|
||||
| WHAT'S NEW? |
||||
| FROM OUR MCRC SECURITY LABS |
||||
| FINJAN IN THE MEDIA |
||||
| SUCCESS STORIES |
||||
| EVENTS |
||||
| COMPLIANCE |
||||
| CUSTOMER SUPPORT AND SERVICES |
||||
| LETTER FROM THE PRESIDENT & CEO | ||
I would like to start with mentioning that Finjan can look back at a stellar 2007 with record sales. We consolidated our position as a market leader in our industry and were regularly quoted by leading media outlets. A selection can be found under "Finjan in the media". We as Finjan were also named as a finalist for the "Info Security Products Guide Global Awards" in no less than six categories. Our renowned MCRC issued its quarterly trend report and its "malicious page of the month" papers (MPOM) that cover and analyze the latest Crimeware trends. You will find the excerpts further on in this newsletter. Furthermore, I would like to draw your attention to the "what's new?" section, which provides you with an overview of the latest news about Finjan and its activities. It also briefly covers the successful product release of our RUSafe version 8.5. As you know, Finjan attends exhibitions and events around the world, and you will find the upcoming ones towards the end of this newsletter. To keep abreast of the latest Finjan news, I invite you to visit our website regularly. John Vigouroux |
||
Dear reader,| WHAT'S NEW? |
Finjan Names John Vigouroux as President & CEO
Finjan announced the executive appointments of Eric Benhamou as Chairman and John Vigouroux as President & CEO. Outgoing President & CEO Mr. Asher Polani will continue to serve on the Board of Directors.
Mr. Vigouroux joined Finjan with over 25 years of experience leading private and public security companies. His impressive track record includes: Chairman & CEO at Cranite Systems, a secure network company; President & COO at Tumbleweed Communications; President & CEO of Valicert, (which was acquired by Tumbleweed). Mr. Vigouroux has also held executive positions in both large multi-national enterprises such as Cisco, Adobe Systems, and GE Information Services, as well as several Silicon Valley startups.
For more details, please read the full text
Finjan Appoints John Charles Vice President of North American Sales
Finjan also appointed Mr. John Charles as Vice President of North American Sales. As a highly experienced IT sales executive, Mr. Charles will be responsible for Finjan's sales operations and channel network in the United States and Canada.
Mr. Charles brings three decades of sales and management experience to Finjan, including 19 years in various sales management positions at IBM. He also held executive sales positions at Cranite Systems and Tumbleweed Communications, where he was responsible for 35 selected enterprise accounts, including major financial institutions.
For the full version, please follow the link
Finjan Identifies Trojan 2.0 a New Genre of Crimeware
In December 2007, Finjan announced that its Malicious Code Research Center (MCRC) had identified a new genre of Crimeware Trojans. These "Trojans 2.0" utilize regular Web 2.0 technology and websites, cleverly avoiding detection by reputation-based security services. It enables cybercriminals to further using the Web as the most effective attack vector for a wide range of illegitimate and malicious activities - including botnet delivery of spam, identity theft through keylogging, financial fraud, corporate espionage, and business intelligence gathering.
For more details, please read the full press release
Finjan SecureBrowsing addresses malware issues found within search results
Hackers targeted Google search results by seeding the search engine tool with bogus sites that contained malware. With Finjan SecureBrowsing™, Web users are proactively alerted when potential malicious content is hiding behind links of search results, ads and other selected Web pages.
To learn more, please read the full press release
Finjan reveals new Trojan activity involves Chinese Government website
Finjan's MCRC conducted an independent study prompted by the increased volume of attacks coming from China. The study shows in detail how users' PCs were infected by Trojans distributed from China. Malicious content was distributed using obfuscated code and a network of websites to bypass traditional information security technology. MCRC not only discovered new hacking techniques but also that one of the websites (ab)used to distribute the Crimeware belonged to a Chinese government office.
