To Click or Not To Click?

That is the question racing through the mind of the second shift employee who is being suckered by a phishing URL. There is only one answer to the question but time and time again IT Professionals need to be prepared for a lapse in good judgment.

Despite training and constant reminders, employees fall victim to the simplest lures. We all want to know who Britney Spears is dating but it only takes one employee to click on the ‘find out’ hyperlink in a harmless looking email. Sadly, a sudden lapse in employee judgment can become tomorrow’s headline when data is stolen from an unsuspecting endpoint.

In the August 29^th “State of Phishing” report published by Symantec, there was a 52 percent increase in phishing attacks from the previous month.

The problem is worsened with laptops and remote computers. When the cat’s away, the mice will definitely play. Most mobile employees take personal ownership of the corporate laptop; downloading music, games and visiting social networks. Outside the security of the corporate network, all goes undetected.

IT Professionals need to ensure endpoint security applications, browser applications and operating systems are up to date and running effectively. Clear Blue Security’s endpoint security software is the answer to immediately implementing security policies and monitoring out of network endpoints.

Protect your laptops today. Download Clear Blue Security’s Endpoint Security software for free.

Endpoint security management is the IT equivalent to ditch digging. Its dirty, sweaty, monotonous and thankless work better left to minimum wage earners with brawn, not maximum wage earners with brain.

OK, so maybe changing the ink jet cartridge is more depressing, but, endpoint security management doesn’t rank much higher.

IT organizations are working to get away from administrative tasks and would like to spend more time on analysis, end-user productivity and supporting strategic objectives of the business. Despite agreeing that jobs like endpoint security management are better left to automation, getting upper management to spend money on automation tools isn’t easy in the current economic environment.

How can an IT administrator justify implementing an endpoint security management solution?

In a study performed by the Aberdeen Group (as a disguised sales pitch for Symantec), it was determined that at least $243 per endpoint per year (26% of total cost of endpoint ownership) is spent on support costs; reinstallation, reimaging and recovery; endpoint security and compliance; and endpoint management.

There is a lot of room for cost savings by proactively managing endpoint security fundamentals and eliminating these events.

Get the full story here: http://networkresourcesblog.com/2009/08/securing-and-managing-the-endpoints-the-case-for-convergence/

One of the biggest gaps reported between ‘best in class’ companies and the industry standard was the ability to have centralized visibility and reporting of endpoint software and hardware configuration. Monitoring the security state of each endpoint is the first step in eliminating the root cause of security incidents.

Clear Blue Security made it easy to say “Yes!” to centralized endpoint security management as the worlds first 100% free endpoint security management solution.

Protect your endpoints today.  Download Clear Blue Security’s Endpoint Security management software for free.

Managed Service Providers (MSPs) are searching for ways to lower operating costs while providing better service to their clients. Implementing a remote endpoint security solution is one of the best ways to reduce the risk of client network outages and lost business continuity.

Because MSPs are responsible for the client infrastructure, they are also responsible for the tools required to manage it. Remote monitoring and remediation allows an MSP to increase their geographic reach and lower their costs by automating otherwise manual tasks. The savings can be passed on to the client or kept as profit for the MSP. 

Most remote endpoint security solutions require heavy up-front costs in the form of hardware, software and implementation, making them out-of-reach for smaller MSPs and too costly to deploy at SMB customers.

Clear Blue Security has compiled a list of requirements from MSPs who service small and medium sized businesses and have a dire need for an affordable endpoint security solution:

The endpoint security solution has to be lightweight and easily deployed:

The implementation cost for traditional monitoring products is high due to set-up and hardware costs. When implementing at SMBs, any hardware costs are usually covered by the MSP, not the client.

The endpoint security solution must be non-intrusive:

MSPs cannot risk service levels when introducing a tool that helps lower their costs. Implementation must appear seamless to the client.

The endpoint security solution must automatically monitor and alert vulnerabilities:

The cost of manual monitoring is too high and causes the MSP to provide less security for the client.

The endpoint security solution must work in a heterogeneous security environment:

SMB clients cannot afford to switch anti-virus vendors to accommodate the needs of an MSP remote monitoring tool. 

Clear Blue Security is the only remote endpoint security solution for MSPs that meets the requirements of small/medium sized businesses.

Protect your clients today.  Register to become a Clear Blue Security Managed Service Provider.

Being an Antivirus vendor is tough business. Even giants like Symantec have trouble keeping up now and then.

In a comparative lab test conducted by Virus Bulletin this month, 35 antivirus products were run through a battery of tests in a Vista SP2 testing environment including virus scanning and avoiding false positives.

