Killexams.com 050-v71-CASECURID02 Dumps and existent Questions
100% existent Questions - Exam Pass Guarantee with towering Marks - Just Memorize the Answers
050-v71-CASECURID02 exam Dumps Source : RSA SecurID Certified(R) Administrator 7.1
Test Code : 050-v71-CASECURID02
Test name : RSA SecurID Certified(R) Administrator 7.1
Vendor name : RSA
: 140 existent Questions
pointers & hints to certify 050-v71-CASECURID02 examination with exorbitant scores.
It was really very helpful. Your accurate question bank helped me clear 050-v71-CASECURID02 in first attempt with 78.75% marks. My score was 90% but due to negative marking it came to 78.75%. remarkable job killexams.com team..May you achieve each and every the success. Thank you.
Is there 050-v71-CASECURID02 examination fresh sayllabus available?
I got 79% in 050-v71-CASECURID02 exam. Your examine material became very helpful. A massive thank you kilexams!
No greater struggle required to skip 050-v71-CASECURID02 examination.
Its far hard to accumulate the test material which has each and every the necessary skills to required to rob the 050-v71-CASECURID02 exam. I am so lucky in that manner, I used the killexams.com material which has each and every the required information and capabilities and additionally very useful. The topics changed into a few issue comprehensible in the provided Dumps. It honestly makes the training and analyzing in every problem signify number, seamless manner. I am urging my friends to depart through it.
it is surely excellent revel in to hold 050-v71-CASECURID02 dumps.
whilst i was getting organized up for my 050-v71-CASECURID02 , It became very stressful to select the 050-v71-CASECURID02 test material. i create killexams.com whilst googling the fine certification assets. I subscribed and saw the wealth of sources on it and used it to prepare for my 050-v71-CASECURID02 check. I clear it and Im so thankful to this killexams.com.
New Syllabus 050-v71-CASECURID02 Exam questions are provided here.
I chose killexams.com due to the verity I didnt truely exigency to skip 050-v71-CASECURID02 exam but I desired to skip with precise marks so that i would do a very suitable move on each and every and sundry. As a way to accomplish this I needed out of doors resource and this killexams.com hold become willing to provide it to me. I studied over prerogative right here and used 050-v71-CASECURID02 questions to prepare. I hold been given the magnificient prize of high-quality scores within the 050-v71-CASECURID02 check.
what is skip ratio latest 050-v71-CASECURID02 exam?
extraordinarily beneficial. It helped me pass 050-v71-CASECURID02 , especially the exam simulator. I am cheerful i used to be prepared for those tricks. thanks killexams.com.
These 050-v71-CASECURID02 actual test questions works in the existent test.
i used to be 2 weeks brief of my 050-v71-CASECURID02 exam and my instruction changed into now not each and every completed as my 050-v71-CASECURID02 books got burnt in fireplace incident at my region. each and every I concept at that point become to cease the option of giving the paper as I didnt hold any aid to Place together from. Then I opted for killexams.com and that i nonetheless am in a kingdomof astound that I cleared my 050-v71-CASECURID02 exam. With the free demo of killexams.com, i used to be able to grasp matters easily.
Just try these Latest dumps and success is yours.
you may usually be on top efficaciously with the attend of killexams.com due to the fact those products are designed for the attend of each and every students. I had sold 050-v71-CASECURID02 exam usher as it changed into vital for me. It made me to understand each and every crucial ideasof this certification. It was prerogative decision consequently i am emotion delight in this decision. sooner or later, I had scored ninety two percentage due to the fact my helper changed into 050-v71-CASECURID02 exam engine. I am exact due to the fact thosemerchandise helped me within the guidance of certification. way to the high-quality team of killexams.com for my help!
These 050-v71-CASECURID02 Latest dumps works in the existent test.
Being a network professional, I thought appearing for 050-v71-CASECURID02 exam would really attend me in my career. However, due to time restrains preparation for the exam became really tough for me. I was looking for a study usher which could do things better for me. killexams.com dumps worked like wonders for me as this is a systematic solution for more detailed study. Unexpectedly, with its help, I managed to complete the exam in just 70 minutes which is really a surprising. Thanks to killexams.com materials.
thrilled to pay attention that trendy dumps cutting-edge 050-v71-CASECURID02 exam are available prerogative here.
Howdy there fellows, without a doubt to inform you that I passed 050-v71-CASECURID02 exam an afternoon or ago with 88% marks. Certain, the exam is hard and killexams.com and exam Simulator does do actuality less difficult - a super deal! I assume this unit is the unrivaled cause I passed the exam. As a matter of first importance, their exam simulator is a gift. I generally loved the questions and-solution organisation and test of different sorts in mild of the fact that this isthe maximum impeccable technique to research.
RSA RSA SecurID Certified(R) Administrator
skill stage: groundwork fame: active
affordable: $one hundred fifty (shortest song)
summary:For security specialists who've the expertise, advantage, and credentials necessary to deploy and retain official commerce protection methods.
preliminary requirements:There are 2 tracks to select from: RSA Archer and RSA SecurID. You ought to slither the RSA certified Administrator exam ($a hundred and fifty) on your preferred music and signal the RSA certified protection expert settlement. practicing is accessible but no longer required.
continuing requirements:Recertification is required for every major product liberate and for discrete factor releases that RSA deems sufficiently important.
See each and every Rsa Certifications
dealer's page for this certification
SUNNYVALE, CA--(Marketwired - Nov 4, 2013) - Bitzer mobile Inc., a technology leader in enterprise mobility, these days announced that it has carried out certification in the Secured through RSA® certified confederate application for setting up interoperability between Bitzer's BEAM solution and RSA SecurID® authentication from RSA. This certification brings seamless, out of the container interoperability between Bitzer's BEAM platform and RSA SecurID know-how, for that judgement assisting to allow security conscious businesses to without detain installation an commercial enterprise-large mobility initiative.
Bitzer BEAM offers a cozy entry and authorization retort for isolating corporate from very own apps and facts. RSA SecurID® expertise is a number one two-element authentication equipment. here is a major technical initiative that allows for customers' authentication infrastructure the expend of RSA SecurID® technology to be extended to cell contraptions while protecting it be latest requisites for protection.
"RSA welcomes Bitzer cellular into the Secured by using RSA certified accomplice software," observed Chad Loeven, Director Partnerships, RSA. "Extending RSA SecurID authentication to the Bitzer cellular platform helps to wield their valued clientele' safety problem across the cellular enterprise and BYOD."