To learn more about zero-day exploits please read the full press release
Finjan reveals hackers are abusing trusted domain names
In November 2007, Finjan announced that hackers and cybercriminals were exploiting a loophole in the domain name registration process. As a result, they infected visitors to legitimate websites and extended the lifecycle of their cyber attacks.
Follow the link to read more about this attack
Finjan launched RUSafe version 8.5
In December 2007, Finjan launched the latest version of its RUSafe.
New features include easy collection of customer databases as well as easy cleaning of previous data from the appliance.
The performance of the reporting engine is even better than before and a new list of reports has been applied.
To share your feedback and thoughts with us on this matter, you can write to our product marketing forum at pmforum@finjan.com
Finjan Named Finalist in Info Security Products Guide Global Awards in Six Categories
Info Security Products Guide named Finjan Vital Security™ Web Appliance NG -6100 as a finalist for the 2008 Global Product Excellence Awards. The NG-1600 was nominated in five separate categories. Finjan was also singled out as a finalist in the 2008 Outstanding Awards for Highest Partner Satisfaction.
Read the full press release
| FROM OUR MCRC SECURITY LABS |
Quarterly Web Security Trends Report
Finjan's renowned Malicious Code Research Center issued its quarterly Web Security Trends Report at the end of 2007.
In this report, you can learn about a new genre of Crimeware -"Trojan 2.0"
These Trojans utilize regular Web 2.0 technology and websites to provide cybercriminals with an easy and scalable command and control scheme. The report shows the impact on the industry and the most effective defense against these attacks (real-time code inspection).
It also includes a review of web security trends in 2007 and a comparison of Finjan's forecast vs. reality. Want to know what 2008 might bring? MCRC also presents its outlook for 2008.
To learn more, you can download the Q4 Web Security Trend Report
Malicious Page of the Month
MCRC issues a monthly MPOM to inform Finjan's customers about the latest threats.
New malicious sites are created and brought online at a dazzling pace and are used by cybercriminals to host a multitude of Crimeware. Each MPOM provides a detailed analysis of the latest malicious code, explains infection techniques and payload, with screenshots of the mentioned webpage(s).
-
The December 2007 issue of the MPOM covers the Trojan activity involving Chinese Government website
It analyzes the increased malicious activity from China that started in September 2007. It also shows the intricate network of connections between Chinese-based servers whose main purpose is to conduct criminal activity, and how attackers are utilizing this network as a "clearing house" for the attacks themselves.
For more details, please download the MPOM
-
The October 2007 issue of the MPOP shows how hackers successfully abuse trusted domains.
It describes how Finjan's MCRC discovered a domain name similar to a Google service that contained malicious code specifically designed to download and execute a trojan on the website visitor's machine.
When trying to deduce where the domain name hosting this malicious site was located, MCRC found that it was located on (and later removed from) a Yahoo! Controlled IP address.
To learn more about these findings, you are invited to download the MPOM
MCRC Blog
Stay updated about the latest developments in web security by reading our MCRC blog!
| FINJAN IN THE MEDIA |
During the last quarter Finjan has received wide and important coverage in the media thanks to the discoveries of our Malicious Code Research Center. CTO Yuval Ben-Itzhak has been interviewed and quoted by media such as Financial Times, Information Week and VNUnet:
 |
December 19, 2007
Steep rise in hacking attacks from China |
 |
December 12, 2007 Malicious software: what 2008 has in store |
 |
December 10, 2007 Trojan 2.0 Crafted Using Web 2.0 Technology |
 |
December 4, 2007 China accused of Trojan onslaught |
 |
November 15, 2007 Attackers abusing trusted domain names "Hackers are buying domain names made to look as though they belong to legitimate companies but contain hard-to-notice spelling errors. Users could find themselves on a Web page designed to infect their machines with malware", said Finjan CTO Yuval Ben-Itzhak. Such spoofing tactics are popular among phishers, and the increased abuse of domain names lead to the creation of an organization to fight it earlier this year. |
To view a complete list of the media coverage, please click on the link.
| SUCCESS STORIES |
SVB Selects Finjan to Secure Its Network from Web Threats
The Dutch Sociale Verzekeringsbank (SVB) is responsible for the administration of Dutch state pensions, survivor's benefits, child benefit and other social insurance schemes for more than 4.6 million clients worldwide.
