Vulnerability management solution from Rapid7 and Trend Micro

Rapid7 and Trend Micro announced that Rapid7 NeXpose is the vulnerability management engine inside Trend Micro SecureSite, a new hosted, Web-threat vulnerability scanning service for e-commerce Web sites.

SecureSite helps e-businesses safeguard their sites from malicious threats, helps with Payment Card Industry Data Security Standard (PCI DSS) compliance and protects online shoppers from hackers attempting to steal credit card numbers and passwords. By continually assessing and monitoring their sites with SecureSite to protect customer data, e-businesses strengthen their credibility and reputation, thus increasing their potential revenue.

SecureSite can perform automated daily scans for Web threat vulnerabilities and weaknesses across databases, networks and operating systems as well as multiple Web applications and Web 2.0 (JavaScript, AJAX). Reports are generated automatically that identify higher risk exposures, help customers prioritize and provide expert remediation guidance from TrendLabs for addressing problems quickly. SecureSite’s Web-based console displays daily status reports on vulnerabilities and offers a variety of alerting options.

SecureSite monitors Web application vulnerabilities such as cross-site scripting (XSS), SQL injection, data leaks, XPath injection and bot attacks as well as a broad range of other vulnerabilities, which may arise as a Web site’s content changes or new functionality is added. SecureSite can detect weaknesses and vulnerabilities such as viruses, malware, spyware and other malicious Web threats that can cause data losses during online transactions, further identity theft and set off denial of service attacks.