Bitzer's BEAM answer
creates a "comfortable commerce workspace" for commercial enterprise information and apps which helps two-aspect authentication and ensures a rich consumer adventure by the expend of windows™ unique signal-on
presents information encryption it's FIPS 140-2 licensed
protects from records leakage with corporate manage of how information is saved or shared
establishes granular app-stage policy controls
"Bitzer serves consumers in extremely comfortable and controlled industries many of which might be already using RSA SecurID for two aspect authentication. Extending this paradigm to cellular is a natural extension for purchasers, and getting their BEAM retort licensed gives them the aplomb that it's going to labor out of the container," observed Andy Smith, VP of Product administration.
The combined BEAM and RSA SecurID solution is instantly obtainable. Given the validation from RSA, consumers can believe assured that BEAM will labor seamlessly with their present RSA SecurID deployment. purchasers can accumulate greater assistance with the aid of contacting at firstname.lastname@example.org.
About Bitzer mobile Bitzer cell Inc., a leading commerce mobility retort issuer, enhances worker productiveness via permitting comfy entry to company apps and facts from cell contraptions while conserving wealthy user event. Its relaxed container retort creates the enterprise workspace on any cellular rig -- corporate owned or very own, and for each and every mobile systems. personnel accumulate seamless entry to intranet, company information and apps with business-grade safety and abysmal integration with home windows Authentication for proper unique sign-On. For more counsel, please talk over with www.bitzermobile.com
RSA, EMC and SecurID are either registered logos or trademarks of EMC supplier within the u.s. and/or different nations. All names and trademarks are the property of their respective organizations.
SANTA CLARA, CA, Apr 08, 2010 (MARKETWIRE by the expend of COMTEX) -- exorbitant Networks, Inc. (NASDAQ: EXTR) today introduced that it has joined the RSA Secured(R) companion software to certify interoperability between its ExtremeXOS(R) working rig and the RSA enVision(R) safety tips and event administration platform from RSA, The safety Division of EMC (NYSE: EMC). Certification establishes technical interoperability to promote greater pervasive, community-vast protection options.excessive Networks subsequent technology modular operating equipment, ExtremeXOS, promises slicing-side security elements, together with recognition of consumer and device id, authentication, encryption, integrity and protection, bendy file-based mostly coverage language, and XML across ascetic Networks comprehensive portfolio of exorbitant performance BlackDiamond(R) and Summit(R) switches.
"Extending network and protection features each and every the way through the community infrastructure and surrounding structures is a win for their mutual customers," said Huy Nguyen, director of product advertising for exorbitant Networks. "using astute stream records and experience assistance from their switching structures, across the spine and edge of the community, and lengthening interoperability to RSA's enVision platform, gives multiplied visibility into security and community pursuits, allowing network administrators to reply rapidly, accurately and decisively." "we are cheerful to crew up with exorbitant Networks to back meet the entertaining needs of the commerce via proposing joint customers with a next generation modular working system that has proved to permit a clear direction for safety and counsel adventure administration," referred to Ted Kamionek, vice chairman, enterprise evolution & Technical Alliances at RSA. "This creative collaboration gives an extra censorious step forward in helping to most useful tender protection to the organization's advice, identities and infrastructures." The RSA enVision platform is designed to supply companies a single, built-in retort for security information and adventure management to simplify compliance, boost security operations, and optimize IT and network operations. The RSA enVision solution provides automatic assortment, evaluation, and reporting of log and experience facts.
about the RSA Secured confederate application The RSA Secured companion application is among the greatest and longest-running know-how alliance courses of its type, bringing over 1,000 complementary options throughout more than 300 businesses collectively. RSA SecurID(R), RSA(R) access supervisor, RSA(R) Adaptive Authentication, RSA(R) Digital certificate options, RSA(R) Hybrid Authenticators, RSA(R) enVision, RSA(R) Federated identification manager and RSA(R) Key manager Suite certification classes deliver added assurance to customers that their solutions are licensed as interoperable to attend them obtain quicker time to deployment and reduce average impregnate of possession. The RSA Secured confederate program reflects RSA's commitment to using creative collaboration throughout the trade and aid necessities-based mostly interoperability with its information-centric security solutions to back give protection to counsel, identities and infrastructures. For greater assistance, please visit www.rsa.com/rsasecured.
intense Networks, Inc.
excessive Networks provides converged Ethernet network infrastructure that assist information, voice and video for agencies and service providers. The business's community solutions office exorbitant performance, towering availability and scalable switching solutions that permit businesses to address precise-world communications challenges and opportunities. working in additional than 50 nations, extreme Networks provides wired and wireless secure LANs, facts focus infrastructure and service company Ethernet transport options that are complemented by international, 24x7 provider and guide. For more guidance, visit: http://www.extremenetworks.com extreme Networks, ExtremeXOS, BlackDiamond and pinnacle are either registered emblems or emblems of intense Networks, Inc. within the united states and other countries. EMC, RSA, enVision, Secured, and SecurID are registered emblems or logos of EMC agency.
All other emblems are the property of their respective homeowners.
For greater advice, contact: extreme Networks Public family members Greg pass 408/579-3483 electronic mail Contact supply: ascetic Networks, Inc.
[ Back To SIP Trunking Home's Homepage ]
Whilst it is very hard stint to select trustworthy exam questions / answers resources regarding review, reputation and validity because people accumulate ripoff due to choosing incorrect service. Killexams. com do it unavoidable to provide its clients far better to their resources with respect to exam dumps update and validity. Most of other peoples ripoff report complaint clients arrive to us for the brain dumps and pass their exams enjoyably and easily. They never compromise on their review, reputation and quality because killexams review, killexams reputation and killexams client self aplomb is notable to each and every of us. Specially they manage killexams.com review, killexams.com reputation, killexams.com ripoff report complaint, killexams.com trust, killexams.com validity, killexams.com report and killexams.com scam. If perhaps you view any bogus report posted by their competitor with the name killexams ripoff report complaint internet, killexams.com ripoff report, killexams.com scam, killexams.com complaint or something like this, just maintain in judgement that there are always imperfect people damaging reputation of suitable services due to their benefits. There are a great number of satisfied customers that pass their exams using killexams.com brain dumps, killexams PDF questions, killexams drill questions, killexams exam simulator. Visit Killexams.com, their test questions and sample brain dumps, their exam simulator and you will definitely know that killexams.com is the best brain dumps site.
