Security Access Control - Password Security

BeyondTrust announces Privilege Manager 4.7
BeyondTrust, a provider of Privileged Access Lifecycle Management solutions, has announced Privilege Manager 4.7, the first solution to elevate the privileges of Internet Explorer based on approved URLs stored in Group Policy.

NetworkWorld (Mar 2010)

Hopes High as Number of IPOs Increases
Principals of Agoura Hills-based BeyondTrust, an information security firm, have their eyes on the IPO markets. The firm, which is not yet in the pipeline, hopes to go public in early 2011.

San Fernando Valley Net (Mar 2010)

RSA Conference debuts new security gear
The latest BeyondTrust Privilege Manager can securely elevate the privileges of Internet Explorer to install Web-based applications and software updates from approved URLs. New features also enhance control over policies.

NetworkWorld (Mar 2010)

25 Hot Products To Watch At RSA
Privilege Manager enables organizations to remove administrative rights from end-users, while allowing them to run approved Windows applications, processes, and ActiveX controls.

Channel Web (Mar 2010)

Balancing hospital security ‘tricky’
For the most part, hospitals have sufficiently guarded their systems against threats from malevolent attackers on the outside. But while sophisticated firewall technology and multiple layers of security clearance are effectively shielding sensitive data from intruders, many hospitals are leaving other avenues wide open to a potential breach, authorities say.

Healthcare ITNews (Feb 2010)

Going Virtual with Windows 7
By default, XP Mode gives administrative rights to users. That’s not a good idea, says Peter Beauregard, a product unit manager at BeyondTrust, a provider of privileged access lifecycle management solutions in Agoura Hills, Calif.

FedTech (Jan 2010)

Magnet Investing with Jordan Kimmel

The Voice America Business Network (Jan 2010)

From Top Gun to Tech Guru
It had been pouring rain when Eric Voskuil rode his motorcycle to the Navy recruiting office in Albany, N.Y., intending to enlist. He had just quit an internship at International Business Machines Corp. where he was learning programming.

The Wall Street Journal (Jan 2010)

Corporate Fix-It man
Symark International grew from approximately $14 million in annual revenue in 2005 to $20.3 million in 2006 and $27.5 million in 2007. Then the Agoura Hills-based technology firm launched two new products and business took a turn for the worse.

San Fernando Valley Business Journal (Nov 2009)

Windows 7 from a vendor perspective - a chat with BeyondTrust
When Symark acquired BeyondTrust, in our opinion, the business deal was one that honestly merged two solid programs into one. BeyondTrust has a good deal of experience with Windows-based security, so we asked them about Microsoft’s newest family member.

The Tech Herald (Nov 2009)

Windows 7 is everything Vista should have been, with one noteworthy exception
On the security front, Windows 7 changes are significant. Security is an ever changing landscape, as threats and computer usage evolve rapidly. Windows 7 does a good job addressing the evolving security landscape while building on the work of previous versions of the operating system.

SC Magazine (Nov 2009)

Device Access Control Coming to Managed Services
John Mutch, CEO of Beyond Trust, has a vision that his company will provide the access control solution that will not only ensure that authorized users are able to access core IT assets—routers, switches, servers—but that their actions will be recorded and audited for compliance purposes.

Secure channel (Oct 2009)

Galleon: Another Black Mark for the Tech Industry
When the tech industry and Wall Street intersect, often, bad things happen. First came the shenanigans around the dot-com boom and bust, then the skullduggery at CA and Peregrine, then the stock option backdating scandal, and now the Galleon insider trading blowup. For the tech industry, it has been a decade of infamy.

BusinessWeek (Oct 2009)

Windows 7 security settings may leave PCs vulnerable to cyber attacks
Security experts say the streamlined UAC in Windows 7 is being shipped in a configuration that may do more harm than good, in terms of leaving your Windows 7 PC vulnerable to cyber criminals looking to take control.

USA Today (Oct 2009)

Windows 7’s security ‘time bomb’
“Overall Windows 7 is a big improvement and a much more secure operating system,” says Eric Voskuil, CTO of security firm BeyondTrust. “However, UAC in its default configuration is a ticking time bomb.”

