-
Practicing defense-in-depth: Implementing a defense-in-depth strategy
Implementing a defense-in-depth strategy can protect your customers’ Web applications from attack. Take a layered approach with intrusion prevention, encryption and code review.Tip
-
barnacle
In a computer, a barnacle is unwanted programming, such as adware or spyware, that is downloaded and installed along with a user-requested program.Definition
-
Customers in no rush to buy virtualization security products, services
More customers are implementing virtualization, but are opportunities increasing around virtualization security products? Observers say not just yet.News | 12 May 2011
-
The MSP cloud: Running security event management software in a cloud
Considering offering cloud-based SIEM services? This podcast covers the pros and cons of offering managed security event management software services in the cloud.Tip
-
Dell-SecureWorks deal: Will it boost MSSP security opportunities?
Dell's acquisition of SecureWorks brings Dell into the MSSP market, which is good news for solution providers.Article | 13 Jan 2011
-
Analysis: Adobe security gets boost from Reader X sandboxing
Adobe's new Reader X uses sandboxing to stop some of the attacks that can be delivered via a PDF. But Reader X will not install automatically; you must proactively install it.Tip
-
Is Forefront Endpoint Protection 2010 a good fit for your customer?
Microsoft FEP 2010 is now available for email filtering and antimalware protection of Windows PCs. It's the right choice in some situations, but consider alternatives too.Article | 04 Jan 2011
-
Intel acquisition of McAfee raises 'value-add' questions
Resellers are worried that by McAfee products' eventual integration across Intel's chip and processor lines, customers will have fewer product choices and resellers will be forced to accept lower margins.Article | 19 Aug 2010
-
How partners can address university network security challenges
In this interview with SearchSecurityChannel.com, David Sherry, chief information security officer at Brown University, explains what role channel partners play in his university's network security strategy.Tip
-
Norman focuses channel partner strategy on U.S., enterprise security
The Norway-based antivirus company Norman ASA hopes to fine-tune its channel strategy to finally get a foothold in the U.S. enterprise security market. That won't be easy, according to one independent analyst.Article | 10 Jun 2010
- VIEW MORE ON : Malware protection and defense strategies
-
Using DMARC to improve DKIM and SPF email antispam effectiveness
DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how.Tip
-
Survey results: VARs report customers’ IT spending 2012 expectations
VARs expect customers to increase spending on security more than any other IT area in 2012. See which security segments will grow the most.News | 07 Feb 2012
-
keyword stuffing
Keyword stuffing is the practice of inserting a large number of keywords into Web page content and meta tags in the attempt to artificially increase the page's ranking in search results.Definition
-
Q&A: ESET CEO on Sophos problem, state of antivirus and ESET resellers
In this Q&A, Richard Marko, CEO of ESET, talks about antivirus products, ESET’s reseller strategy, and the criticism recently aimed at Sophos.Tip
-
How to add email security awareness training to your service portfolio
Email security awareness training for your customers’ employees is a natural extension to email and Web filtering products. David Jacobs details why.Tip
-
New BitDefender partner program courts security resellers
BitDefender’s revamped channel program offers new tiers and calls for an unusual level of shared planning between vendor and partner.News | 21 Mar 2011
-
Top hacker tricks to exploit SQL Server systems
Stay one step ahead of attackers by testing your SQL Server systems against some of the most common hacking techniques.Tip
-
SonicWall to offer cloud-based antispam service
SonicWall Inc. has announced that solution providers will be the exclusive sales channel of its new cloud-based antispam service.Article | 23 Jul 2009
-
Trend Micro CEO Eva Chen on channel strategy, threat landscape
Trend Micro CEO Eva Chen discusses the company's channel strategy and the growing threat of spam and malware.Tip
-
Book Chapter: Web hacking
In this chapter excerpt from Hacking Exposed, authors Stuart McClure, Joel Scambray and George Kurtz discuss Web hacking. Learn how you can stop Web hackers from attacking your customers systems. In a hurry? Download the .pdf of this chapter and read it on the go.Tip
- VIEW MORE ON : Spam, antispam and phishing
-
Penetration testing tutorial: Guidance for effective pen tests
This penetration testing tutorial contains essential tips to help solution providers uncover vulnerabilities in clients’ networks.Tutorial
-
CSP security: Penetration testing public cloud service providers
Pen testing is vital for customers who entrust their applications to a cloud. Dave Shackleford explains how to test public cloud service providers.Tip
-
Guide customers safely into the cloud with a cloud computing audit
As customers move applications or data to the cloud, they may turn to you for a cloud audit. Expert Jim Kelton explains what you’ll need to succeed.Tip
-
Six steps to a great information security risk assessment report
Reporting the results of a risk assessment can be tricky. One wrong step can dilute all your hard work. Here are six steps in the right direction.Tip
-
How to do penetration testing: Overcoming problems and concerns
