With any public cloud, security is a shared responsibility between the cloud service provider and you, the user of those services. For IaaS offerings, this usually means the division of responsibilities is as follows: Cloud Service Provider You Facilities Physical security Network infrastructure Virtualization layer Operating system Applications Data If you’ve done work...
Blog@ Trend Micro
Microsoft recently held their annual Build conference. The premier developer event for Microsoft is usually quite predictable. You could safely expect a few incremental improvements in various technologies and fantastic developer sessions on current tech. See for yourself; the sessions are online from 2012 and 2013. Things were different this year. I’ll be addressing the...
I recently hosted a webinar on optimizing security for AWS. The goal of the webinar was to help raise awareness of how security changes as you move to the AWS Cloud. I strongly believe that if you’re aware of the changes, you can actually build a stronger security posture for your deployments. The webinar runs...
Last week, we said that the best things you can do to help protect yourself from the Heartbleed vulnerability were to make sure you’re running a security suite like Titanium, keep an eye on your accounts for unusual activity, and change your passwords when you’re told to by website operators. Today, we want to let...
Here you will find the latest blogs from Trend Micro’s experts along with a comprehensive look at how the media has covered this vulnerability. We encourage you to scroll through the various blogs, provide comments and enjoy the in-depth knowledge that Trend Micro has to offer. April 16, 2014 Yahoo Small business Advisor Not...
Trend Micro customers talk about security concerns with cloud adoption, flexible security for dynamic architectures, and agentless protection with Deep Security
Trend Micro Deep Security Powering tomorrow's cloud-enabled enterprises with a dynamic data center of distributed physical and virtual servers operating in private and public clouds.
Gartner and Trend Micro illustrate the key criteria to consider when evaluating a data center security solution.
In this video, we hear from Sanjay Mehta, Managing Director of Trend Micro, on solutions that allow customers to secure their applications and data, whilst enjoying the benefits of Amazon Web Services Cloud Solutions.
Given the advances attackers have been making, it is very unlikely that organizations will be able to keep motivated and patient adversaries out of their networks. In most cases, the best one can hope for is to detect targeted attacks early and limit the amount of information the attackers can obtain access to. In this whitepaper, we identify the timeline of a typical attack sequence and the tools available for implementing custom defence strategies. Download PDF
Advanced Persistent Threats strive to remain undetected in the network in order to gain access to the valuable data. Once in, it can be an arduous task for system administrators to detect any malicious activity in the network. In this whitepaper, we look at the methods used for malicious activity and what efforts can be taken to mitigate the problem. Download PDF
Advanced Persistent Threats (APTs) refer to a category of threats that aggressively pursue and chosen targets that over time attempt to get deeper into their network. For Enterprises, this is a high priority threat as human and systemic weaknesses can be mitigated with correct practices and solutions. In this report we look at targeted attack campaigns and how these can be mitigated. Download PDF
Virtualised datacentres, desktops, and cloud computing should be secured by the same strong protection technologies as physical machines. However, traditional agent-based solutions that are not architected for virtualisation can result in a number of significant operational security issues. Find out more about the first agentless security platform solution. Download PDF
This white paper reviews the challenges with endpoint security in virtualised environments - including the inherent risks of dynamic virtual machines and the resource impact of security software such as virusscanners in multiple guest virtual machines, on a single physical host. Download PDF
Virtualisation and cloud computing can help your organisation achieve significant ROI as well as savings in hardware costs, operational expenditures, and energy demands - while achieving improvements in service quality and business agility. Despite this potential, many organisations maintain their existing physical server security, unaware that this limits their ability to maximize their use of virtualisation and cloud technologies. Download PDF
Compelling new research by IDG Research Services spotlights the most pressing challenges facing organisations globally around virtualisation and security in data centers and clouds environments. Download PDF
Virtualisation and cloud computing have changed the face of today’s data centre. Yet as organisations move from physical environments to a mix of physical, virtual, and cloud, many have addressed the prevailing threat landscape with yesterday’s mix of legacy security solutions. The results can actually threaten desired performance gains – for example, leaving unintentional security gaps. Download PDF
As organisations expand their virtualisation deployments to application and desktop virtualisation, they will find themselves on the road to cloud computing. ESG looks at the multi-phase process IT organisations will undergo and offers guidance on how each phase provides an opportunity to not only increase optimisation and efficiency, but enhance security as well. Download PDF
Software patches have long been an integral aspect of maintenance and development for any product or system. Regular patches allow a system to undergo dynamic growth, evolving and developing to meet new needs, respond to new developments, or address emergent weaknesses. Find out more about cost savings and overall gains to security and stability that an enterprise can accrue through the implementation of virtual patching technology. Download PDF
There are two types of data: data someone wants to steal and everything else. Most security professionals today do not understand the motivations behind data theft; they put controls in place that protect the data that is most valuable to them, as opposed to data that is most valuable to criminals. Download PDF
The purpose of IT security is to enable your business, not impede it, but the challenges and complexity you face for your IT security grow every day. Compliance requirements impose security standards for data and applications on servers. Download PDF
Trend Ready Program for Cloud Service Providers is an initiative designed to help enterprises overcome the complex data and threat security risks that inhibit them from adopting cloud computing. It provides a validated set of trusted security tools that compliments your internal IT controls, helps you overcome fear about cloud security, and enhances your ability to fully embrace cloud computing. Download PDF
Many organizations are looking to the cloud for increasing computational capacity or lowering costs of ownership. While the security issues facing a traditional corporate network are well understood, the challenges of using the cloud are more complex. Download PDF
This white paper reviews enterprise challenges with security patch management including risks to various areas of IT—security, compliance, operations, and budgets. It discusses how traditional approaches to remediating vulnerable systems can create new problems and provides a new model that keeps pace with the ever-increasing number of attack vectors. Download PDF
Countless software vulnerabilities leave the door open to data-stealing malware and other attacks. And IT teams can’t keep up—it’s virtually impossible to download, test, and deploy patches for all critical vulnerabilities before they are exploited. At the same time, emergency patching causes unacceptable downtime, overhead, and costs and other operational challenges. Given these challenges, there has never been a more urgent need for a virtual patching solution that complements existing patch management processes by shielding known and unknown vulnerabilities. Download PDF