Get the full story here: Virus Bulletin

12 products failed the test (~30%). Among the failures was the enterprise Symantec Endpoint Security protection product. The company described the failure as a rare and obscure virus that has not been reported by any customers. However, it raises questions about vendors being able to keep-up with an ever-changing list of environment updates.

Clear Blue Security is an endpoint security protection product that can work inside a heterogeneous antivirus network, avoiding the cost and commitment to a single vendor. And in times of uncertain performance, Clear Blue Security allows users to switch antivirus vendors without an expensive detachment process.

Protect your endpoints today.  Download Clear Blue Security’s Endpoint Security protection software for free.

The war cry of IT managers today is, “I want my team to provide services, not be mechanics.”

IT professionals are working their way out of the trenches as companies focus on leveraging technology to save money and deliver more solutions faster. But do company owners understand the soft costs of mis-managing the talent pool?

Using intelligent and expensive resources to perform rudimentary tasks seems counterproductive in most organizations. And, as the role of IT becomes critical path to the business mission, IT professionals are expected to continuously evolve and manage more with less.

Automation promises a way for the IT department to scale manpower and simplify laborious tasks that take away from design and implementation responsibilities. Endpoint security management is a good example of a task best left to an automated system.

It is impractical for most companies to assign a full-time resource to manually monitor every endpoint to ensure security compliance. By using an automated endpoint security management tool like Clear Blue Security, endpoints are monitored real-time even when outside the network.

In a recent survey conducted by Clear Blue Security on 125 small and medium sized businesses, 100% of the businesses exhibited critical security vulnerabilities on the network. A majority of the threats were “elementary” and could have been easily avoided if an effective monitoring and detection system were in place.

“Most small and medium sized companies have basic security measures in place. A firewall and antivirus are par for the course.” comments John Sirvydas, CTO of Clear Blue Security. “We find most problems in the configuration of endpoint security tools. An endpoint security management system is required in resource constrained and complex networks to ensure the tools are updated and running properly.”

Protect your endpoints today.  Download Clear Blue Security’s Endpoint Security management software for free.

What is endpoint security software?

Endpoint security software is a centrally-managed software system that protects end-user devices such as laptops, PC’s, Smart phones, PDA’s, POS terminals and more. Endpoint security systems are hosted on a server or gateway, and installed on every endpoint or user device that connects to the business network.

Why is endpoint security software important?

Today’s business environment has changed drastically over the last decade.  As businesses expand, they require more and more users to access their corporate network.  Employees, contractors, strategic partners and others consistently access network data via remote locations, LANs or wireless connections.  These types of access points create a windfall of potential entry points for security threats to infiltrate the network.  This makes it increasingly difficult for IT managers to protect the network from worms, Trojans, spyware and other malicious code that can threaten business continuity, compromise data, jeopardize productivity and require costly and time-consuming incident remediation.

Clear Blue Security™ monitors your company’s endpoint security status and lets you know how to solve any problems it detects using the following agents:

• Unapproved Software: Ensure that all software applications installed on your computer networks are approved by your company’s security policy.
• Suspicious Traffic: Detect abnormal traffic on your network that could indicate an attempt to access or manipulate your computers.
• Intrusion Vulnerability: Identify open ports or other undesired access points that could put your network at risk of intrusion.
• Malware Protection: Protect your network by ensuring antivirus and other endpoint security software are installed, updated and functioning properly on all computers.
• Updates & Patches: Assure all critical security updates and patches are installed, with Microsoft’s minimum protection.
• Security Practices: Ensure all your computers are configured and used in accordance with best practices for network security.
• Clear Blue Agents: Monitor your endpoint security status and lets you know how to solve any problems it detects.
• Virtual Security Assistant: Provide 24/7 security for your entire network at a fraction of the cost of human domain experts.

Protect your network today. Download your free trial of Clear Blue Security’s Endpoint Security software.

How important is Endpoint Security? A recent study shows that 100% of participating companies were infected with malware. What about yours?

A recent security threat assessment uncovered that active malware and threats reside undetected on corporate networks and endpoints on 100% of all participating companies from North America, Latin America, Europe and Asia Pacific. The participating companies average over 11,000 employees in industries like finance, healthcare, education, manufacturing and government.

The study, taking place between October 2008 and June 2009, performed over 100 assessments on enterprises worldwide and discovered that:

• 100% were infected with active malware
• 50% had at least one data-stealing malware hidden in their network
• 45% had multiple data-stealing malware infections
• 72% had at least 1 IRC bot
• 50% had 4 or more IRC bots
• 83% had at least 1 malware web download
• 60% had more than 20 malware web downloads
• 35% had at least 1 network worm

What caused these network security intrusions?  Without endpoint security solutions, network security intrusions are inevitable.  There are many ways for malware and other viruses to infiltrate corporate networks.  Here are a few examples:

• Mobile users frequently log on and off the business network using devices that are already infected, compromising network security.
• Businesses employ inadequate remote security solutions, lack onsite IT personnel, and fail to enforce security policies.
• Employees use easily exploited technologies such as P2P, file sharing, streaming media and instant messaging.

