GFI LANguard N.S.S. 6 Now Detects Wireless Nodes And Suspicious USB Devices

London, UK, 17 January 2005 – GFI today announced the release of a new version of its popular network security scanner, GFI LANguard Network Security Scanner (N.S.S.) 6. Version 6 can detect all machines and devices connected to the network via a wireless link. It can also alert administrators when suspicious USB devices are connected to the network. Additionally, the new version includes further Linux security checks and the ability to create custom Linux checks via its inbuilt SSH module.

Wireless node/link detection

Wireless links can pose a tremendous security risk. In a recent break-in at an Israeli post office/bank branch, for example, offenders stole the equivalent of US$13,000 by connecting a wireless gateway to a switch inside the outlet, through which they then remotely accessed the system to transfer money to newly opened accounts. Similarly, in the US, the Lowe’s home improvement retail chain was robbed of credit card numbers and other information by hackers who accessed the data via a wireless connection at one of the store’s parking lots. Detecting unauthorized and possibly unsecured wireless links is therefore a must. Through an advanced algorithm, GFI LANguard N.S.S. 6 can detect machines and devices which are connected to the network via a wireless link.

“The detection of wireless devices is often overlooked by administrators. However, rogue or unauthorized access points are inexpensive to buy and simple for users to set up and hide. It is therefore essential for organizations to scan for wireless connections,” said Andre Muscat, GFI Product Manager.

USB device scanning

USB (Universal Serial Bus) hubs present a potential security risk – almost any device can be connected to the network, including removable hard disks, digital cameras, wireless access points and more. Such devices can introduce viruses, Trojans, illegal software and so on, or can be utilized by users to take confidential data that they have access to. Administrators have little control over this and should therefore regularly monitor which devices are connected to the network to eliminate unauthorized and dangerous USB devices. GFI LANguard N.S.S. 6 takes the legwork out of this chore by automatically scanning all devices connected to the USB hub, filtering authorized USB devices (e.g., a mouse), and alerting administrators about dangerous or unknown USB devices.

In addition, GFI LANguard N.S.S. can also check that the service of its sister product, GFI LANguard Portable Storage Control, is active. GFI LANguard P.S.C. provides network-wide control of portable storage devices, enabling administrators to control which users can use a USB stick, MP3 player, iPod, floppies and so on.

Includes new Linux vulnerability checks and enables custom Unix/Linux vulnerability checks

GFI LANguard N.S.S. 6 offers an extensive set of Linux vulnerability checks, including new ones such as root kit detection. It now also incorporates an SSH scripting feature that allows administrators to connect to remote Linux/Unix machines and launch scripts. This feature also enables the creation of custom security checks.

Other new features

Version 6’s new features also include the following:
* Displays both Share and NTFS permissions for all shares in the network – allowing administrators to easily check and lock down their shares
* Highly improved network devices reporting
* Supports saving and re-loading of saved scan results to and from database/XML files
* New status monitor through which administrators can monitor the status of scheduled operations like scans and software update deployments
* Improved performance through multithread scan engine
* Several new filtering conditions.
A detailed list of all new features is available at
http://kbase.gfi.com/showarticle.asp?id=KBID002242.

About GFI LANguard N.S.S.

GFI LANguard Network Security Scanner (N.S.S.) checks a network for possible security vulnerabilities by scanning the entire network for missing security patches, services packs, open shares, open ports, unused user accounts and more. With this information (displayed in customizable reports), administrators can easily lock down their network against hackers. GFI LANguard N.S.S. can also remotely deploy missing patches and service packs in applications and OS. GFI LANguard N.S.S. is the leading Windows security scanner and very competitively priced. For more information and to download the product, one can visit http://www.gfi.com/lannetscan/.

About GFI

GFI is a leading provider of network security, content security and messaging software. Key products include the GFI FAXmaker fax connector for Exchange and SMTP mail servers; GFI MailSecurity email content/exploit checking and anti-virus software; GFI MailEssentials server-based anti-spam software; GFI MailArchiver an email archiving solution; GFI LANguard Network Security Scanner (N.S.S.) security scanning and patch management software; GFI Network Server Monitor that automatically sends alerts, and corrects network and server issues; GFI LANguard Security Event Log Monitor (S.E.L.M.) that performs event log based intrusion detection and network-wide event log management; and GFI LANguard Portable Storage Control that enables network-wide control of removable media. Clients include Microsoft, Telstra, Time Warner Cable, NASA, DHL, Caterpillar, BMW, the US IRS, and the USAF. GFI has offices in the US, the UK, Germany, Cyprus, Romania, Australia and Malta, and operates through a worldwide network of distributors. GFI is a Microsoft Gold Certified Partner and has won the Microsoft Fusion (GEM) Packaged Application Partner of the Year award.