Back to Braindumps Menu
NSE5 study guide | 9L0-415 brain dumps | 090-091 test prep | 210-250 questions and answers | 117-301 test questions | 922-080 exam prep | JN0-541 dumps questions | C2120-800 free pdf | 303-200 VCE | 922-095 questions answers | 190-828 drill questions | 000-142 free pdf download | C2020-003 sample test | 000-297 test prep | VMCE_V9 free pdf | 648-266 exam prep | A2010-573 study guide | 7120X cheat sheets | ASC-090 drill questions | 310-091 drill test |
Free killexams.com 050-v71-CASECURID02 question bank
If you are interested by efficiently Passing the RSA 050-v71-CASECURID02 exam to start earning, killexams.com has main facet evolved RSA SecurID Certified(R) Administrator 7.1 exam questions with a purpose to do certain you pass this 050-v71-CASECURID02 exam! killexams.com offers you the maximum accurate, synchronous and trendy up to date 050-v71-CASECURID02 exam questions and to be had with a 100% money back guarantee.
If you are examining out RSA 050-v71-CASECURID02 Dumps containing existent exam Questions and Answers for the RSA SecurID Certified(R) Administrator 7.1 test prep? killexams.com is redress here to supply you one most updated and glorious database of 050-v71-CASECURID02 Dumps that's http://killexams.com/pass4sure/exam-detail/050-v71-CASECURID02. they hold got aggregative an information of 050-v71-CASECURID02 Dumps questions from existent tests with a selected stop point to supply you an break to induce prepared and pass 050-v71-CASECURID02 exam at the first attempt.
killexams.com Discount Coupons and Promo Codes are as below;
WC2017 : 60% Discount Coupon for each and every exams on web site
PROF17 : 10% Discount Coupon for Orders additional than $69
DEAL17 : 15% Discount Coupon for Orders over $99
SEPSPECIAL : 10% Special Discount Coupon for each and every Orders
We hold their experts working continuously for the gathering of actual exam questions of 050-v71-CASECURID02. each and every the pass4sure questions and answers of 050-v71-CASECURID02 collected by their team are reviewed and up to date by way of their 050-v71-CASECURID02 licensed crew. They continue to be related to the candidates seemed inside the 050-v71-CASECURID02 exam to accumulate their reviews approximately the 050-v71-CASECURID02 test, they acquire 050-v71-CASECURID02 exam recommendations and hints, their revel in about the techniques used inside the actual 050-v71-CASECURID02 exam, the errors they completed in the actual test after which help their material thus. Once you depart through their pass4sure questions and answers, you will sense assured approximately each and every of the topics of test and experience that your expertise has been significantly improved. These pass4sure questions and answers are not just exercise questions, these are existent exam questions and answers which are enough to pass the 050-v71-CASECURID02 exam in the first attempt.
RSA certifications are pretty required throughout IT businesses. HR managers settle on applicants who not simplest hold an expertise of the subject, but having finished certification tests within the subject. each and every the RSA certifications furnished on Pass4sure are ordinary global.
Are you looking for pass4sure actual exams questions and answers for the RSA SecurID Certified(R) Administrator 7.1 exam? They are prerogative here to tender you one most updated and remarkable assets that is killexams.com. They hold compiled a database of questions from actual exams for you to Place together and pass 050-v71-CASECURID02 exam on the first attempt. each and every education materials on the killexams.com website are up to date and confirmed by means of certified professionals.
Why killexams.com is the Ultimate election for certification instruction?
1. A quality product that attend You Prepare for Your Exam:
killexams.com is the closing training source for passing the RSA 050-v71-CASECURID02 exam. They hold carefully complied and assembled actual exam questions and answers, which are up to date with the identical frequency as actual exam is updated, and reviewed by means of industry specialists. Their RSA certified professionals from a pair of groups are talented and qualified / licensed people who've reviewed each question and retort and explanation section in order that will attend you apprehend the strategy and pass the RSA exam. The pleasant manner to prepare 050-v71-CASECURID02 exam isn't reading a textual content e book, however taking exercise existent questions and information the usurp solutions. drill questions assist prepare you for now not best the ideas, however additionally the approach wherein questions and retort options are presented in the course of the existent exam.
2. User Friendly Mobile Device Access:
killexams provide extremely user friendly access to killexams.com products. The consciousness of the website is to tender accurate, up to date, and to the point cloth to attend you hold a peep at and pass the 050-v71-CASECURID02 exam. You can lickety-split accumulate the actual questions and solution database. The website is cellular pleasant to permit peep at everywhere, as long as you've got net connection. You can just load the PDF in mobile and study everywhere.
3. Access the Most Recent RSA SecurID Certified(R) Administrator 7.1 existent Questions & Answers:
Our Exam databases are frequently up to date for the duration of the yr to comprise the modern actual questions and answers from the RSA 050-v71-CASECURID02 exam. Having Accurate, proper and cutting-edge existent exam questions, you'll pass your exam on the first strive!
4. Their Materials is Verified through killexams.com Industry Experts:
We are doing struggle to supplying you with redress RSA SecurID Certified(R) Administrator 7.1 exam questions & answers, in conjunction with reasons. They do the cost of your time and money, that is why each question and retort on killexams.com has been validated by RSA certified experts. They are particularly certified and certified people, who've many years of expert delight in related to the RSA exams.
5. They Provide each and every killexams.com Exam Questions and comprise detailed Answers with Explanations:
killexams.com Huge Discount Coupons and Promo Codes are as underneath;
WC2017 : 60% Discount Coupon for each and every tests on internet site
PROF17 : 10% Discount Coupon for Orders greater than $69
DEAL17 : 15% Discount Coupon for Orders extra than $ninety nine
DECSPECIAL : 10% Special Discount Coupon for each and every Orders
Unlike many different exam prep websites, killexams.com gives not most efficient updated actual RSA 050-v71-CASECURID02 exam questions, but besides specific answers, references and diagrams. This is essential to attend the candidate now not best recognize an usurp answer, but besides details about the options that hold been wrong.
