BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Now Available: Retina Unlimited – $1,200 Unlimited IP Addresses

Posted October 8, 2013    Marc Maiffret

It has been over 15 years since we first introduced Retina, the Network Security Scanner, to the world. In those early days the vulnerability assessment space was still in its infancy with much of the focus being around scanning network based services for remotely exploitable vulnerabilities. Back then there were no compliance mandates or policies that created awareness or a must-have reason to use vulnerability assessment. Rather, those early adopters understood that while attacks and threats might evolve they would still largely rely on leveraging unpatched vulnerabilities and misconfigured software. If one thing is clear in the last 15 years it is that indeed organizations are still most commonly hacked via unpatched and misconfigured systems, as malware based threats continue to explode in a way that is clearly untenable.

Just as the threats have advanced so too has the technology for assessing systems for vulnerabilities. What 15 years ago was more of a tools based approach used by pioneering IT administrators has today become a corner stone for most enterprise security processes. The evolution of vulnerability assessment into vulnerability management has come both because of new technological and business requirements. Vulnerability management has become an important tool in meeting the compliance mandates of different industries. It has also been critical in helping organizations prioritize vulnerabilities enterprise-wide based on exploit and threat analytics.

BeyondTrust (and formerly eEye Digital Security) has been a leading pioneer in the vulnerability management space and over the last several years has built up a robust enterprise platform for meeting both compliance and risk assessment needs. Our Retina CS technology has been a leader in its class, in both reporting and analytics, that allows for an easily customizable risk assessment of an organization’s overall security posture. Part of what makes our enterprise offering so capable is our highly evolved vulnerability scanning engine; Retina Network Security Scanner.

Since its inception more than 15 years ago, Retina Network has continued to be the backbone of our vulnerability assessment capabilities. Retina Network has evolved not only as the engine feeding our enterprise Retina CS solution, but as a great standalone product for any IT toolkit. The art of scanning for vulnerabilities is sometimes taken for granted by those whom look at the world of vulnerabilities through the lens of something like Microsoft’s Patch Tuesday. In fact now more than any time previously our industry needs to be pushing the boundaries of what it means to assess an organizations vulnerabilities.

Retina Network has continued to be a pioneer in pushing the art of vulnerability assessment forward by expanding our thinking of vulnerabilities beyond something as simple as outdated software or a system misconfiguration. We have innovated to be able to do amazing things such as performing a vulnerability assessment against completely powered off virtual machines or assessing how secure a system is based not on its configuration alone but based on the system’s overall network security perimeter and common best practices such as egress filtering or filtering of direct executable downloads.

Just as our technology has evolved so too has our business. As centralized Vulnerability Management solutions, like our Retina CS platform, have continued to flourish and take center stage the dynamics of business and our market has changed. This has resulted in newer robust solutions for customers and tremendous growth for us as a company and our industry overall. Throughout all the iterations of our market, though, one fact has remained constant; a robust standalone vulnerability assessment product is a great tool to have in every IT toolkit regardless of any enterprise wide vulnerability management deployment.

It is to that end that we are extremely excited to be announcing Retina Unlimited. A new licensing model for our standalone Retina Network Security Scanner that allows for vulnerability assessment against an unlimited number of IP addresses for just $1,200. We look forward to hearing from you about the features and ideas you have as we continue to provide not only the best enterprise vulnerability management solutions in the market but also the most cost effective and robust vulnerability assessment solution for any IT toolkit. Learn more about Retina Network Security Scanner Unlimited here.

 

Signed,
Marc Maiffret

Tags:
, , , , ,

Leave a Reply

Additional articles

PBPS-screenshot-blog aug2014

Failing the Security Basics: Backoff Point-of-Sale Malware

Posted August 22, 2014    Marc Maiffret

At the beginning of this month, US-CERT issued a security alert relating to a string of breaches that had been targeting Point of Sale (POS) systems. The alert details that attackers were leveraging brute forcing tools to target common remote desktop applications such as Microsoft’s Remote Desktop, Apple Remote Desktop, Splashtop and LogMeIn among others….

Tags:
, , , , , ,

Troubleshooting Windows Privilege Management Rules with Policy Monitor

Posted August 21, 2014    Jason Silva

When defining and testing PowerBroker for Windows rules for production or pilots, customers sometimes tell us, “I don’t think this policy / program is working.” This is usually a case of the policy not properly triggering because of the way the rule was created. A unique feature of PowerBroker for Windows compared to other solutions is a client-side…

Tags:
, , ,
darren-mar-elia

BeyondTrust Webcast: Darren Mar-Elia’s 4 Active Directory Change Scenarios to Track

Posted August 20, 2014    Chris Burd

In our latest webcast, we joined Darren Mar-Elia, CTO at SDM Software, to discuss best practices for Active Directory (AD) change management. Here are some key takeaways from the presentation, followed by a link to a full-length video of the presentation. Mar-Elia kicks things off with a critical insight: that the best AD change management…

Tags:
, , , , , , ,