The Last Watchdog (Oct 2009)

Windows 7 Raises Security Bar, Experts Say
Microsoft no doubt has high hopes for Windows 7, launched Thursday, but the new operating system might also have significant long-term implications for the security industry, experts say.

ChannelWeb (Oct 2009)

From Security Perspective, Windows 7 Off To A Rocky Start
The global launch of Microsoft's next-generation Windows 7 operating system today was greeted with fanfare -- and some grumbling from security professionals who worry the new OS already has too many holes.

Dark Reading (Oct 2009)

Experts optimistic about the security of Windows 7
With Windows 7 set to become available Thursday, researchers generally are optimistic about the impact Microsoft's new operating system will have on network security.

SC Magazine (Oct 2009)

UAC Changes and Windows 7 Security - What Microsoft's changes to user account control mean for the enterprise
In response to the feedback that users were forced to respond to too many prompts in Windows Vista, the new operating system introduces a new approach to UAC, providing a four-position “slider” feature to control how often UAC pop-ups occur.

Enterprise Systems (Oct 2009)

Windows 7 UAC still inadequate, says vendor
Windows 7's redesigned User Account Control (UAC) is little more than a superficial tweak aimed at consumers that will do nothing to solve the practical problems for businesses using the technology, a software company has claimed once again.

Techworld (Oct 2009)

How To Stop IT Managers From Going Rogue
Research shows that nearly half of all data breaches come from inside an organization, sometimes by those trusted to protect sensitive corporate or customer data, which is why industry watchers say enterprise IT departments need to invest in technology that ensures no one person has all the power.

Networkworld (Oct 2009)

Symark Acquires BeyondTrust
You may have heard about Symark’s acquisition of BeyondTrust. Symark is best known for its UNIX security product- PowerBroker. BeyondTrust’s primary product is Privilege Manager.

Burton Group (Sep 2009)

Symark and BeyondTrust – best acquisition ever
When it comes to mergers and acquisitions in the security world, often it is one big fish snapping up a little fish. This is usually because of one piece of technology that might be useful in the future. Rarely do you see an acquisition that merges complementary technologies so completely, but this is exactly the case when it comes to Symark and BeyondTrust.

The Tech Herald (Sep 2009)

Symark Buys BeyondTrust
Turnaround guru and Symark CEO John Mutch offers advice for Vator entrepreneurs

VatorNews (Sep 2009)

Audit Requirements Drive Demand For Privileged Account Management
School Employees Credit Union of Washington doesn't fall under the scope of Sarbanes-Oxley (SOX) requirements, but its auditors are increasingly interested in seeing that the credit union has the same types of internal controls that SOX requires of public companies. "They want a chain of control for who has been accessing systems with administrative-level passwords," said John Campbell, information security officer at the not-for-profit financial cooperative.

SearchFinancialSecurity (Aug 2009)

Getting down with EPHI: The Security Rule 101
It's common for college students to reach outside of their core curriculum and explore foundational courses that usually have the “101” designation, such as “Anthropology 101,” or “Psychology 101.” The Centers for Medicare & Medicaid Services (CMS) also offers a foundational guide, “Security 101 for Covered Entities,” the first in a series of seven papers, each focused on a specific topic related to the “Security Rule.”

SC Magazine (Jul 2009)

Enterprise Software Looks to Ease IT Management
In a time of technological change but static IT budgets, IT management isn't getting easier. "The release of the PowerSeries Management Console solves a critical customer need for simple and cost-effective management of privileged user controls in complex environments, specifically through the integration with Symark's PowerBroker 6.0," said John Mutch, CEO of Symark, in a statement.

