Submitter notes: "I removed my email address from the headers. They put me on the list after pulling me from the Black Hat attendees."
Delivered-To: [REDACTED] Received: by 10.224.45.75 with SMTP id d11cs20019qaf; Thu, 18 Aug 2011 13:04:17 -0700 (PDT) Received: by 10.236.168.65 with SMTP id j41mr980141yhl.26.1313697856414; Thu, 18 Aug 2011 13:04:16 -0700 (PDT) Return-Path: (firstname.lastname@example.org (mailto:email@example.com)) Received: from em-sm4-141.mktomail.com (http://em-sm4-141.mktomail.com) (em-sm4-141.mktomail.com (http://em-sm4-141.mktomail.com) [18.104.22.168]) by mx.google.com (http://mx.google.com) with ESMTP id g70si8040018yhe.9.2011.08.18.13.04.16; Thu, 18 Aug 2011 13:04:16 -0700 (PDT) Received-SPF: pass (google.com (http://google.com): domain of firstname.lastname@example.org (mailto:email@example.com) designates 22.214.171.124 as permitted sender) client-ip=126.96.36.199; Authentication-Results: mx.google.com (http://mx.google.com); spf=pass (google.com (http://google.com): domain of firstname.lastname@example.org (mailto:email@example.com) designates 188.8.131.52 as permitted sender) firstname.lastname@example.org (mailto:email@example.com) Received: from mktomail.com (http://mktomail.com) ([172.25.6.140]) by em-sm4-141.mktomail.com (http://em-sm4-141.mktomail.com) (StrongMail Enterprise 184.108.40.206(220.127.116.11-56715)); Thu, 18 Aug 2011 14:59:43 -0500 X-VirtualServer: vsg027, em-sm4-141.mktomail.com (http://em-sm4-141.mktomail.com), 172.25.6.141 X-VirtualServerGroup: vsg027 X-MailingID: 1260395353::nitrosecurityBetacust-5108-10963-0-4173-prod-5118::5118::0::317085::31045 X-SMHeaderMap: mid="X-MailingID" X-Destination-ID: [REDACTED] X-SMFBL: ZGF2aWQuYy5sZXdpc0BnbWFpbC5jb20= Content-Transfer-Encoding: 7bit Content-Type: multipart/alternative; boundary="----=_NextPart_001_AEA6_74B0DC51.19495CFF" X-Report-Abuse: Please report abuse here: http://www.marketo.com/policy Reply-To (http://www.marketo.com/policy%0AReply-To): firstname.lastname@example.org (mailto:email@example.com) MIME-Version: 1.0 Message-ID: (firstname.lastname@example.org (mailto:email@example.com)) Subject: Nitro review August Newsletter Date: Thu, 18 Aug 2011 14:59:43 -0500 To: [REDACTED] From: "Christine Beck" (firstname.lastname@example.org (mailto:email@example.com)) ------=_NextPart_001_AEA6_74B0DC51.19495CFF Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline August¬ 2011 Stay up-to-date on all of the latest industry news, events and Nitro solutions, with the monthly NitroSecurity Newsletter - nitro review.¬ If you prefer to view this newsletter as a webpage, click HERE. http://www.nitrosecurity.com/why-nitrosecurity/subscribe/august-2011-newsletter/ Webcasts Actionable Intelligence from Advanced SIEM Systems¬ ¬ ¬ ¬ Date: On Demand Presenters: Jeremy Conway, Senior Security Analyst, NitroSecurity and Paul D. Vout, Director of Cyber Security, LTI DataComm Replay Now: http://www.nitrosecurity.com/resources/webcasts/actionable-intelligence-from-advanced-siem-systems/ To make better, faster security decisions for your organization, you need better information faster. Capturing the existing network event, log and flow data already provided by your infrastructure with a Security Information and Event Monitoring (SIEM) solution is the first key step to better information and intelligence. However real-time access to and analysis of the mountain of data SIEMs collect is needed for SIEMs to be effective threat detection and incident response tools. Detecting data breaches, insider leaks and persistent attacks means performing multiple, in-depth data dives in seconds or minutes, not hours or days. Join us for an insider look at how next generation SIEMs can complement existing security systems, using their high performance and advanced correlation capabilities to: ‚EURĘ Quickly view ad-hoc queries ‚EURĘ Simplify and automate reporting ‚EURĘ Eliminate the need for database-trained resources New SearchSecurity.com Technical Guide on SIM SearchSecurity.com has created a new, comprehensive guide to security information management and log management. These expensive and complex tools are becoming indispensible in the arsenal of IT security to help with data protection and compliance initiatives. Their experts cover all the angles in order to help with deployments and upkeep of these powerful tools. Download the PDF¬ HERE. http://www.bitpipe.com/detail/RES/1313510954_134.html Nitro News NitroSecurity and Palo Alto Networks Deliver Integrated Content-Aware SIEM and Next-Generation Firewall Solution Industry