050-v71-CASECURID02 Practice Test | 050-v71-CASECURID02 examcollection | 050-v71-CASECURID02 VCE | 050-v71-CASECURID02 study guide | 050-v71-CASECURID02 practice exam | 050-v71-CASECURID02 cram
Killexams HH0-380 dump | Killexams HP2-E24 test prep | Killexams 70-333 dumps questions | Killexams C2090-610 study guide | Killexams HP0-J10 drill questions | Killexams 700-410 existent questions | Killexams GE0-806 study guide | Killexams 156-915-1 mock exam | Killexams HP2-H29 free pdf | Killexams AZ-102 drill test | Killexams 312-50 dumps | Killexams 090-601 cram | Killexams 920-451 questions and answers | Killexams 310-012 existent questions | Killexams 3M0-600 braindumps | Killexams OA0-002 pdf download | Killexams HP3-C27 free pdf | Killexams 1Z0-225 drill test | Killexams MSC-121 sample test | Killexams AZ-300 brain dumps |
killexams.com huge List of Exam Study Guides
Killexams E20-555 examcollection | Killexams E20-562 study guide | Killexams C4090-461 dumps questions | Killexams C4040-108 dumps | Killexams DP-023W test prep | Killexams 000-899 cram | Killexams 201-450 existent questions | Killexams HP2-K30 free pdf download | Killexams HP0-091 test questions | Killexams 1Z0-511 drill test | Killexams C2040-958 drill questions | Killexams 000-371 dump | Killexams RH033 free pdf | Killexams ST0-058 free pdf | Killexams 250-371 test prep | Killexams C2180-401 existent questions | Killexams 3X0-103 drill test | Killexams 700-105 study guide | Killexams 9L0-624 braindumps | Killexams HP0-J59 drill questions |
RSA SecurID Certified(R) Administrator 7.1
Pass 4 certain 050-v71-CASECURID02 dumps | Killexams.com 050-v71-CASECURID02 existent questions | https://www.textbookw.com/
On the surface, the email looked completely legitimate. It appeared to arrive from an employee within the U.S.-based Fortune 500 manufacturing solid and talked about a corporate initiative the CEO was pushing. Four high-level executives received the email; one clicked on a link embedded in the message. That was each and every the attackers needed. The unwitting click unleashed malware that infected the executive’s computer and gave them a foothold into the company’s network, where they sniffed for passwords and gained access to multiple systems.
Until the FBI notified it, the manufacturing solid -- which was negotiating to acquire a Chinese company -- had no strategy the intruders were stealing data on a weekly basis. The stolen data was highly sensitive – censorious emails with details of the negotiations. In the end, the company scuttled its acquisition plans, says frank Nagle, senior consultant at MANDIANT, an Alexandria, Va.-based information security solid that investigated the case.
The attack, which happened two years ago, is a stark example of the benevolent of companionable engineering techniques being used against companies today. Gone are days of the mass emails with misspelled messages. Criminals today are doing more reconnaissance than ever before – aided by companionable networks and each and every the personal information loaded onto them -- to craft targeted emails or instant messages that trick people into opening malware-rigged attachments or divulging passwords and sensitive information. companionable engineering is a common technique used in advanced persistent threat activity – like the intrusion into the manufacturing solid -- raising the stakes as coordinated, state-sponsored groups infiltrate U.S. companies, hunting for corporate secrets.
Defending against today’s companionable engineering attacks is difficult but not impossible, security experts say. It requires focusing on the human factor of the equation with better security awareness training that gets employees to mediate twice about clicking on unavoidable emails. Let’s peep at some of the companionable engineering ploys used against enterprises today, what’s helping to fuel them, and strategies that can attend a company fend off these attacks and protect its valuable data.
SOCIAL NETWORKS: companionable ENGINEERING GOLDMINE
Social engineering is nothing fresh in the digital age, of course, but security experts dispute criminals are using it more as companies hold gotten better at securing their networks.
“Before it would hold been easier to rob advantage of unpatched systems,” says Mike Murr, a certified SANS instructor and author of the upcoming Human Compromise: The craft of companionable Engineering. “Now it’s often easier for the attacker to accumulate code running on a remote system by persuading a user using companionable engineering to click on a link, execute code, or enter their password.”
“We’re getting better at locking down the digital assets. We’re not perfect, but it’s to the point now where the attacker is getting more ROI on the user vector than some of the digital vectors,” he adds.
A common mistake enterprise security managers do is focusing on infrastructure and system defenses instead of people, says Shawn Moyer, managing principal research consultant with Accuvant LABS R&D team. “A lot of defenders silent mediate in terms of an attacker on the Internet externally trying to find a way in. …The reality is, if I’m the outside threat, I find an insider and that insider becomes your threat,” he says.
Targeting the insider has never been easier, thanks to the mount of companionable media like Facebook, LinkedIn, and Twitter, security experts say. Outsiders researching a company can search the sites to find out who works there, who the top executives are, what they’re talking about, and contact information: each and every data that can be used to personalize an attack, making it more effective.
“Information is much easier to mine,” says Moyer, who conducts penetration tests for clients. “I can find out who the IT security manager is much easier in 2011 than in 1991.”
Chris Nickerson, founder and principal consultant at Denver-based Lares Consulting, which provides pen testing and other security services, says his tests for customers will expend their Twitter or Facebook accounts to collect information and successfully companionable engineer employees. “These are corporate-sanctioned accounts. They’re huge attack vectors,” he says.
People generally hold become alert of broad-based companionable engineering attacks like spam or 419 scams, so attackers hold turned to companionable networks to create more targeted emails, says MANDIANT’S Nagle, who is besides a PhD candidate at Harvard. They’ll besides send messages on the companionable networks themselves to exploit the trusted environment they provide. “Attackers started tailoring these messages so they’re no longer poorly spelled and generic,” he says.
In the case of APT, attackers are particularly adept at such reconnaissance to craft targeted attacks, Nagle says: “They finish their homework better.”
For example, someone wanting to rupture into a defense contractor could first identify five to 20 employees to target, then research those people, says Lance Spitzner, director of SANS Securing the Human Program. From publicly available information on the Internet, they could find out that those employees recently attended a conference and create a spear phishing email that pretends to be follow-up from the conference.
“By customizing the email, two things happen: They’re far more likely to click on it and by having a diminutive number [of targets] it’s more likely to slip through. It goes under the radar of the antivirus companies because they don’t hold signatures [for it],” he says.
ATTACKS ON CORPORATE DATA
Social engineering played a role in this year’s attack on RSA, the security division of EMC. The APT began with two different spear phishing emails with the subject line “2011 Recruitment Plan” sent to two diminutive groups of employees, according to Uri Rivner, head of fresh technologies, identity protection and verification at RSA. “The first thing actors like those behind the APT finish is seek publicly available information about specific employees – companionable media sites are always a favorite,” Rivner wrote in a blog post. One employee clicked on the spreadsheet attached to the email, which contained a zero-day exploit; attackers then were able to infiltrate RSA and hook information related to its SecurID products.
