The Web    Google
Citadel's Latest Automates W2K3 Vulnerability Remediation

Citadel's Latest Automates W2K3 Vulnerability Remediation
January 27, 2004

Server security management vendor Citadel Security Software updates its Hercules automated vulnerability remediation product to include certification for Windows Server 2003.

Hercules 2.2 from Citadel Security Software adds Windows 2003 certification to the automated vulnerability remediation and policy compliance product. The certification ensures that mitigation of any vulnerabilities in the Windows family of products takes place via an automated process.

Testing to achieve the certification was conducted the VeriTest, the testing division of Lionbridge Technologies, the only lab so far authorized to test applications for Microsoft's "Certified for Windows" program. The standards used for the certification were established by Microsoft together with VeriTest to ensure that products run reliably on Microsoft Windows.

Hercules automates the resolution of five classes of vulnerabilities: unsecured accounts, misconfigurations, backdoors, unnecessary services and software defects. Hercules carries remediation signatures for Windows, Sun Solaris and Linux Red Hat platforms. The product accepts output from vulnerability scanners, and feeds reports to security administrators, who select which vulnerabilities to remediate, according to a schedule they determine.

"One of the biggest problems we find are account-related issues, from accounts for users no longer employed or accounts that have too many rights," says Carl Banzhof, CTO of Citadel. "The second most frequent type of vulnerability we is misconfiguration, often of a new workstation or server installed with default settings."

Other enhancements in Hercules 2.2 include: improved navigation, to guide users via wizards through specific tasks to complete Hercules functions; the V-Flash Security Center portal within the administrator console, which provides access to security information from the Citadel research team; enhanced searching so that users can find vulnerabilities and remediations by device and industry; improved tracking and reporting to update mitigation status throughout the remediation process; and remediation support for RedHat Linux versions 8 and 9.

The product is priced per seat starting at $129 per seat for workstations, with volume discounts. Server pricing starts at $995 per server. A company with 10,000 devices to cover, 10% of them servers would pay approximately $1 million for the software.

One Citadel customer with some 60,000 devices spent $4.2 million to clean machines affected by the Blaster worm last year, Banzhof says.

  • 12/7: Banker-BG Trojan Targets Brazilian Banks
  • Symantec Offers Enhanced Portal for Enterprises
  • 9/15: Forbot-C Spreads to Remote Shares
  • IRS Giving Goods Away
  • New Tool Helps Ensure Users Employ Strong Passwords
  • AOL's AIM Puts Browser Security in Danger
  • 7/12 Atak.A Worm Low Threat but High Traffic
  • Apple Patches QuickTime Flaw
  • 5/10: Mydoom-BQ a Mass-Mailing Worm
  • 11/22: Swizzor-BQ Trojan Downloads, Runs Files
  • PHP Zaps Security Leaks
  • Security Camera Companies and products