Leaders Partner to Provide Enterprises with Unprecedented Visibility, Analysis and Correlation of Security Events, User Activity and Application Usage PORTSMOUTH, N.H. and SANTA CLARA, Calif. - August 16, 2011 - NitroSecurity, Inc., the leader in high-performance, content-aware security information and event management (SIEM) solutions and Rapid7¬ģ, the leading provider of security risk intelligence solutions, today announced that it has joined Palo Alto Networks' Technology Partnership Program. NitroSecurity and Palo Alto Networks have integrated content-aware SIEM and next-generation firewall technology into a complete enterprise security solution designed to simplify compliance reporting, threat detection, real-time incident response and forensic investigations. Palo Alto Networks' next-generation firewalls capture rich user and application context, providing increased control of applications and prevention of advanced threats. NitroSecurity's award-winning NitroView SIEM augments these capabilities with full content- and network session-awareness, and time-adjustable baseline and trend analysis. By storing information generated by Palo Alto Networks' firewalls, NitroView empowers enterprises with the ability to analyze activity patterns and identify anomalies, sophisticated attacks and insider threats in order to bolster their security posture. Read the entire¬ press release HERE. http://www.nitrosecurity.com/company/press-releases/nitrosecurity-and-palo-alto-networks-deliver-integrated-content-aware-siem-and-next-generation-firewall-solution/ NitroSecurity and Rapid7 Introduce Industry's First SIEM and Penetration Testing Integration Pairing of NitroView and Metasploit Pro 4.0 Operationalizes Penetration Testing for More Accurate and Timely Enterprise Risk Management LAS VEGAS, BLACK HAT USA 2011 AND PORTSMOUTH, N.H. - August 2, 2011 - NitroSecurity, Inc., the leader in high-performance, content-aware security information and event management (SIEM) solutions and Rapid7¬ģ, the leading provider of security risk intelligence solutions, today announced the industry's first enterprise penetration testing and SIEM integration. The pairing of NitroSecurity's NitroView with Rapid7's Metasploit¬ģ Pro 4.0 solution - which will be demoed in the NitroSecurity booth (#409) at Black Hat USA 2011, August 2-4 - enables security operations managers to identify and validate critical vulnerabilities that could lead to a data breach, and to prioritize their remediation efforts more effectively. Metasploit Pro 4.0 addresses the rapidly changing nature of today's threat landscape by integrating with more than a dozen vulnerability management and Web application scanners, and for the first time, by providing data to NitroView through a documented interface. With security operations teams continuously challenged, the need to identify and focus on remediating the vulnerabilities that represent the highest risk of exploit is paramount. Metasploit Pro confirms that exposures reported by vulnerability management solutions exist and verifies whether a reported vulnerability is actually exploitable, reducing false positives and identifying issues that truly pose a data breach risk. Integrating Metasploit Pro with NitroView enables security teams to increase their productivity by spending less time fixing unimportant vulnerabilities and having an effective way to verify that remediation was successful. Read the entire¬ press release HERE. http://www.nitrosecurity.com/company/press-releases/nitrosecurity-and-rapid7-introduce-industrye28099s-first-siem-and-penetration-testing-integration/ NitroSecurity Enhances Award-Winning Channel Program NitroConnect Partner Program Offers Two Authorization Levels, Online Deal Registration, Technical Training and More to Drive Solution Provider Success PORTSMOUTH, N.H. - July 13, 2011¬ - NitroSecurity, Inc., the leader in high-performance, content-aware security information and event management solutions (SIEM), today introduced enhancements to its award-winning NitroConnect Partner Program to further engage and empower value added resellers and systems integrators. To help channel partners effectively grow their cybersecurity businesses and deliver strategic solutions built on its top-rated NitroView SIEM platform, NitroSecurity's NitroConnect Partner Program now features the following elements: Two Authorization Levels - NitroSecurity makes it simple for new partners to get started and collaborates with them to determine an appropriate level of commitment - either Authorized Reseller