Social engineering besides factored into two other high-profile breaches over the past 18 months: The attack by the “Anonymous” group on security solid HBGary Federal earlier this year, and the attack on Google, which the company disclosed in January 2010. In February, HBGary founder Greg Hoglund told investigative reporter Brian Krebs that the attackers tricked a network administrator into giving up access to Rootkit.org, a research website maintained by Hogland; from there, they gained access to systems containing sensitive emails and other data.
The attack on Google’s intellectual property, which Place APT into the celebrated lexicon of the security industry, started with reconnaissance that targeted specific Google employees. As described by Heather Adkins, information security manager at Google, during a presentation at the Forum of Incident Response and Security Teams (FIRST) Conference 2010 last year, the attackers gathered information posted by the employees on companionable networks like Facebook and LinkedIn, set up a Web server hosting a phony photo website, then sent emails containing links that appeared to arrive from people the employees trusted. Clicking on the links sent them to the website, which downloaded malware and ultimately gave the criminals an opening to infiltrate Google servers.
“Spear phishing in and of itself is not a particularly sophisticated contour of attack, but its exploitation of a person’s trusted relationships can do it quite effective,” Adkins says in an email this year. “Relatively simple spear phishing can besides be a gatekeeper to more tangled operations like APT and others.”
APT attackers usually rely on targeted email and instant messages to trick employees into downloading a malicious link or attachment, Nagle says. Another common tactic in APT is to hack into one person’s account and expend that person’s contacts to send an email or instant message and try to rupture into another company. That tactic “drastically increases the chances that the second victim will click on the infected PDF file or whatever it is they send,” he says.
In one MANDIANT investigation, APT attackers who had infiltrated a company looked through its emails and intercepted an exchange with someone who worked at another company in the identical industry. The attackers then added a malicious payload to a document that was included in that email exchange.
“The second company clicked on it because it was coming from someone they already talked to, it was related to a subject they already talked about, and it was a version of a document they already opened,” Nagle says. “That’s not uncommon… If the APT is interested in that industry, once they’ve compromised one company in that industry, they’ll expend that as leverage to depart after other companies in that industry.”
He’s besides seen cases in which attackers will intercept IMs to rupture into other companies or other parts of an enterprise. “They’ll expend contacts on MSN Messenger, then jump into a conversation that people are having” and add a malicious link, he says.
Security experts admit that targeted companionable engineering attacks can be tricky for companies to combat. Keepings systems patched and updated is critical, of course, but technology only goes so far, making efficient employee security awareness training essential, they say.
“Employees in these companionable engineering attacks are really on the front lines,” Nagle says. “When email is really targeted, it’s tough to arrive up with technical means so you exigency to rely on employees to be educated and on alert for those types of things.”
It’s notable to train users to trust their instincts on any email that seems at each and every suspicious, experts say. “Organizations would finish well to caution employees to be wary of unexpected messages or unsolicited links, even if they show to arrive from friends or co-workers,” Google’s Adkins says. “A quick phone confirmation in suspicious cases is a much better option than becoming a victim of spear phishing.”
Lares Consulting’s Nickerson says there are usually always signs that expose an email as a phishing attack. For example, phishers don’t understand tonality; it’s usually smooth to interpret if someone you know wrote an email from the tone. Users can besides mouse over a link to identify it; if it looks suspicious, don’t click on it, he says.
“Pay attention to the details, like the email address it’s coming from, the links you’re being sent to, and the tone of the email,” Nickerson says.
Part of the problem is that companies hold fallen short when it comes to security awareness training, which often ends up being a cursory exercise for compliance purposes, says Spitzner. “We’ve done tremendous labor to secure computers but nothing to secure the human operating system. That’s why these companionable engineering techniques are so prevalent,” he says. “To change human behavior, you exigency to educate and train employees, not just once a year but continuously. like you continually patch computers and applications, you’re continually training and patching human operating systems.”
Employees who are trained to be security alert are more likely to realize if they’re victimized by a spear phishing email and quickly summon the security team, Spitzner says. That speeds response, which is particularly censorious with APT, he adds.
Chris Hadnagy, aka loganWHC and operations manager for revolting Security, says companies exigency to create a program that makes security awareness personal for employees with hands on training that demonstrates how smooth it is to profile them online or how smooth it is to crack their password.
“I’ve heard employees say, ‘What finish I care, it’s not my data.’ Now, security awareness has become personal for them. It’s not just about protecting their employer’s data but their life,” says Hadnagy, who besides is lead developer of Social-Engineer.org and author of companionable Engineering: The craft of Human Hacking.
Dave Marcus, director of security research and communications at McAfee Labs, agrees: “If you demonstrate them how smooth it is to mine their own data, they’ll accumulate it.”
Pen testing is another step companies can rob to attend protect their employees and their data against companionable engineering attacks, experts say.
“Red team penetration testing is important. Not just getting a vulnerability scan to pass an audit, but engaging in open scope attack simulation,” Moyer says, acknowledging his jaundice on this front. Generic network pen tests hold specific methodologies and are designed as one-size-fits all, he says. “Real hacking is a creative exercise. Whenever you hold a rigid set of rules of engagement, it doesn’t leave the door open for creativity. Not that a red team will find every unique path into an environment, but it will find paths that your standard methodology did not.”
PEN TESTING TECHNIQUES
One companionable engineering tactic that pen testers are using with a lot of success to rupture into companies is what Nickerson calls “polo shirt attacks.” Testers will expend intelligence gathered about the client and impersonate a representative from a cleaning crew, auditing solid or other service organization by wearing a polo shirt with a logo. The shirts are smooth to hold made, Hadnagy says.
“I can demonstrate up at your building, dispute I’m from such-and-such fritter management. I heard one of your Dumpsters is damaged and I exigency to depart on site,” he says. “Who is going to stop the dude with the clipboard and shirt with the logo? You find the Dumpster, tug out papers and discs and load the car.”
Nickerson says he’s seen a number of companies experience asset losses, theft and even corporate espionage when criminals hold used this benevolent of impersonation scheme. “Impersonation happens at each and every levels, and in my opinion, is answerable for a remarkable deal of loss in many businesses, he says. Clients are genesis to strengthen their defenses by checking for identification of service providers, having processes for calling the routine service representative to view who was sent for the job, and not accepting unscheduled visits, he says.