Internetnews.com (Jul 2009)

Least-Privilege Technology Still Swimming Upstream, But Making Progress

Dark Reading (Jul 2009)

New desktop, laptop systems designed for mobile users

Healthcare IT News (Jul 2009)

Microsoft plugs ActiveX security holes

GCN (Jul 2009)

Microsoft repairs critical DirectShow, Video ActiveX vulnerabilities

SearchSecurity.com (Jul 2009)

Microsoft pushes monthly patches – six bulletins fix nine vulnerabilities

The Tech Herald (Jul 2009)

Best practices for a privileged access policy to secure user accounts
The process of securing accounts includes a variety of factors, one of the most important being ensuring employees have the minimum access necessary to target platforms. In addition, employees' job functions and related access should be reviewed to ensure there are no separation of duties issues. Case in point: A person who creates a vendor account should not be able to approve payment to that vendor.

SearchSecurity.com (Jun 2009)

Software watches the watchers
It’s a harsh reality, but in this economic environment there are layoffs and companies need to make sure employees that are let go can’t access networks and files after they walk out the door. Agoura Hills, Calif.-based Symark is a company supplying software that enables IT administrators to see who accesses what files, giving them the ability to shut individuals out of systems with just a couple of clicks, says John Mutch, CEO at Symark.

DigitalIDNews (Jun 2009)

Review: Group Policy Management Tools

Windows IT Pro (Jun 2009)

Falling In Line With The FDCC

Processor (Jun 2009)

Q&A: Administrator Rights and Enhanced Security

Enterprise Systems (Jun 2009)

User Access Control In Education Environments

Processor (Jun 2009)

Security Experts Raise Alarm Over Insider Threats
Security researchers and other experts are turning up the heat on insider threats, warning enterprises that the problem is growing and could prove devastating for many enterprises.

Dark Reading (May 2009)

Battle From Within
IT security personnel regularly face the daunting task of protecting their enterprises from external threats that continue to strengthen in both complexity and effectiveness. But dangers to data don’t always begin at the outer walls of the enterprise; on the contrary, insider theft is rising at a striking pace.

Processor (May 2009)

Third parties show off their wares at TechEd

SD Times (May 2009)

Get A Handle On Fraud
Solid oversight saves firms from being blindsided by internal fraud. That's why financial reporting isn't the only thing internal auditors monitor. Operations, systems and risks are also specialties of the detail watchers.

Investors.com (Apr 2009)

Windows 7 Compatibility Issues May Mar Enterprise Adoption

eWeek (Apr 2009)

PowerPoint vulnerability discovered – has nothing to do with Conficker

The Tech Herald (Apr 2009)

Changing Passwords at the Speed of Business
“The entire industry has this trust-based system, where the system administrators all share the root or domain password, and you trust that these people will behave appropriately,” according to Jeff Nielsen, director of development & QA at Symark International, Inc., an information security company specializing in identity and access management solutions

Business Trends Quarterly (Mar 2009)

Internal Security Lapse Seen in Fannie Mae Case
Insider threats to data security via theft or sabotage are sure to rise, especially as companies increase employee layoffs during a bad economy. One sign of the times is the appearance of the infamous "logic bomb," a software bug timed to hose a company's network, typically planted by someone with network access.

Redmondmag.com (Feb 2009)

How Windows 7 UAC shapes enterprise security

ZDnet (Mar 2009)

Removing Admin Rights For Users

Processor.com (Mar 2009)

Slideshow: Fave raves: six enterprise products readers love

Network World (Feb 2009)

Q&A: How BeyondTrust Addresses Windows Security

Redmond Magazine (Feb 2009)

Don’t Run Windows as ‘Administrator,’ and Why

PC Magazine (Feb 2009)

Microsoft pushes monthly update while experts doubt Exploitability rankings

The Tech Herald (Feb 2009)

Microsoft patches flaw that could compromise, cripple Exchange

Network World (Feb 2009)

Report: 92% of critical Microsoft vulnerabilities mitigated by Least Privilege accounts

ZDNet (Feb 2009)

Microsoft Caves to Users on Windows 7 Security

InternetNews.com (Feb 2009)

How to foil 92 per cent of Microsoft Windows bugs

ITBusiness.ca (Feb 2009)

Report shows 92% of critical Microsoft vulnerabilities can be eliminated by removal of admin rights

ITWire (Feb 2009)

Cutting Windows Admin Rights Cuts Windows Risks 92%: BeyondTrust

bMighty.com (Feb 2009)

