CORE IMPACT v7 Allows Users to Safely Test Client-Side Vulnerabilities and Email-Borne Social Engineering Attacks, Such as Phishing, Spear Phishing and Spam
BOSTON - July 30, 2007 - Core Security Technologies today announced CORE IMPACT v7, the most comprehensive product for performing enterprise security assurance testing. CORE IMPACT v7 introduces major enhancements to address the significant increase in social engineering attacks threatening end users and their applications. These new capabilities augment CORE IMPACT’s existing functionality for testing the security of server and desktop operating systems and critical OS services, resulting in the broadest range of testing options available, coupled with the easiest-to-use and most cost-effective security assessment software available today.
The major enhancements in v7 include:
- the first and only automated Client-Side Rapid Penetration Test (RPT) methodology implemented with
- a re-architected version of Core Security’s industry-leading agent technology
- advancements to the CORE IMPACT platform to simplify security testing and facilitate compliance with the PCI Data Security Standard
- a new dashboard that provides a real-time view of the industry’s most comprehensive, reliable and quality-assured exploit database.
"The bad guys are testing every organization's defenses every single day," said Mike Rothman, President, Security Incite. "Whether it's targeting client-side vulnerabilities on desktop applications, social engineering or phishing attacks, the organization is exposed. The question is not if, it's how much and what is at stake. Enterprises should be poking and prodding at their networks and systems frequently with automated tools to know what the bad guys already know - how and where your environment can be exploited."
Fully Automated Methodology for Testing End Users and
With CORE IMPACT v7, Core Security introduces the Client-Side Rapid Penetration Test (RPT), the first fully automated methodology for testing both the security of end-user applications and the effectiveness of end-user security training initiatives. CORE IMPACT v7 now makes it possible for security professionals of all skill levels to easily test their endpoint systems, as well as their end users and end-user applications - including Web browsers, mail readers, instant messaging, media players and business applications - through a single, easy-to-use, automated product. This latest version of CORE IMPACT continues the product’s track record of innovation and provides for safe testing of client-side vulnerabilities, Trojan horses and other malware threats and email-borne social engineering attacks, such as phishing, spear phishing
With Client-Side RPT, organizations can significantly reduce the time and complexity of testing end-user applications and running automated social engineering attacks to measure the effectiveness of their security training initiatives and ensure that policies are being met. CORE IMPACT v7 also adds new Client-Side Penetration Test Reports to help security professionals accurately identify and display gaps in their end-user security awareness training.
“It’s simply not enough to put in place security defenses and hope they work correctly. This applies to both our network’s security defenses, as well as the security training we provide to all employees,” said Nikk Gilbert, IT security and telecom director, Alstom Transport. “With CORE IMPACT v7, Core Security is making it even easier for Alstom to accurately assess our exposure to a broader set of threats.”
New PCI Vulnerability Validation Reporting
Because ensuring network security is no longer an option for merchants and payment processors, all organizations, merchants and service providers that store, process or transmit cardholder data must comply with the Payment Card Industry (PCI) Data Security Standard. Identifying and addressing vulnerabilities is a key component of achieving PCI compliance. To help organizations more effectively address PCI’s vulnerability management requirements, Core Security is introducing new reporting capabilities in CORE IMPACT v7 to augment, validate and prioritize results from vulnerability scans performed by Payment Card Industry Approved Scanning Vendors (ASVs).
By providing automated capabilities to determine if the potential vulnerabilities reported by vulnerability scanning can be actually exploited, CORE IMPACT enables security professionals to identify major risks that could result in them failing PCI certification. Since many IMPACT customers already use the product to comply with the specific penetration testing requirements of the PCI standard, IMPACT is becoming an even more critical component of the PCI compliance process.
“Increasingly, organizations worldwide are recognizing the need to broaden the scope of security testing to accurately identify, prioritize and address their risk,” said Paul Paget, CEO of Core Security Technologies. “With CORE IMPACT v7, Core Security is demonstrating its continued commitment to providing the most comprehensive and innovative testing capabilities in the industry to our customers, helping them more efficiently protect themselves against the latest attack techniques and more easily comply with regulatory requirements.”
Redesigned, Consolidated Agent Technology Speeds and Simplifies Security Testing
With CORE IMPACT v7, Core Security continues to improve upon its innovative agent technology for security testing. CORE IMPACT’s agent has been simplified to bring capabilities typically employed by power users to a wider base of customers. IMPACT’s powerful, multi-threaded enterprise-class agent is deployed “on demand” and runs in memory by default to protect the integrity of the tested system. It also now provides an encrypted and authenticated channel with the testing machine, an extensible plug-in architecture (e.g., for use in network packet injection and packet capture capabilities), and can be easily configured to persist across system reboots for tests that span multiple days. The new consolidated agent also provides enhancements for network RPT pivoting.
Real-time Visibility through the New CORE IMPACT Dashboard
CORE IMPACT v7 features a new dashboard interface that provides security professionals with a real-time view of the industry's most comprehensive, reliable and quality-assured exploit database. This visibility into more than 3,400 network vulnerability entry-points tested by CORE IMPACT ensures that organizations have all of the latest updates for testing their security defenses against emerging threats. The new CORE IMPACT dashboard also includes a new online and offline update notification feature that helps users stay on top of the latest attack trends, informing them when new exploits and utility modules are available for download for their
CORE IMPACT software.
Additional Usability and Performance Enhancements
IMPACT v7 also includes a range of additional enhancements, based on feedback provided by the over 500 organizations currently using the product. These include:
- support for running IMPACT on Windows Vista
- enhanced agent support for Windows Vista and new agent support for FreeBSD – IMPACT now supports over 150 unique target operating system and service
- new backup and restore tools, which make it easier to migrate IMPACT to new OS or hardware
- improved installation
- improved RPT Information Gathering automation
- improved integration with industry-leading vulnerability scanning software
- new online upgrade capability
- over 500 other minor enhancements and fixes.
CORE IMPACT v7 will be available within 30 days at no additional charge for all existing IMPACT customers with a valid current license. Additional information can be found at www.coresecurity.com.
About Core Security Technologies
Core Security Technologies develops strategic solutions that help security-conscious organizations worldwide develop and maintain a proactive process for securing their networks. The company’s flagship product, CORE IMPACT, is the most comprehensive product for performing enterprise security assurance testing. IMPACT evaluates network, endpoint and end-user vulnerabilities and identifies what resources are exposed. It enables organizations to determine if current security investments are detecting and preventing attacks. Core augments its leading technology solution with world-class security consulting services, including penetration testing and software security auditing. Based in Boston, MA and Buenos Aires, Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com.
Dave Bowker or Tim Whitman