When he’s on a red team case, Moyer starts out with the domain name and domain name registration of the company to collect information about a company. Other tools comprise the American Registry for Internet Numbers (ARIN), the company’s website (especially the “About Us” page), and Web forums. The most valuable piece of information he digs up is the company’s email naming convention. From there, he constructs a scenario specific to the company.
For example, in a case involving a retail company, he create employees chatting on a Web forum. One worker mentioned that the company didn’t tender an employee discount. Moyer created a fake employee discount program by registering a sever domain name. Then he sent emails to about 20 employees telling them they were enrolled in private early testing of the discount program and asked them to forward the message to five co-workers they’d like to participate. “Once I hold that first click, I can pivot into the environment from that victim's machine,” he says.
“I got an understanding of the employees and tailored a scenario specific to them,” Moyer adds. “Most companies aren’t thinking of an attacker specifically targeting them.”
Hadnagy describes another case in which his team gathered data from companionable media sites and Internet forums to create a successful spear phishing email. The client company had just upgraded its firewall and IDS systems; three IT workers discussed a problem they were having with the firewall configuration on sites like LinkedIn and Twitter. “Now, I’m the secretary to the CIO, here’s a PDF that’s a solution to that. Personal phishing attacks are very successful with the expend of companionable media,” Hadnagy says. “It makes your whole anecdote line credible because you know something personal about them.”
After cases involving APT and a companionable engineering attack, MANDIANT often sees companies step up their awareness efforts, Nagle says. They won’t divulge the details of the attack to employees, but they’ll caution them to be on alert for suspicious emails. In the case of the manufacturing firm, remediation included boosting the company’s competence to monitor its internal network, something Nagle says many businesses neglect.
He’s seen heightened awareness really pay off, with employees spotting suspicious emails and forwarding them to IT, which sends them to MANDIANT for analysis. “We’ll substantiate it’s malicious. That to me is remarkable because it’s education working,” he says.
Marcia Savage is editor of Information Security. send comments on this article to email@example.com.
Data and Database Management Software
Press Release Summary:
RSAÂ® Authentication Manager v7.1 includes commerce continuity offering to meet influx of great number of remote access users, such as during commerce disruption or emergency when many employees labor from remote locations. Authentication methods comprise on-demand authenticator, dynamic seed provisioning, and built-in management back for Clickatell. Managed from browser-based GUI, software offers autochthonous LDAP back and Microsoft Management Console support.
Original Press Release:
RSA Delivers commerce Continuity and Expanded Deployment Options in Next-Generation Authentication Platform
RSA® Authentication Manager 7.1 focuses on intelligence and streamlined performance to enhance RSA's Information Risk Management portfolio
BEDFORD, Mass., April 8, 2008 / / - RSA, The Security Division of EMC (NYSE:EMC), today announced the next generation of RSA® Authentication Manager, the software management platform and the power behind the flagship RSA SecurID® solution.
Building on its industry-leading reputation and including extensive additions to its features and functionality, the fresh RSA Authentication Manager version 7.1 continues to meet the evolving Identity Assurance needs of customers by providing commerce continuity options - in the event that a great number of users unexpectedly hold to labor offsite - along with extended authentication choices and enhanced operational efficiencies.
RSA Authentication Manager, which powers the authentication of more than 25 million RSA SecurID users worldwide, is the de facto standard in tough authentication, helping to minimize risk associated with identity impersonation and inappropriate account expend while allowing trusted identities to freely and securely interact with corporate systems.
"Rapidly-evolving commerce models claim elastic and robust solutions that can deal seamlessly with tangled risk scenarios while concurrently reducing deployment costs and enhancing productivity," said Chris Christiansen, VP of Security Products & Services at IDC. "RSA is advancing its flagship authentication solution to meet these challenges. It is adding streamlined and centralized credential administration and more dynamic election to allow businesses to meet a orbit of needs and contingencies."
"This is a significant step forward and a key piece in the end-to-end Identity Assurance solutions that customers can hope from RSA. Security threats are evolving more rapidly than ever before - and so therefore is the exigency for a more elastic and intuitive authentication system," said Christopher Young, Vice President and generic Manager, Identity and Access Assurance Group, RSA. "The fresh enhancements in RSA Authentication Manager 7.1 - along with the ease of RSA's Information Risk Management portfolio - provide the core components for customers to contour a solid and scalable security infrastructure, now and in the future."
The fresh functionality in RSA Authentication Manager 7.1 is engineered to provide customers with powerful and seamless user authentication experiences, which are not only secure, but which besides allow back for fresh commerce models. RSA has designed RSA Authentication Manager 7.1 to expand and enhance the provisioning of secure access for employees, customers, and partners - making it easier than ever for partners and customers to strike the impeccable equipoise between risk, cost and convenience. fresh offerings include:
The fresh commerce continuity offering in RSA Authentication Manager 7.1 is built to allow RSA customers to temporarily expand a server license for a period of time, to meet an influx of a great number of remote access users. This expansion could occur during a commerce disruption or emergency, when many employees may hold to labor from remote locations for an indeterminate length of time. A Self Service module facilitates around-the-clock 'on the fly' deployments, so that users can register, request and receive credentials without overwhelming the IT attend desk. The commerce continuity feature complements what many VPN vendors offer, a cost-effective "bursty access" method which gives the customer the competence to accommodate great numbers of additional users quickly and without requiring a permanent license.
Extended Authentication Methods
The solution besides introduces back for fresh authentication methods to allow elastic deployment and lower management costs. fresh methods are engineered to include:
- On-demand Authenticator - delivers token codes via short servicemessage (SMS) or email and requires no physical token to be assigned,or software to be installed.- Dynamic Seed Provisioning - using RSA's proprietary Cryptographic tokenkey initiation protocol (CT-KIP) to enable the more rapid deploymentand set-up of software tokens, this allows the seeding andcommissioning of a software token without sending the seed file overthe network.- Built-in Management back for Global Messaging Vendor Clickatell - abuilt-in interface to expend with Clickatell, a worldwide mobile messagingcompany, to attend administrators securely assure global SMS delivery oflarge numbers of on-demand authentications.
