Comodo Malware Prevention

Ah Shane, you brought Comodo to my attention a few years ago.  Good on ya, mate!  I like it, and not just because it’s free for the home-user, although that helps to sweeten the deal.  Comodo is now a leading brand in Internet security, providing businesses and consumers worldwide with security and trust services, including digital certificates, PCI scanning, desktop security, and remote PC support.

Small businesses, local governments, educational institutions and not-for-profit organizations have begun reporting staggering financial losses due to malware attacks.  These mounting losses are due in part to weaknesses in conventional PC security solutions.  Because most threats are unknown at the initial point of contact, they are unlikely to be blocked by conventional signature or blacklist based security software. 

Comodo Security Solutions recently announced the release of Comodo Endpoint Security Manager 1.5, combining the malware prevention capabilities of Comodo Internet Security software together with scalable central administration features for businesses with dozens to thousands of PCs.  Comodo claims “breakthrough features” in this version, including Auto Sandbox Technology and a limited warranty to repair PCs damaged by malware.

Core security is provided by Comodo Internet Security 4.0 and using “Default Deny Technology”, only those files that are on the safe “whitelist” of over 15 million files are allowed to run and access critical system resources or information.    All other files are either blocked, because they are known to be unsafe, or automatically “sandboxed” if their safety is unknown.  While sandboxed, an application is closely monitored and given limited privileges; it can only write to a virtual file system and registry.  Comodo’s unique, patent-pending Auto Sandbox Technology relieves users and administrators from having to make difficult decisions about which applications to block and which to allow, making the product both easier to use and more secure than most alternatives. 

Comodo Endpoint Security Manager 1.5 is priced per endpoint. Prices range from $22.95/year for 100 or fewer, to below $10/year for over 5000 endpoints.  For more information, please visit Comodo’s Website.

FREE PT360 Network Monitoring Tools

PacketTrap Networks is giving away FREE tools, (anyone that knows me knows how fond I am of FREE tools!) actually their whole their PT360 Tool Suite for application and server monitoring.

Offered as a free solution, the PacketTrap pt360 Tool Suite PRO consolidates dozens of network management and monitoring tools into a single, integrated interface.  The tool suite includes Cisco configuration management, server and application monitoring, open source and third party integration, a robust encrypted credential store, the ability to save and flow results between tools, deep network discovery (with network mapping) and syslog server capabilities. All of these tools compliment the extensive real-time monitoring provided by the pt360 Dashboard.

  • Cisco Configurator
  • DNS Audit
  • Enhanced & Graphical Ping
  • MAC Scan
  • Network Inventory
  • Ping Scan
  • Port Scan
  • SNMP Scan
  • Switch Port Mapper
  • Syslog Server
  • TFTP Server
  • Trace Route
  • Traffic Jam
  • Wake on LAN
  • WMI Scan

 The pt360 Tool Suite’s Application Monitoring provides in-depth visibility of running processes and performance counters for mission-critical applications.  It comes with out of the box support for MS Exchange, SQL, and Active Directory.  Application failures are usually the most common problems that occur in IT infrastructure.  These powerful monitors help IT Admins and network engineers prevent application failures and identify degradations early.

  • Deep support for MS Exchange, SQL, Active Directory specific counters
  • View performance of applications in your Perspective dashboard
  • Set warning and critical threshold alerts to be notified when performance degrades


Adobe To Patch Monthly?

Ouch, another Adobe patch!

It looks like Adobe may have finally seen the light, and is preparing to jump off the tracks before that on-coming train takes them right out of the picture.  Adobe has become a big red target for vulnerability exploitation and payload delivery and has been taking some serious fire lately for the security shortcomings of their flagship products, Flash, Acrobat and Reader.  They may now be on the verge of changing their patch release process to deliver patches on a monthly schedule, coinciding with Microsoft’s monthly Patch Tuesday releases.  What a novel approach!

This  change would mark the second major change to Adobe’s release process in the last 12 months.   In 2009 the company moved to a scheduled quarterly patch release.  That change from ad-hoc, random releases was generally well-received, providing advance notification, the ability to plan and schedule deployments and maybe even do a little testing.  This latest change is intended to get patches out to their customers quicker.