Protection Against Latest Attacks Targeting Cisco IOS Vulnerabilities
McAfee's Proven and Comprehensive Security Solutions Address Complete
Lifecycle of Risk
SANTA CLARA, Calif., Aug. 3 - McAfee, Inc., (NYSE: MFE), the leader in Intrusion Prevention and Security Risk Management, today reiterated that its market-leading IntruShield network intrusion prevention system (IPS) provides its customers with preemptive, zero-day protection against threats and attacks that target existing and future vulnerabilities in mission-critical network infrastructure. McAfee IntruShield's existing infrastructure protection proactively covers new exploit techniques against Cisco IOS, such as those demonstrated at last week's Black Hat conference. These new exploit techniques could be leveraged to attack existing infrastructure devices that have not been, or cannot be, updated with the latest Cisco security patches. IntruShield customers were completely and proactively protected against this new class of attack on all covered IOS vulnerabilities without signature updates.
Last week's Black Hat demonstration reinforces the risks associated with deploying and maintaining any network technology in a threat environment where all infrastructure equipment is vulnerable to attack. Patching critical network infrastructure such as switches and routers presents a particular challenge for organizations because of the potential loss of network and business availability resulting from patching process problems. Enterprise-grade network IPS provides the only effective means to protect critical infrastructure during the "window of vulnerability" that exists before patches are tested and in place.
McAfee provides zero-day infrastructure protection through its patented shell code detection technology, an integral part of IntruShield's next-generation signature, anomaly and DoS detection and prevention engines. IntruShield's best-of-breed purpose-built appliances provide the performance needed to inspect all network traffic in real-time, while protecting customers from the underlying vulnerability itself, as opposed to any specific exploit technique.
"McAfee is dedicated to providing our customers with zero-day protection against network security threats, including new exploit techniques against the Cisco IOS vulnerability that received widespread attention last week. If these new techniques were used to launch an attack on critical network infrastructure, they could cause enormous harm to organizations of all sizes," said Vince Rossi, senior vice president of product management and marketing at McAfee. "Only McAfee has the complete breadth of system and network security solutions required to identify, mitigate and block attacks; and only McAfee IntruShield can wholly and proactively protect the network infrastructure even before patches are made available."
To ensure that both networks and systems are protected against existing and future threats, McAfee stresses the need for a comprehensive enterprise security strategy that incorporates good security practices with multi-layered network and system security solutions that work together to proactively block attacks. Only McAfee provides a comprehensive portfolio of best-of-breed system and network security solutions that enable companies of all sizes to proactively block malicious attacks, prevent disruptions, and continuously track and improve their security posture.
All McAfee products are backed by the company's top-ranked anti-virus and vulnerability research organization, McAfee AVERT, whose global researchers combine research expertise from McAfee IntruShield, McAfee Entercept(R) and McAfee Foundstone(R) organizations to protect customers on a 24x7 basis. McAfee AVERT protects customers by providing analysis and core technologies that are developed through the combined efforts of McAfee AVERT researchers and McAfee AVERT AutoImmune technology, which applies advanced heuristics, generic detection with repair, and ActiveDAT technology to deliver those technologies for previously undiscovered viruses.
In addition to deploying comprehensive network security solutions, McAfee recommends that users affected by this vulnerability deploy the necessary patches and continue to adhere to Cisco's security recommendations. Users affected by the Cisco IOS vulnerability should update their systems with patches available on the Cisco web site at: http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml .
Information on McAfee technologies that provide complete system and network protection can be found online at the company's Web site located at http://www.mcafee.com.
About McAfee, Inc.
McAfee Inc., headquartered in Santa Clara, California and the global leader in Intrusion Prevention and Security Risk Management, delivers proactive and proven solutions and services that secure systems and networks around the world. With its unmatched security expertise and commitment to innovation, McAfee empowers home users, businesses, the public sector, and service providers with the ability to block attacks, prevent disruptions, and continuously track and improve their security. http://www.mcafee.com
NOTE: McAfee, IntruShield, Entercept, Foundstone and AVERT are either registered trademarks or trademarks of McAfee, Inc. and/or its affiliates in the US and/or other countries. The color red in connection with security is distinctive of McAfee brand products. All other registered and unregistered trademarks in this document are the sole property of their respective owners.
