Solidcore FIM with EPO is in the works…

I heard from couple of customers that they heard from our competitors that non-security products from Solidcore will not be supported by MFE going forward. This is completely UNTRUE.

We are busy integrating our FIM (file integrity monitoring) into EPO. This will be a 100% integration and will make it very easy for all MFE customers to use FIM with EPO to meet their compliance requirements.

We will release a technology preview of this capability soon for all to see and play with. In addition to real-time FIM that solidcore offered earlier, now you will have the power of EPO and integration with other reporting and search to give you a one-stop compliance, risk and security dashboard.

If you would like an early release feel free to contact me.

Coretrace announces Bouncer 5.0

here is the announcement from coretrace.  They seem to have added support for whitelisting of activeX.  It is great to see vendors in this space begining to worry about things other than pure binaries. Just FYI Solidcore (McAfee AWL) has had support for this for some time.  The tough issue here is a lot of download/upload clients in the browser are done via ActiveX. So you have an ActiveX component that is signed, it downloads a driver update, should the driver be allowed to run?

INTRODUCING BOUNCER 5.0 Award-Winning Application Whitelisting Solution Extends Memory Protection & Enables ActiveX Whitelisting

CoreTrace continues to redefine the antivirus and configuration control markets with the release of BOUNCER 5.0 featuring: * An industry-first ability to seamlessly allow and whitelist trusted ActiveX installations * Improved memory protection * Automated and streamlined deployments * Efficient management capabilities like group security configurations BOUNCER 5.0 is the only application whitelisting solution that simultaneously stops even the most sophisticated malware attacks while allowing users to safely install new applications and have them automatically added to the whitelist without requiring IT involvement. No other solution on the market today is capable of automatically installing ActiveX signed by Trusted Digital Signatures. BOUNCER 5.0 is also outfitted with enhancements to CoreTrace’s leading memory protection capabilities. In addition to preventing the execution of payloads deposited via a memory exploit, BOUNCER 5.0 addresses major classes of exploits directly, such as DLL injections and attempts to write to kernel-memory.

Tripwire getting desparate?

BMC dealt Tripwire a big blow when they announced the acquisition of BladeLogic. Tripwire had invested a lot in the BMC relationship. For the past several years they made deals through BMC compensation neutral for their sales force. At the last BMC User Conference Tripwire was seen participating in several of the sessions. The rumor is that BMC was negotiating with both Tripwire and BladeLogic till the last minute.

So if you are tripwire what do you do?  We have heard that tripwire were really hoping that BMC would buy them, but seems like they overplayed their hand.  Then came the press release from tripwire: 1,141 financial transactions?????

Financial Transactions: what does that mean. Are they trying to impress someone here? It turns out that in Feburary Tripwire sent email to all their customers and resellers saying that they were increasing their pricing and if you wanted to maintain the original pricing and maintenance, they should renew now. So they got a pop in FINANCIAL TRANACTIONS!! Huh! You can only screw your customers once in a decade. A different perspecitve: of all the customers accumulated by tripwire in 10+ years they were only able to force 1,141 to renew. Solidcore’s renewal rate is in the high 80s.

So why do this? Are they trying desparately to find a new buyer?