Symantec unveils cloud-based enterprise protection, new attack bypasses every Windows security product, Google defends privacy policies, RSA targets “man-in-the-browser” attacks and leads in Gartner report, IT departments losing control of cloud computing security, and Juniper announces dynamic security for data centres.

Symantec unveils cloud-based enterprise protection

Symantec announced the launch of its Hosted Endpoint Protection, a cloud-based protection service for small- and medium-size organizations. The company says that this new solution offers comprehensive security for the clients' computer systems without additional hardware or management software. Customers will be able to protect their Windows-based laptops, desktops, and file servers using a Web-based console.

New attack bypasses every Windows security product

Security researchers at Matousec.com have come up with an ingenious attack that can bypass every Windows security product tested. The attack takes a “bait-and-switch” approach: harmless code is passed to the security software for scanning, but as soon as it’s given the green light, it’s swapped for the malicious code. The attack, called KHOBE (Kernel HOok Bypassing Engine), leverages a Windows module called the System Service Descriptor Table, or SSDT, which is hooked up to the Windows kernel. Unfortunately, SSDT is utilized by antivirus software.

Privacy worries and Ontario's Smart Grid

Ontario's privacy commissioner is urging the Liberal government to ensure consumer privacy is a key part of its ongoing Smart Grid electricity plan. Information and Privacy Commissioner Ann Cavoukian worries that if privacy measures aren't built into the system, power companies could easily obtain detailed data about a person's habits such as what time they cook, shower or go to sleep, even if the house has an alarm system.

Google defends privacy policies

Google responded to a letter from 10 international privacy commissioners who criticized the company's approach to privacy, insisting that Google protects its customers and has moved quickly to make changes regarding its Buzz feature. The April inquiry from the officials – spearheaded by Jennifer Stoddart of Canada – accused Google of rushing to release products and then fixing problems as they arise, pointing to social networking feature Buzz, as well as the company's Street View mapping tool. Google pointed the commissioners to the Google Privacy Center, its Dashboard tool, and the Data Liberation Front as examples of Google's efforts to protect customers' privacy and promote transparency.

RSA targets “man-in-the-browser” attacks         

RSA, the security division of EMC, announced RSA Man-in-the-Browser Solutions, a portfolio of anti-fraud services designed to give businesses and their customers better defence against the sharp rise in man-in-the-browser (MITB) attacks that lead to Trojan and malware infection within enterprises and personal computing environments. The solution includes newly enhanced transaction monitoring as well as risk-based authentication, Trojan detection and attack shut down, and intelligence to identify malware-infected enterprise environments.

IT departments losing control of cloud computing security

In a report sponsored by CA Technologies (the rebranded software company previously known as CA), the Ponemon Institute found that IT departments have lost track of the cloud computing applications being used within their organisations, undermining their ability to guarantee the security of their technology infrastructure. The reason:  IT department may be unable to do the due diligence around security. As a result, half of CIOs, CTOs and CFOs and other execs are not confident that their organisation is aware of all the cloud computing in use.

Your browser calls the shots

Of the 470,161 browsers that participated in the Electronic Frontier Foundation’s (EFF) Panopticlick project, 83.6% had an "instantaneously unique fingerprint." Browsers with Flash or Java installed could be uniquely identified 94.2% of the time. When one considers that privacy-conscious users were over-represented in Panopticlick, these are surprising numbers. The EFF noted that a browser's user-agent string is visible to websites, as are HTTP ACCEPT headers. It is simple to infer whether cookies are being blocked, and in browsers with Javascript running it's easy for websites to discover screen resolution, a list of all browser plugins, and the user's timezone. Throw in Flash, and it's possible to grab a complete list of system fonts. Combined, these bits of data produce a unique fingerprint that works even in the absence of cookies or other traditional web tracking tools.

RSA leads in Gartner report

RSA, the security division of EMC is in the Leaders quadrant within Gartner’s 2010 Magic Quadrant for Security Information and Event Management (SIEM). The positioning is based on “completeness of vision and ability to execute and evaluate its RSA enVision Security Information and Event Management platform”. It appears in the May 13, 2010 report by Mark Nicolett and Kelly Kavanaugh entitled, “Magic Quadrant for Security Information and Event Management”.

Cyber-attacks up substantially: CSIS

A top secret memo written by Canada's spy agency, CSIS, warns that cyber-attacks on government, university and industry computers have been growing "substantially." The heavily censored briefing note outlines the increasing vulnerability of Canada's energy, financial and telecommunications systems face from cyber-attackers, saying that that the threat of cyber-attacks is "one of the fastest growing and most complicated issues" and that “remotely operated attacks offer a productive, secure and low-risk means to conduct espionage." Though a cyber-security strategy was promised in the federal government's throne speech in March, Canada still has no official plan for responding to a co-ordinated cyber-attack.

Juniper’s dynamic security for data centres

Juniper Networks has announced a new “dynamic security model” for data centres.  Juniper's new data center security products include: Networks AppTrack software for application-level visibility and control for Juniper Networks SRX Series Services Gateways; AppSecure software, which provides distributed denial-of-service prevention for the SRX Series; and deep malware protection through a new partnership with FireEye. Junipers also has an OEM version of the Juniper SRX Series via IBM.