies, time of day and networks. The latest CA Advanced Authentication software provides strong authentication credentials for mobile environments. The CA Layer 7 API portal provides an interface to enable developers to access all the design time resources needed to quickly discover and understand an API, and then create an application and track its usage. It integrates with the CA Layer 7 Mobile Access Gateway to add security to an application.

NetCitadel Expands Analytics Capabilities To Threat Platform

NetCitadel said it expanded its analytics capabilities and third-party detection support of its ThreatOptics threat management platform. The latest release automates threat response and provides context and intelligence to malware infections. It supports Palo Alto Networks' WildFire service for suspicious file analysis and provides information to help administrators identify high-priority security incidents by threat scoring security alerts.

AT&T Teams With IBM For Network Security, Threat Management

AT&T and IBM are partnering to offer a joint security service that combines IBM security network infrastructure with AT&T’s managed security services. The partnership can help secure on-premise and next-generation cloud-managed security capabilities, AT&T said. The new offering supports the management of network-based firewall, IDS/IPS, Web filtering, secure email gateway, and distributed denial of service protection services for security devices managed on-premise or in the AT&T cloud. IBM will provide security monitoring, threat intelligence and emergency response services.