the State of Security

FIM

Sony PSN Breach Fits Same Trend Seen in 2011 Verizon DBIR

by Jon Speer

It now appears that Sony PSN is framing up their breach as including the injection of a “communication tool” onto an application server via a vulnerability. They simply made a change to the server that opened up a backdoor. This exactly fits the trend reported in the Verizon Data Breach Investigations Report (DBIR) of hackers [...]

Read More

PCI DSS Picks Up a Missouri Accent with V2’s 11.5b: “Show Me”

by Cindy Valladares

We all know what PCI 11.5 says, right? At Tripwire it’s almost a corporate anthem: “Deploy file-integrity monitoring tools to alert personnel to unauthorized modification of critical system files, configuration files, or content files…” Ensuring the integrity of files and configurations is essential to IT security in general, and indispensable in protecting the cardholder information [...]

Read More

True FIM—Tripwire FIM: Summary

by Ed Rarick

Summary Tripwire has the only true File Integrity Monitoring solution. All others do little more than just detect changes, whether the changes are good or bad—because they have no way of telling the difference. Tripwire FIM, with its unique ChangeIQ capabilities, provides multiple ways to determine low-risk change from high-risk change, and do so at [...]

Read More

True FIM—Tripwire FIM: Unauthorized vs. Undesired

by Ed Rarick

Good News PCI DSS 11.5 requires merchants to “…alert on unauthorized modification of critical system, content or configuration files…”. That should be good news, right?  Alerting on unauthorized change requires more from a FIM than simply detecting change.  It requires the ability to analyze each detected change to determine if it is expected or unexpected.  [...]

Read More

True FIM—Tripwire FIM: Assessing Change and Maintaining a Desired State

by Ed Rarick

Successful? Just because a change is proposed and scheduled does not mean that it was actually made or made correctly. Many changes are intended to make improvements, or to correct problems, so being able to confirm they have successfully been made is critical. Otherwise the improvements are not realized or the problems remain when you [...]

Read More

True FIM—Tripwire FIM: Knowing What Changed

by Ed Rarick

What changed? Knowing only that a file has changed is of little use unless you know what about the file or what within the file has changed.  Each file has dozens of attributes that, if changed, could spell trouble.  Tripwire can capture any of those attributes providing essential information to help determine if the change [...]

Read More

← Previous Entries