A lot can go wrong with pen testing. Dave Shackleford discusses potential problems and how to fix them, or avoid them altogether.Tip
-
Wow your client with a winning penetration testing report
Dave Shackleford lists the pitfalls to avoid and the best steps to take to produce a penetration test report that will wow your clients.Tip
-
Book chapter: IT security risk assessment and program management
Read this excerpt from the book Security Risk Management by Evan Wheeler to learn how to build a solid risk management program for your clients.Tip
-
pen test (penetration testing)
Penetration testing (also called pen testing) is a tool for testing a computer system, network or Web application to find vulnerabilities that an attacker could exploit. (Continued)Definition
-
Round-up of pen testing tools for penetration testing services
Pen testing tools can be used to detect network and application vulnerabilities. Dave Shackleford lists specific tools for each category of penetration testing.Tip
-
Three pen test tools for free penetration testing
Nmap, Nessus and Nikto are penetration testing tools that security operators can use to conduct pentests on their networks and applications.Tip
- VIEW MORE ON : Penetration Testing and Ethical Hacking
-
Biometric authentication methods: Comparing smartphone biometrics
Biometric authentication helps ensure only authorized smartphone users can access a network. David Jacobs weighs the pros and cons of three methods.Tip
-
HIPAA security checklist: 10 services your customers need
HIPAA compliance services can lead to solid business growth for solution providers. Kevin McDonald's HIPAA security checklist has 10 ways to begin.Tip
-
Duqu (W32.Duqu)
Duqu is a remote access Trojan (RAT) that is designed to steal data from computers it infects.Definition
-
Q&A: ESET CEO on Sophos problem, state of antivirus and ESET resellers
In this Q&A, Richard Marko, CEO of ESET, talks about antivirus products, ESET’s reseller strategy, and the criticism recently aimed at Sophos.Tip
-
Guide customers safely into the cloud with a cloud computing audit
As customers move applications or data to the cloud, they may turn to you for a cloud audit. Expert Jim Kelton explains what you’ll need to succeed.Tip
-
Six steps to a great information security risk assessment report
Reporting the results of a risk assessment can be tricky. One wrong step can dilute all your hard work. Here are six steps in the right direction.Tip
-
Securing mobile devices: A resource guide for solution providers
This mobile security guide for security solution providers is filled with tips for securing smartphones and tablets.Learning Guide
-
Podcast: Tips for selling data leakage prevention solutions
Towerwall CEO Michelle Drolet discusses aspects of selling data leakage prevention solutions, including data classification and comparing DLP vendors.Podcast
-
Business partner security: Managing business risk
Allowing outside business partner access to your systems and data always comes with some level of risk. Nick Lewis examines what those risks are and strategies for managing business risk.Bonus Tip
-
Create a BlackBerry security policy based on BES or BES Express
Mobile security expert Lisa Phifer outlines the many ways security solution providers can secure their customers’ BlackBerry devices.Tip
- VIEW MORE ON : Data breach and leak prevention
-
HIPAA security checklist: 10 services your customers need
HIPAA compliance services can lead to solid business growth for solution providers. Kevin McDonald's HIPAA security checklist has 10 ways to begin.Tip
-
CSP security: Penetration testing public cloud service providers
Pen testing is vital for customers who entrust their applications to a cloud. Dave Shackleford explains how to test public cloud service providers.Tip
-
Deploy network forensics tools and services for incident response
For incident response, solution providers may resell forensics tools or offer forensics as a managed service. Lisa Phifer compares the options.Tip
-
Six steps to a great information security risk assessment report
Reporting the results of a risk assessment can be tricky. One wrong step can dilute all your hard work. Here are six steps in the right direction.Tip
-
Survey results: Customers need IT GRC software and security services
A recent survey points out opportunities for solution providers to partner with GRC vendors, providing much-needed security portions of GRC projects.News | 01 Sep 2011
-
How to do penetration testing: Overcoming problems and concerns
A lot can go wrong with pen testing. Dave Shackleford discusses potential problems and how to fix them, or avoid them altogether.Tip
-
Wow your client with a winning penetration testing report
Dave Shackleford lists the pitfalls to avoid and the best steps to take to produce a penetration test report that will wow your clients.Tip
-
All the ingredients for a solid security incident response plan
When major security events occur, an effective response can make all the difference. David Jacobs offers up a complete incident response plan.Tip
-
How can solution providers augment BlackBerry PlayBook security?
Expert Lisa Phifer explains how to help customers with PlayBook Security, and reveals future PlayBook enterprise features.Tip
-
NitroSecurity partners to get new Nitro SIEM incentives
In an effort to boost Nitro SIEM sales, NitroSecurity software partners get increased margins for new deals and free certification-focused training.News | 25 Jul 2011
- VIEW MORE ON : Vulnerability and patch management