Removing administrator rights on Windows is the way to go

Help Net Security (Feb 2009)

Removing admin rights can stem Microsoft exploits

SC Magazine (Feb 2009)

Microsoft Security Bulletins: Admin Rights Make Users Vulnerable

Windows IT Pro (Feb 2009)

Criticism mounting over Windows 7 security

CNET (Feb 2009)

UAC flaws pshaw: disable admin rights to make Windows and IE safe

Network World Microsoft Subnet Blog (Feb 2009)

Removing admin rights stymies 92% of Microsoft’s bugs

Computerworld (Feb 2009)

Report: Yanking Admin Rights Alleviates Threats in 92% of Critical Microsoft Vulnerabilities

Dark Reading (Feb 2009)

Windows Security Improved By Denial Of Administrative Rights

InformationWeek (Feb 2009)

Eliminating Admin Rights. A Most-Effective Solution – Proven Yet Again – for Protecting Your Windows Network

Realtime Community Windows Server (Feb 2009)

The Peril of 'Orphan' Accounts
Layoffs in the financial services industry can have security implications, one of them being “orphan” accounts, according to security experts. By neglecting to close these accounts, companies can inadvertently enable former (and sometimes disgruntled) employees to steal information, commit corporate malfeasance or generally wreck havoc, according to Ellen Libenson, vice president of marketing for Symark International, Inc.

Banking Strategies (Jan 2009)

Employee layoffs pose security risk if systems access not disabled
Former systems administrator Jeff Nielsen has a message for CIOs in this season of horrific employee layoffs and hard times: Beware orphaned accounts. A study from Symark International Inc., a maker of systems access management solutions, suggests that orphaned accounts -- user accounts that remain open after an employee leaves a company -- are a significant security risk at many corporations.

SearchCIO.com (Dec 2008)

Windows 7 & User Account Control - How Much Control Is Enough?

Credit Union Tech-Talk News (Dec 2008)

"Huge Increase" in Internet Explorer Attacks, says Microsoft

Government Technology (Dec 2008)

Group Policy Management Editor Support Added to Privilege Manager

WinIT Pro (Nov 2008)

Windows 7 UAC changes just 'lipstick', argues vendor

NY Times (Oct 2008)

A Cure for Unsecured Desktops

NY Times (Oct 2008)

UAC: When to Turn it Off

Redmond (Oct 2008)

Bring Unix, Linux and Mac under the Active Directory umbrella
Enterprises don't just run Windows machines. Critical servers and applications run on various flavors of Unix and Linux. You may have marketing people on Macs, and C-level executives carrying those trendy Mac laptops. One obvious answer is to leverage Active Directory across platforms.

SearchSecurity.com (Sep 2008)

Angry IT workers: A ticking time bomb?
IT workers are mad as hell and they're not going to take it anymore. What can you do to keep things from reaching the point of no return? It was 9:30 on the morning of March 4, 2002, and something was terribly wrong at the offices of PaineWebber UBS. Computers in branches all over the country began showing disc errors. A logic bomb buried deep within the machines had wiped their hard drives clean, preventing 17,000 brokers from making trades.

InfoWorld (Sep 2008)

Tracking Privileged Users Is a No-Brainer
Carl Weinschenk spoke with Ellen Libenson, vice president of product marketing, and Jeff Nielsen, senior product manager for Symark. Libenson and Nielsen discussed insider security in light of the case of Terry Childs, a network administrator in San Francisco who locked everybody but himself out of the municipal system.

ITBusinessEdge (Sep 2008)

Little Back Doors
When employees leave the company, what happens to their user accounts? Chances are they become orphans. According to a recent survey conducted by Symark (www.symark.com) of more than 850 security, IT, HR, and C-level executives across all industries, 42% of companies have no idea how many orphaned accounts exist within their organization, and 30% say they have no procedure in place to locate orphaned accounts. So what’s the problem?