Clear Blue Security™ monitors your company’s endpoint security status and lets you know how to solve any problems it detects using the following agents:

• Unapproved Software: Ensure that all software applications installed on your computer networks are approved by your company’s security policy.
• Suspicious Traffic: Detect abnormal traffic on your network that could indicate an attempt to access or manipulate your computers.
• Intrusion Vulnerability: Identify open ports or other undesired access points that could put your network at risk of intrusion.
• Malware Protection: Protect your network by ensuring antivirus and other endpoint security software are installed, updated and functioning properly on all computers.
• Updates & Patches: Assure all critical security updates and patches are installed, with Microsoft’s minimum protection.
• Security Practices: Ensure all your computers are configured and used in accordance with best practices for network security.
• Clear Blue Agents: Monitor your endpoint security status and lets you know how to solve any problems it detects.
• Virtual Security Assistant: Provide 24/7 security for your entire network at a fraction of the cost of human domain experts.

Protect your network today. Download your free trial of Clear Blue Security’s Endpoint Security software.

Clear Blue Security is a comprehensive network security monitor that continuously detects and alerts vulnerabilities that could impact business continuity or result in data loss.

Using Clear Blue Security is considered an Audit Control under HIPAA Standard 164.312(b) and part of the Evaluation Process under HIPAA Standard 164.308(a)(8).

In a network where Clear Blue Security is running, the likelihood of detecting vulnerabilities is much higher, decreasing the risk of EPHI loss.

Clear Blue Security directly addresses the HIPAA Security Standards for Security Awareness and Training, Section 164.308(a)(5)(ii)(B).

Get Compliant, Stay Compliant

Clear Blue Security monitors your entire network, including laptops, 24 hours a day - 7 days a week. As a SaaS enabled product, Clear Blue Security constantly provides updated security best practices and policies to your network.

It also supports periodic audits by generating reports and information to validate compliance to policies and identify noncompliance issues prior to an audit.

Ensure and maintain HIPAA Compliance. Download your free trial of Clear Blue Security’s HIPAA Compliant Security software.

Clear Blue Security addresses the heart of GLBA compliance, monitoring and safeguarding client’s nonpublic personal information (social security numbers, credit information, etc.).

It also supports periodic audits by generating reports and information to validate compliance to corporate policies and identify noncompliance issues prior to an audit.

The GLBA safeguard rules require all financial institutions to complete a risk analysis on the current processes and security practices. From the risk analysis, a written information security plan must include:

• Develop, monitor, and test a program to secure the information, and
• Change the safeguards as needed with the changes in how information is collected, stored, and used

Clear Blue Security is a comprehensive network security monitor that continuously detects and alerts vulnerabilities that could impact business continuity or result in data loss.

In a network where Clear Blue Security is running, the likelihood of detecting vulnerabilities is much higher, decreasing the risk of losing clients nonpublic personal information.

Who is required to comply with GLBA? All financial institutions are required to comply with GLBA.

The Federal Trade Commission (FTC) has jurisdiction over financial institutions similar to, and including, these:

• non-bank mortgage lenders
• loan brokers
• some financial or investment advisers
• debt collectors
• tax return preparers
• banks
• real estate settlement service providers

These companies must also be considered significantly engaged in the financial service or production that defines them as a “financial institution”.

Insurance has jurisdiction first by the state, provided the state law at minimum complies with the GLBA. State law can require greater compliance, but not less than what is otherwise required by the GLBA.

Get Compliant, Stay Compliant. Download your free trial of Clear Blue Security’s GLBA Compliant Security software.

Are you investing in the long-term security of your business network?

Organizations are investing more in data security and privacy systems during the downturn.  The latest numbers suggest that spending on security software is running at a level 18.6% higher than one year ago.  According to Gartner Inc., worldwide security software sales hit $13.5 billion in 2008, compared with $11.3 billion in 2007.

Full story: Security spending stays strong in downturn

Clear Blue Security is the most comprehensive business network security, network monitoring and remediation tool available for small and medium-sized businesses.  Easy to install and use, it gives you an instantaneous picture of your entire IT security situation down to every on-the-go laptop.

Protect your data today. Download your free trial of Clear Blue Security’s PCI Compliant Security software.