They approached Finjan to secure SVB's advanced ICT infrastructure from Web-based malware threats, while simplifying management and increasing productivity.
Finjan Vital Security™ Web Appliance, with its unsurpassed real-time web security, enabled reduction in SVB's maintenance efforts and resources, while at the same time enhancing their uses' experience.
To quote Mr. Arjan van de Velde, IT Specialist at SVB:
"Since deployment of Finjan's secure Web gateway solution, maintenance of our security solution has become much easier and requires less resources. Finjan's real-time web security protects our sensitive information from stealthy Trojans and Crimeware."
| EVENTS |
Our Industry Conferences enables prospective clients to learn more - first-hand - about Finjan's technology and service advantage.
Industry Conference Schedule 2008
| Date | Event | Venue | More Info | |
| Feb. 5-7, 2008 | ITnT 2008 |  |
Vienna, Austria | Finjan presents together with Cetus-IT |
| Mar. 10-12, 2008 | InfoSec World 2008 |  |
Rosen Shingle Creek Resort Orlando, Florida, USA |
Booth# 108 |
| Apr. 7-11, 2008 | RSA® Conference 2008 |  |
Moscone Center, San Francisco, USA |
Booth# 717 |
| Apr. 22-24, 2008 | Infosecurity Europe 2008 |  |
Grand Hall, Olympia, London, UK |
Booth# F190 |
Click on the link to view the complete list of events
http://www.finjan.com/Content.aspx?id=234
| COMPLIANCE |
Finjan's Vital Security™ helps organizations to protect their sensitive data and corporate assets by identifying and blocking malicious content at the network gateway.
With our solutions, organizations can secure customer and corporate information, protect privacy, and prevent identity theft.
Our proactive behavior-based protection also assists organizations and companies to comply with applicable regulatory requirements, such as: SOX (COBIT) DS5; PCI DSS 1.1; HIPAA.
To learn more about how Finjan's product suite can help your organization to comply with various regulations, please read on:
-
Financial Services: Financial institutions such as banks, credit unions, credit card companies, insurance firms and mutual funds need to protect their customer account information. They also need to comply with various regulatory requirements such as PCI DSS 1.1.
To learn how Finjan can assist, please click here
How Finjan's Vital Security ™ helps organizations to comply with: PCI DSS 1.1 -
Healthcare: Healthcare organizations such as hospitals and medical institutions need to protect their patient information. They also need to comply with the requirements and addressables outlined in the Health Insurance Portability and Accountability Act (HIPAA).
To learn how Finjan can assist, please click here
How Finjan's Vital Security™ helps organizations to comply with: HIPAA -
Corporate Governance: All U.S. public company boards, management, and public accounting firms need to comply with the financial and reporting standards described in the Sarbanes-Oxley Act of 2002 and the related "Control Objectives for Information Technology" (COBIT).
To learn how Finjan can assist, please click here
How Finjan's Vital Security ™ helps organizations to comply with: SOX (COBIT 4.1 Control Objectives)
| CUSTOMER SUPPORT AND SERVICES |
Finjan puts a lot of emphasis on customer satisfaction. During the second half of 2006, a comprehensive survey process was initiated to monitor the satisfaction level of its customers. It enabled Finjan to provide even better services and support.
In 2006, the customer satisfaction rate was 4.26, in 2007 it reached 4.46. (To compare: the average number for high performance in our industry is 4.0). The survey is one of the various ways that Finjan keeps in close touch with its customers.
For more information about Finjan, our products or to contact one of our regional sales offices, please visit our website at www.finjan.com.
Please send your suggestions and comments to newsletter@finjan.com.
To read back issues, browse our newsletter archive.
If you would like to print this newsletter, verify your page set-up is "landscape" before printing.