Processor (Jul 2008)

BeyondTrust and the Least Privilege Security Approach

WinIT Pro (Jul 2008)

Taming Vista's User Account Control

CRN (Jun 2008)

Redmond Roundup

Redmond (Jun 2008)

Review: BeyondTrust's Privilege Manager 4.0 Offers Prompt-Free UAC

CRN (May 2008)

Microsoft: Don't misunderstand UAC, other Vista features

NetworkWorld (May 2008)

Expanding the Reach of Least User Privilege

eWEEK (May 2008)

BeyondTrust Extends Vista Security

Internetnews.com (May 2008)

Sick of UAC? Use a Better Solution...like Privilege Manager...

RealTime Community (May 2008)

BeyondTrust Privilege Manager First Look

SC Magazine (May 2008)

Managing Insider Threat by Securing Privileged Access
Symark focuses on solving the inherent security gaps in native UNIX, Linux and Windows operating systems. In business for over 20 years, Symark has hundreds of thousands of licenses in use throughout the Global 2000 with a customer retention rate of over 90%.

Info Security Products (Apr 2008)

Active Directory, Meet Unix & Linux
PowerADvantage is an integrated authentication and configuration utility from Symark that brings Unix and Linux systems all the benefits of Active directory, including centralized authentication, account access, policy enforcement, and infrastructure management.

Processor Magazine (Apr 2008)

RSA: Central management for IT shops security that covers it all
Symark offers something unique to help with ID management and policy enforcement. The Power series, PowerBroker, PowerKeeper, and PowerADvantage, are three tools that can help manage policies and identification in environments that use multiple platforms.

The Tech Herald (Apr 2008)

Symark Tackles Tough Access Control Problems
The majority of security breaches are perpetrated by internal users, such as systems administrators with powerful user profiles that give them open access to the servers they manage. Symark International is one of the software vendors helping companies control internal access to popular servers. This week the company launched its newest product: PowerADvantage.

The Linux Beacon (Apr 2008)

Symark's security access tool bridges Linux, Active Directory
There's a downside to adding Linux or Unix servers to a Windows shop: These orphan machines lie outside the protective umbrella of the centralized user authentication and authorization controls of Microsoft Active Directory. The result? Multiple user identifications and logins, higher risk of errors and security loopholes, and of course, more work for system administrators.

SearchEnterpriseLinux.com (Apr 2008)

Symark Interview
Symark's V.P. of Product Marketing, Ellen Libenson, is interviewed by Mike D'Agostino of BankInfoSecurity at RSA Conference 2008.

RSA Podcast (Apr 2008)

Passport Breaches Fuel Concerns
Experts said insiders often are neglected when agencies set procedures. "There's been so much emphasis on hacking from the outside; it's the people inside who are just as much of a risk."

THE WALL STREET JOURNAL (Mar 2008)

Freeware Helps Businesses Limit User Rights

eWEEK (Mar 2008)

Know where application rights can go wrong

ComputerWorld (Mar 2008)

Free Software Identifies Applications Requiring Administrator Rights

Application Development Trends (Mar 2008)

Free Tool Identifies Apps That Require Elevated Privileges

WinIT Pro (Mar 2008)

BeyondTrust Roots Out Bad Apps

eWEEK (Mar 2008)

Privilege Manager earns administrators' trust

GCN (Feb 2008)

No More Giving Away the Master Key

WinIT Pro (Feb 2008)

Least Privilege Gains Popularity

Processor (Feb 2008)

Feds Say 'Adios' to Admin Rights on Windows

DarkReading (Jan 2008)

Gwinnett Health Tackles Malware with Privilege Software

Information Security (Dec 2007)

Hospital: Vista just what the doctor ordered

Information Security (Dec 2007)

Automating the Desktop

Information Security (Nov 2007)

Windows Vista UAC an oil slick for energy firm

Information Security (Oct 2007)

Access Control - Symark PowerBroker
Symark PowerBroker solves the dilemma of providing root access privileges to multiple users on Unix-based systems without compromising security.

Information Security (Oct 2007)

Privilege Management

Information Security (Sep 2007)

Tame Vista’s User Account Control with BeyondTrust Privilege Manager

TechRepublic (Sep 2007)

Solutions for the Least-Privilege Dilemma

WinIT Pro (Sep 2007)

Symark Joins Crowded Cross-platform Management Field
Agoura Hills, Calif.-based Symark Software recently joined a long list of vendors offering a cross-platform authentication and configuration application for managing Linux and Unix servers using Microsoft Active Directory (AD).