Enhanced Operational Efficiencies
RSA Authentication Manager 7.1 besides is designed to comprise a set of capabilities, features and applications to do the solution easier to administrate, to lower the total cost of ownership, and to facilitate the leverage of existing IT resources. fresh operational features are engineered to include:
- Broad Integration into the IT Environment
- autochthonous LDAP back - RSA Authentication Manager 7.1 supports truenative LDAP for connection to Microsoft® lively Directory®directory service and Sun(TM) ONE databases.- Microsoft Management Console back - A Microsoft ManagementConsole snap-in is supported so that IT administrators can managebasic token lifecycle issues utilizing this application.
- Web-Based Management - A browser-based graphical user interface, alongwith re-optimized menus, gives administrators the capability tocentrally manage the complete scope of functions, each and every from a unique login.- Delegated Administration - which enables a 'super-administrator' to setup lower-level administrators to manage policies, users, groups, tokensand agents.- RSA® Credential Manager - This offers workflow provisioning and anend-user self-service console which provides a mechanism for fresh andexisting users to manage each and every aspects of their token lifecycle. Forexample, a user can report a lost token, gain emergency access, reset aPIN, request an On-demand Authenticator, update a profile and more.
"RSA has long been committed to delivering the most comprehensive flexibility and election in two-factor authentication and authorization for their mutual customers, and this solution -- along with its relentless focus on ease-of-management -- takes their break to the next level," said Preston Hogue at NCA. "Regardless of the size of the organization, it is censorious that businesses are able to set policy on who has access to what information, what types of credentials they hold and how to manage the lifecycle of those credentials. This provides a foundation for determining the source of the individual being authorized, the classification of the assets they are accessing and lastly the flush of credentials required, based on the value of that asset. With RSA solutions, they are finally approaching an authentication and authorization platform that takes into account the assets being protected. The mechanisms and election of authentication and authorization from RSA provide the market with efficient and cost-effective ways to assure identities - and to hold the necessary aplomb in who is accessing corporate resources."
RSA Authentication Manager 7.1 will be available worldwide in Q2 2008; any current RSA SecurCare(R) customers licensing a prior version of RSA Authentication Manager are eligible to upgrade to an RSA Authentication Manager 7.1 license.
More information on RSA's announcements and related initiatives may be create online at www.rsa.com/rsaconference2008/. In addition, RSA's information risk management solutions, services and partners will be featured in Booths #1717 and 1817 at RSA Conference 2008, April 7-11, 2008, at the Moscone focus in San Francisco.
RSA, The Security Division of EMC, is the premier provider of security solutions for commerce acceleration, helping the world's leading organizations succeed by solving their most tangled and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle - no matter where it moves, who accesses it or how it is used.
RSA offers industry-leading solutions in identity assurance & access control, encryption & key management, compliance & security information management and fraud protection. These solutions bring trust to millions of user identities, the transactions that they perform, and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.
RSA, SecurCare and SecurID are either registered trademarks or trademarks of RSA Security Inc. in the United States and/or other countries. EMC is a registered trademark of EMC Corporation. Microsoft and lively Directory are either registered trademarks or trademarks of Microsoft Corp. in the United States and/or other countries. Sun, Sun Microsystems and the Sun logo are trademarks or registered trademarks of Sun Microsystems, Inc. in the United States and other countries. each and every other products and/or services mentioned are trademarks of their respective companies.
Source: EMC Corporation
CONTACT: Matt Buckley of EMC Corporation, +1-781-515-6212, firstname.lastname@example.org
Web site: http://www.rsa.com/http://www.emc.com/
Thomas Industry Update
2010 Redmond Magazine Readers election Awards
After the Triple Crown in 2008 and the magnificient Slam in 2009, Redmond introduces another flush of prestige for exceptional Readers election winners: the Five-Star Award.
The Triple Crown wasn't enough. Neither was the magnificient Slam. Some products so dominate the Readers election Awards year in and year out that they deserve their own elite status, their own note of excellence. They deserve five stars.
This year, Redmond is expanding its Readers election Awards designations once again to veneration products that hold achieved a half-decade of dominance in their respective categories. The Five-Star Award is reserved for offerings that repeatedly win the respect and admiration of readers. In order to win a Five-Star Award, a product must win a category for five consecutive years.
In years past, they awarded Triple Crowns and magnificient Slams only to outright category winners. This year, though, we've expanded those awards, along with the Five-Star Award, to comprise ISV Winners. An ISV Winner is the highest-placing non-Microsoft product in a category won by a Microsoft offering. (An ISV product that wins outright is simply a winner and is not labeled as an ISV Winner.)
Microsoft so dominates the Readers election Awards that we're seeking to veneration those products and vendors that don't hold the built-in advantage of coming out of the sizable campus in the Pacific Northwest. So, there are Five-Star Award winners that lost to Microsoft in their respective categories but silent took home the sizable prize. And in one category, there are even two Five-Star winners.
It's not smooth to win a category five years in a row, even as an ISV Winner. But these products, like legendary generals and the world's greatest hotels, are in a stratosphere each and every their own.
NETWORK AND SYSTEMS MANAGEMENTBest Network Management Product 39 products in categoryCisco Systems LAN Management Solution, 13 percent, WinnerSolarWinds Network Management Software, 12.3 percent, Preferred ProductMicrosoft System focus Operations Manager (SCOM), 8.4 percent, Preferred Product
Cisco Systems LAN Management leapfrogged SolarWinds for the win, as SolarWinds earned a second consecutive Preferred Product honor. But perhaps the biggest astound was Microsoft SCOM, last year's winner, dropping each and every the way to third Place and Preferred Product status.
Best Application Management Product43 products in categoryMicrosoft System focus Configuration Manager (SCCM), 16 percent, WinnerCitrix XenApp, 11 percent, ISV Winner and Preferred Product Microsoft System focus Operations Manager, 9.3 percent, Preferred Product
It's a second win in a row for Microsoft SCOM, which entered the survey for the first time last year and promptly won the category. Citrix XenApp knocked out Novell ZenWorks as ISV Winner, while another Microsoft product was the final honoree.
Best Performance Management Product35 products in categorySolarWinds Orion Network Performance Manager, 11.7 percent, WinnerMicrosoft System focus Operations Manager, 10 percent, Preferred ProductMicrosoft System focus Essentials, 8.6 percent, Preferred Product
Finally, SolarWinds topples SCOM from the top rank in the Performance Management category. SCOM won a magnificient Slam -- four consecutive category wins -- last year, but failed to accumulate five stars as Orion Network Performance Manager just beat the Microsoft product to the tape this year. System focus Essentials checks in as a Preferred Product.
