Monday February 06 , 2012
Text Size
   
February Q Times
Subject: February Q Times
Send date: 0000-00-00 00:00:00
Issue #: 4
Content:
About Us Solutions Industry Services News & Events Contact Us

 

"They who would give up an essential liberty for temporary security, deserve neither liberty or security"

— Benjamin Franklin

 
Dear Valued Customers,

February '09 Issue

Good Day!

Thank you for reading our newsletter. Like always, our aim is to update you with the current news and carefully selecting the latest reports that matters to you.

I'm sure you have heard of the news about a short glitch in Google's search engine last Saturday where almost 170,000 websites were mistakenly tagged as malicious. Fortunately, this is just a mistake or else it's going to be a big trouble if our sites has been infected by malicious codes.

This is why it's important to have a tool to scan our websites for vulnerabilities. Incidentally, Cenzic's Hailstorm Enterprise ARC, a web application security and testing tool, receives high marks from Information Security Magazine for being a "true enterprise-class solution for managing web application vulnerabilities."

Cenzic was also named as finalist for "2009 Hot Companies Award" by Network Products Guide which proves that its one of the most recognized innovating companies in Web Application security.

In this issue of Q Times, we have press release on the recent Cyber-Ark deal that Quantiq has won againsts its competitors. We also have news about data breach which led a U.S payment processor company to a lawsuit.

Quantiq wins its first Cyber-Ark deal for 2009 for Privileged Identity Management Solution

Singapore – February 4, 2009, Quantiq International recently closed its first deal for 2009 and the shortest sales cycle ever for Cyber-Ark Enterprise Password Vault®, solution with Asia's largest and leading agribusiness group to protect and manage all their privileged accounts and automatically enforce enterprise policies for credential management.

This major oil palm plantation and processor company have an audit point and compliance for privileged user password management and chose Cyber-Ark's EPV because of its ability to secure and manage passwords, scalability, wider list of supported devices and out of the box support for application passwords.

Cyber-Ark's EPV is the answer to some compliance regulations such as Sarbanes-Oxley, PCI and BaseII and provides a centralized solution for storing, accessing and maintaining password of all kinds with its Patented Digital Vault Technology using FIPS 140-2 validated cryptography module.

"We are so happy to serve another manufacturing company and looking forward on helping more corporations to address problems in data/system breaches either caused by internal users or cyber-criminals," said Cynthia Lee, Solution Sales Manager, Quantiq International.

 


Data Breach causes Heartland to face first lawsuit

Heartland Payment Systems, an independent payment processor in the US faces a lawsuit filed by Pennsylvania law firm, Chimicles & Tikellis LLP due to the data breach occured in October 2008.

The company didn’t know about the data breach until it was notified by Visa and Mastercard and had failed to implement all the controls required to protect sensitive data causing possible millions of sensitive financial information from consumers accross America to be compromised.

Futhermore, the victims may have experienced unauthorized credit card charges and have been exposed to fraud and indentity theft according to the lawsuit.

Meanwhile in Singapore, Minister for Information, Communication and the Arts Lee Boon Yang said that they are still currently looking into developing data protection model that can best address Singapore’s Privacy concerns, commercial requirements and national interests. The inter-ministry committee formed to review Singapore’s data protection regime involves public sector agencies including the Infocomm Development Authority, the Minstry of Trade and Industry, the Ministry of Finance, Ministry of Home Affairs and the Attorney-General’s Chambers.

According to Joshua Chua, Deloitte & Touche’s security and privacy leader for risk consulting in Southeast Asia, there is currently no specific data brach notification legislation in Singapore, which mandates that companies notify regulators and the public in the event of a privacy breach, or leakage of personal information.

It the U.S., Identity Theft Resource Center (”ITRC”) reported that “number of breaches in 2008 was up to 47% from 2007 and they have analyzed cause of breach such as mal-attacks, hacking and insider theft, account for 29.6% of those breaches. Insider theft, now at 15.7%, has more that doubled between 2007 and 2008. On the other hand, data on the move and accidental exposure, both human error categories, showed noteworthy improvement but still account for 35.2% of those breaches that indicate cause.”

 

Month

Event

March

Bangkok Cyber-Security and Forensic Summit - March 25th 2009

Singapore Cyber-Security and Forensic Summit - March 27th 2009

April

Cyber Ark - Securing Privileged Identities and Highly-Sensitive Information – 14th April 2009

 


Services Offered

ImageServices Offered
Audit Services
Consulting Services
Enterprise Support
Forensics
Managed Security Services
Trainings Services

Industry Focus

ImageIndustry Focus
Education
Financial Institutions
Government Sectors
Healthcare
Manufacturing
Telcos

Be our Partner

ImagePartners Program

Quantiq offers this program to help channels capitalize on Quantiq's market leadership in distributing the best and proven IT Security solutions.