SearchEnterpriseLinux.com (Sep 2007)

BeyondTrust Reins in Vista UAC Prompts

eWeek (Aug 2007)

Microsoft Endorses Product That Turns Off Vista UAC Nags

BetaNews (Aug 2007)

Stem the Flood of User Account Control Popups

RedmonMag (Aug 2007)

Partners Fix Up Office 2007 and Windows Vista

Microsoft Watch (Aug 2007)

BeyondTrust Tames UAC

TechWorld (Aug 2007)

BeyondTrust tames Vista's UAC pop-ups, leaves security intact

NetworkWorld (Aug 2007)

50 Channel Projects to Watch in 2007

eWeek (Aug 2007)

Security: Next Steps

eWeek (Jul 2007)

BeyondTrust keeps Windows users from abusing privileges

InfoWorld (Jun 2007)

Winged Migration

GCN (Jun 2007)

Standard Desktops, Special Needs

GCN (May 2007)

Security by Least Privilege

Network World (May 2007)

Your Vista Game Plan

Redmondmag.com (May 2007)

Trust But Verify
Some years ago, a small manufacturing firm was hijacked by its IT employees. They didn't use weapons, but they did commit murder: They killed the business. Unfortunately, they were aided and abetted by the company's own lax security policies.

Enterprise OpenSource Magazine (Apr 2007)

Eliminating Insider Threats
Everyone wants to think well of the employees and colleagues to whom they trust the administration of mission-critical systems, but it is smarter to think about enforcing best security practices that close the door to temptation.

itdefensemag.com (Apr 2007)

Rollout: BeyondTrust Privilege Manager 3.0

Network Computing (Apr 2007)

Microsoft's successful Vista-boosted Q3; John Moyer and Marco Peretti of BeyondTrust

Redmondmag.com (Apr 2007)

Microsoft's Controversial UAC Spawns Alternatives

SDTimes (Apr 2007)

BeyondTrust releases alternative to Vista's access control

Network World (Mar 2007)

BeyondTrust Fine-Tunes Privilege Management in Windows Vista

Network Computing (Mar 2007)

Is Vista Security Ready For The Enterprise?

Processor (Mar 2007)

Patch-Free Tuesday

Redmondmag.com (Mar 2007)

Company offers boost for Vista security

InfoWorld (Mar 2007)

BeyondTrust offers added security to Vista

Monsters and Critics (Mar 2007)

BeyondTrust makes standard user usable in Windows

ZDNet (Mar 2007)

Vista's UAC a headache to your IT team? BeyondTrust offers a solution

ComputerWorld (Mar 2007)

Controlling Access in Linux and UNIX Environments
One of the most common security challenges Linux and UNIX IT administrators face is how to effectively manage the root or super-user account. In an age of regulatory compliance and data privacy laws - and as more and more organizations elect to run mission-critical applications on UNIX and Linux systems - controlling and auditing privileged account access is more crucial than ever

eSecurityPlanet (Mar 2007)

Identity & Access Management
With a continually changing lineup of faces comes the need for robust identity and access management to ensure that the network is open to authorized personnel and, just as importantly, closed to those who shouldnt be there.

Processor (Feb 2007)

Keeping the Fox Out of the Hen House
Some years ago, a small manufacturing firm was hijacked by its IT employees. They didn't use any weapons, but they did commit murder: They killed the business. Unfortunately, they were aided and abetted by the company's own lax security policies. The firm had ignored the best practice of segregating duties.

EbizQ (Feb 2007)

Security: Next Steps

eWeek (Jan 2007)

Taking Least Privilege to the Max

EWeek (Jan 2007)

Company Cuts Privileges to Cut Malware

darkREADING (Jan 2007)

Encrypted Virus Code: New Spin on Old Trick?

TechNewsWorld (Jan 2007)

The Principle of Least Privilege

ITBusinessedge (Jan 2007)

Experts warn of surge in zero-day flaws