Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

3/10/2011
03:10 PM
50%
50%

M86 Launches SMB Security Suite

Packaged for organizations with up to 500 seats, M86's new Web and email security software runs on Windows Server or in virtualized environments.

12 Money Saving Tech Tips For SMBs
(click image for larger view)
Slideshow: 12 Money Saving Tech Tips For SMBs

M86 Security on Thursday debuted a new software suite designed to protect Web and email traffic on the networks of small and midsize businesses.

The M86 SMB Security Suite includes the company's M86 MailMarshal Secure Email Gateway, M86 WebMarshal, M86 Filter List, and M86 Marshal Reporting Console products. The package ships as software that can run on Windows Server or in virtualized environments and supports up to 500 users, the company said.

The rise of automated toolkits and other factors have shifted the threat balance from email to Web traffic, and traditional filtering approaches no longer work for SMBs, according to Paul Myer, M86's senior vice president of corporate development.

"What used to be considered just an enterprise or big business problem has made its way down -- everybody's being affected," Myer said in an interview. "The requirements for small business when it comes to malware are no different than a large enterprise."

The threat landscape has exploded in such a way that, from Myer's vantage point, the hacking trade is worth a multiple of the network security industry. That has made SMBs more sought-after prey: Even though a small company hack might not come with the same bragging rights as a Fortune 500 break-in, the data can be every bit as lucrative when aggregated over time.

"It used to be people just showing off: 'Hey, I can hack you and cause problems for you.' It's a legitimate business now," Myer said. "There are people all around the world who get up every morning and this is what they do for a living."

To identify exploits, M86's SMB platform taps into the same threat labs that serve the company's enterprise customers. Customers have the option of using Sophos or Norman antivirus modules with the WebMarshal portion of the suite. M86 also enables policy-based rules that govern both email and Web behavior on a corporate network, including controls that can limit user actions on social media sites. Rather than block Facebook entirely, for example, an admin could simply prevent employees from posting updates or uploading files to the site. Pricing is subscription-based at $25 per user, per year. Myer said M86 will offer multi-year discounts.

The M86 SMB Security Suite does not protect mobile devices unless they're connected to the corporate network, though Myer said the company is working on something in that vein. "We realize there's a challenge with mobile devices, and we're working to bring out products for that, but we don't have them on the market yet," he said.

Myer believes the mobile security challenge derives from a very specific source: "We trace it directly to the popularity of the iPad," he said. "Even in organizations that are all Windows-based, you've got executives now bringing iPads into the workplace and asking IT administrators to support that. It's not being driven by IT -- it starts at the upper executive levels and they're driving that into the IT infrastructure."

Myer said M86 has focused its mobile product development on iOS because of the iPad's early leadership in the tablet market, but the company sees Android and other operating systems complicating mobile security in the not-too-distant future. "We can see that tsunami coming," Myer said. "It's a cat-and-mouse game. We're just trying to stay in front of it."

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Data Leak Week: Billions of Sensitive Files Exposed Online
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/10/2019
Intel Issues Fix for 'Plundervolt' SGX Flaw
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2019
This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-5252
PUBLISHED: 2019-12-14
There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.
CVE-2019-5235
PUBLISHED: 2019-12-14
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
CVE-2019-5264
PUBLISHED: 2019-12-13
There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition...
CVE-2019-5277
PUBLISHED: 2019-12-13
Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation.
CVE-2019-5254
PUBLISHED: 2019-12-13
Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board m...