SecurityFocus officially commences selling ARIS Predictor alerts

posted onOctober 9, 2001
by hitbsecnews

Security Focus Inc. this week will formally launch a subscription service, called ARIS Predictor, that the company says will alert corporations to pending network and virus attacks before they occur. The service works by automatically collecting and analyzing intrusion and incident data from more than 7,000 computers scattered across 130 countries, according to the San Mateo, Calif., security firm.

"There's a demand for these services because companies don't have the resources to look at all the vulnerabilities and threats and then try to decide which ones are relevant to them," said Allan Carey, an analyst at IDC in Framingham., Mass. Security Focus offers "a service where you receive customized reports based on a profile of your network," said Carey. That makes it the first structured and customizable as well as most comprehensive service of its kind, according to Carey...

New service warns of network attacks

By JAIKUMAR VIJAYAN

But others have been attempting, at various levels, to give enterprises more warning when it comes to dealing with security threats.

A user group called the Anti-Virus Information Exchange Network (AVIEN) has been quietly running a $99 subscription-based Early Warning System (EWS) that is consistently hours faster than other alerts in warning members of impending viruses and worms, said founding member Robert Vibert. AVIEN's member's include security professionals from companies such as 3M Corp. Electronic Data Systems Corp., Ford Motor Co., Nortel Networks Corp. and Prudential Securities Inc.

Network Intelligence

The ARIS Predictor system generates the following reports:
Port report: Frequency of attacks against specific ports
Source IP: Attacks originating from specific IP addresses or IP ranges
Source country: Frequency of attacks from specific countries
Attacked products: Attack types targeted at vendor products
Source ISP: Frequency of attacks originating from specific Internet service providers
Attacks targeting specific port: Types of attacks and frequency of attacks directed at particular ports

The group uses the EWS system as a bulletin board to exchange virus and vulnerability information and alert one another of suspicious incidents before they explode into real problems, said Vibert, whose Braeside, Ontario-based company, Segura Solutions Inc., maintains the service. With both the Nimda and Code Red worms, users were able to alert one another a good three to four hours before antivirus vendors had their alerts, he said.

"Whenever any new malicious code is discovered in the wild, the AVIEN community shares the details as it unfolds, even prior to the antivirus industry having a chance to obtain and analyze the malicious code, publish their findings and write new [patches]," said Russ Cluett, a member of EDS Canada's information systems security group.

"We can construct defenses before the virus hits our gateway, which is invaluable in containing an outbreak," said Paul Schmehl, supervisor of support services at the University of Texas, Dallas, which is part of the AVIEN network.

AVIEN is the main reason the university had "zero infections from Anna Kournikova, one of the most prolific viruses ever," Schmehl said.

SNP.

Source

Tags

Networking

You May Also Like

Other Articles In This Section

Recent News

Tuesday, July 9th

China's APT40 gang is ready to attack vulns within hours or days of public release
AI-Powered Super Soldiers Are More Than Just a Pipe Dream
The president ordered a board to probe a massive Russian cyberattack. It never did.
Massive car dealer ransom attack is mostly over after 2 weeks of work-arounds

Wednesday, July 3rd

“RegreSSHion” vulnerability in OpenSSH gives attackers root on Linux
Two of the German military’s new spy satellites appear to have failed in orbit

Friday, June 28th

Indonesian Airports, Data Centres Hit By Worst Cyberattack in Years
Cisco Talos warns of wider security implications following Snowflake breach

Thursday, June 27th

I Wore Meta Ray-Bans in Montreal to Test Their AI Translation Skills. It Did Not Go Well
Researchers upend AI status quo by eliminating matrix multiplication in LLMs
YouTube tries convincing record labels to license music for AI song generator
Critical MOVEit vulnerability puts huge swaths of the Internet at severe risk
Julian Assange to plead guilty but is going home after long extradition fight

Thursday, June 13th

Hackers show off jailbroken checkm8-vulnerable iPad and Apple TV running iPadOS 18 & tvOS 18 respectively
One of the major sellers of detailed driver behavioral data is shutting down
Turkish student creates custom AI device for cheating university exam, gets arrested

Wednesday, June 12th

Chinese-Made Biometric Access System Has 24 Vulnerabilities
Apple and OpenAI currently have the most misunderstood partnership in tech
Adobe to update vague AI terms after users threaten to cancel subscriptions
China state hackers infected 20,000 Fortinet VPNs

Tuesday, June 11th

Russia Is Targeting Germany With Fake Information as Europe Votes
Apple announces macOS 15 Sequoia with window tiling, iPhone mirroring, and more
Apple integrates ChatGPT into Siri, iOS, and macOS
British police to scan 480,000 Formula 1 fans’ faces at Silverstone
Hackers steal “significant volume” of data from hundreds of Snowflake customers

Friday, June 7th

7,000 LockBit decryption keys now in the hands of the FBI, offering victims hope
FCC pushes ISPs to fix security flaws in Internet routing
Can a technology called RAG keep AI models from making stuff up?
How to Lead an Army of Digital Sleuths in the Age of AI

Thursday, June 6th

Mystery object waits nearly an hour between radio bursts
Apple refused to pay bug bounty to Russian cybersecurity firm Kaspersky Lab
Ex-Microsoft security expert torches Windows' new 'Recall' feature
The Age of the Drone Police Is Here

Wednesday, June 5th

Ukrainian Systems Hit by Cobalt Strike Via a Malicious Excel File
TikTok Hack Targets ‘High-Profile’ Users via DMs