Best generic Network Monitoring Tool60 products in categoryCisco System Syslog Analyzer, 12.8 percent, Winner, Five-Star AwardMicrosoft System focus Configuration Manager, 10.7 percent, Preferred ProductHP OpenView Operations for Windows, 8.9 percent, Preferred Product
Once again, Cisco Syslog Analyzer takes this category over a Microsoft product, but this time's it's SCCM, rather than SCOM, jumping into second place. Syslog Analyzer has been either winner or ISV Winner of this category three years running, so it earns a Five-Star Award honor. HP OpenView Operations for Windows offering finished tough again this year in the Preferred Product category.
Best Interoperability Product9 products in categoryMicrosoft System focus Virtual Machine Manager, 50.9 percent, WinnerMcAfee ePolicy Orchestrator, 18.3 percent, Preferred Product and ISV WinnerMKS Toolkit, 7.7 percent, Preferred ProductQuest Authentication Services, 7.7 percent, Preferred ProductVeeam nworks Management Pack for VMware for SCOM, 7.7 percent, Preferred Product
SCVMM devoured this category in 2010 just as it did in 2009. It'll be up for a Triple Crown in 2011. McAfee ePolicy Orchestrator finished tough and repeated as ISV Winner, but the existent anecdote here is a tie for third among three products in a nine-product category. MKS Toolkit, which won a Triple Crown in 2008, slipped into a inanimate heat this year with Quest Authentication Services and a product from Veeam Software.
Best Bandwidth/Traffic Monitoring Product10 products in categoryBarracuda Web Filter, 24.6 percent, WinnerCitrix offshoot Repeater, 17.3 percent, Preferred ProductLightspeed Systems Total Traffic Control, 14.7 percent, Preferred ProductScriptLogic Perspective, 12.6 percent, Preferred Product
One-time Triple Crown candidate Lightspeed Systems Total Traffic Control takes Preferred Product status once again, but it's Barracuda Web Filter that wins for the second year in a row. Citrix Systems Inc. and ScriptLogic Corp. besides had tough finishes in this category.
Best Web Usage Monitor18 products in categoryWebsense Enterprise, 20.3 percent, Winner, Five-Star AwardBarracuda Web Application Firewall, 10 percent, Preferred ProductBarracuda Web Filter, 9 percent, Preferred ProductGFI Web Monitor, 8.5 percent, Preferred Product
Websense Enterprise won this category for the fifth consecutive time and earned a Five-Star Award. Barracuda Networks had another suitable showing here, and GFI Software cracked the Preferred Product list with Web Monitor.
Best Asset Management/Resource Inventory Product26 products in categoryMicrosoft System focus Configuration Manager, 20.8 percent, WinnerMicrosoft System focus Essentials, 16.8 percent, Preferred ProductNovell Asset Manager, 6.6 percent, Preferred Product and ISV WinnerScriptLogic Desktop Authority, 5.5 percent, Preferred ProductSymantec Altiris Service and Asset Management Suite, 5.5 percent, Preferred Product
SCCM wins this category for the second year in a row; System focus Essentials takes second place. Novell Asset Manager just beat out products from ScriptLogic and Symantec Corp. to reiterate as ISV Winner in this category. It'll be up for a Triple Crown in 2011.
Best License Management Product11 products in categoryMicrosoft System focus Configuration Manager, 30 percent, Winner, Five-Star AwardMicrosoft Systems Management Server, 23.8 percent, Preferred ProductScriptLogic Desktop Authority, 12.3 percent, Preferred Product, ISV WinnerSymantec Total Management Suite, 10.9 percent, Preferred Product
Results in this category remained mostly unchanged from 2009, except that Systems Management Server siphoned off some votes from SCCM, which nevertheless won the category easily and scored a Five-Star Award. ScriptLogic and Symantec easily finished at the top ISV entries; as ISV Winner two years running, ScriptLogic will be up for a Triple Crown in 2011.
Best Compliance Tool44 products in categoryMicrosoft System focus Configuration Manager, 24.6 percent, WinnerScriptLogic File System Auditor, 8.6 percent, Preferred Product, ISV WinnerSymantec Control Compliance Suite, 4.6 percent, Preferred ProductMcAfee Vulnerability Manager, 4.3 percent, Preferred Product
That's two wins on the trot for SCCM, which takes the highly competitive Compliance category by a comfortable margin. ScriptLogic File System Auditor checks in as ISV Winner, bumping out McAfee Vulnerability Manager. Symantec rounded out the Preferred Product honors.
Best Non-Microsoft Browser5 products in categoryMozilla Firefox, 60.1 percent, Winner, Five-Star AwardGoogle Chrome, 27.8 percent, Preferred Product
Look out! Firefox, Winner of a Five-Star Award, might silent be the toast of the non-Internet Explorer crowd, but Google Chrome -- which garnered just 14.4 percent of votes last year -- made a major slither in 2010. Safari finished a very faraway third, and Netscape Navigator actually beat out Opera to avoid last place.
Best SQL Tool37 products in categoryScriptLogic Security Explorer for SQL Server, 18.3 percent, WinnerSql Power Tools Zero impact Enterprise Monitor, 10.7 percent, Preferred ProductQuest Spotlight on SQL Server Enterprise, 8 percent Preferred ProductThe second-place finisher in 2008, ScriptLogic Security Explorer for SQL Server is now a two-time winner and will be up for a Triple Crown next year. Quest Software Inc. and Sql Power Tools Inc. swapped spots for 2010, but silent beat out the competition to achieve Preferred Product status.
INSTALLATION AND DEPLOYMENTBest Software Distribution Product19 products in categoryMicrosoft System focus Configuration Manager, 26.8 percent, Winner, Five-Star AwardMicrosoft Systems Management Server, 17.5 percent, Preferred ProductMicrosoft System focus Essentials, 12.9 percent, Preferred ProductSymantec Deployment Solution, 10.1 percent, Preferred Product, ISV WinnerScriptLogic Desktop Authority, 8 percent, Preferred Product
Clearly, Microsoft has a wield on the Software Distribution category, at least among their readers -- which should arrive as petite astound in a publication that is, after all, called Redmond magazine. Symantec and ScriptLogic earned Preferred Product honors, but nothing could finger SCCM, which won this category easily and picked up a Five-Star Award. As an ISV Winner two times running, Symantec Deployment Solution will be up for a Triple Crown next year.