or Strategic Solution Partner. Also, NitroSecurity provides partners with clearly-defined expectations and requirements, and corresponding services, discounts, benefits and margin incentives - including pre- and post-sales support, qualified lead generation and joint marketing activities - based on their engagement level. Online Deal Registration - Partners that identify and register customer opportunities within the NitroSecurity Partner Portal are rewarded with guaranteed deal protection and greater discounts to help them achieve margin targets. Technical Training Programs - Through comprehensive and structured technical training, partners can attain "Nitro Certified Partner Engineer" status, accelerate time to deployment and rapidly deliver strategic value to their customers. Monthly Solution Update Sessions - Through use case scenarios including insider threats, fraud detection, advanced targeted attacks and regulatory compliance, partners learn how to quickly identify security challenges and tightly integrate SIEM, log management, application data monitoring, database activity monitoring and IPS into a single, cost-effective security solution tailored to meet their customers' needs. "The speed and flexibility of NitroSecurity solutions removes the frustrations that many businesses experienced with earlier SIEM deployments. With NitroView, security analysts can more rapidly correlate log data and efficiently identify and mitigate potential security threats. And NitroSecurity technology is backed by world-class support, engineering and sales teams committed to making SIEM successful," said Joshua Huston, Founder and Information Security Advisor of Exultium. "Additionally, this strong partnership with NitroSecurity has opened up tremendous value-added opportunities for Exultium. Our new NitroSecurity co-managed service helps enterprises truly leverage their security investments. Organizations enjoy a continuously tuned and efficient SIEM environment based on NitroView, and the co-managed model offers them an effective alternative to completely outsourcing operations."¬ Read the entire¬ press release HERE.¬ http://www.nitrosecurity.com/company/press-releases/nitrosecurity-enhances-award-winning-channel-program/ Nitro in the News - Data Breaches Can Data Breaches Kill? August 12, 2011 By Ericka Chickowski, Contributing Editor Dark Reading Data breaches have long threatened the identities of individuals whose data was stolen by pilfering cybercriminals. But, in some cases, the breach of sensitive data can put far more than just the credit histories of victims at risk. In the right set of circumstances, a data breach can put people's lives at risk. As far as the security community knows, there has been no documented case where breached private details have proved fatal. But the recent exposure of sensitive information held by more than 70 different U.S. law enforcement agencies by Anonymous provides a perfect example of the type of information that could put a breach victim's life at risk. The group nabbed and made public the personal information of hundreds of law enforcement officers via BitTorrent, as well as the names and information of police informants for many of the departments hit in the attack. "Just knowing the name of a person within a secret organization or relationship can be life-threatening for them," says Mel Shakir, CTO of NitroSecurity. "As organizations start looking at these incidents, they'll start to understand the implications of even employee information being stolen." Read the entire article¬ HERE. http://www.darkreading.com/database-security/167901020/security/news/231400183/can-data-breaches-kill.html Upcoming Events Join us at industry conferences, events and tradeshows. More Information: http://www.nitrosecurity.com/company/events/ LandWarNet 2011 August 23 - 25, 2011 Tampa, FL MENA ISC Conference Sept. 18 - 19, 2011 Jordon United Security Summit Sept. 19 - 20, 2011 San Francisco, CA SANS Las Vegas Sept. 20, 2011 Las Vegas, NV IANS Boston Sept. 20 - 21, 2011 Boston, MA NSA Trusted Computing Conference Sept. 20 - 22, 2011 Orlando, FL Applied Control Solutions Conference Sept. 20 - 22, 2011 Washington, DC Louisville ISSA Conference Sept. 29, 2011 Louisville, KY IANS Atlanta Oct. 5 - 6, 2011 Atlanta, GA NitroSecurity 230 Commerce Way, Portsmouth, NH 03801. +1 603.766.8160 firstname.lastname@example.org mailto:email@example.com) If you no longer wish to receive emails from NitroSecurity, Unsubscribe here: http://www.nitrosecurity.com/why-nitrosecurity/unsubscribe/