Logo
21.04.2017

Produkte

Comprehensive threat detection, analysis, triage, and compliance management--with ArcSight ESM

As we continue to improve the solutions we provide enterprises, we have released our latest update to ArcSight Enterprise Security Manager—better known as ESM....

lesen
Logo
19.04.2017

Produkte

ArcSight activate!

This paper briefly examines Defense in Depth (DiD), also known as the “castle approach,” then defines Defense Monitoring in Depth (DMiD). Often, DiD is described as deploying multiple layers of security controls or defenses with the hope that if an attack breaches one layer, the ...

lesen
Logo
19.04.2017

Nachrichten

Detecting Struts2-045 and 046 using DAST techniques

March 2017 witnessed two security advisories from Apache Struts2 – both involving a similar problem with the Jakarta-based file upload Multipart parsers (CVE-2017-5638). S2-045 addresses an issue with parsing the Content-type header on an erroneous multipart request, while S2-046...

lesen
Logo
18.04.2017

Produkte

HPE Security Fortify 17.1 product release announcement

HPE Security Fortify is pleased to announce the immediate availability of HPE Security Software Security Center (SSC) and HPE Security Fortify Static Code Analyzer (SCA) 17.1, HPE Security Fortify WebInspect and HPE Security WebInspect Enterprise 17.1, and HPE Security Fortify Ap...

lesen
Logo
17.04.2017

Produkte

Malware monitoring

The debate about whether antivirus software is still useful has been going on for a few years now. In spite of lots of advancements, identifying each and every attack is still beyond the scope of antivirus solutions. At least it seems reasonable to infer that based on the ma...

lesen
Logo
11.04.2017

Artikel

Marc Fischer wechselt in die Geschäftsführung von HPE

Marc Fischer steigt bei Hewlett Packard Enterprise (HPE) die Karriereleiter hinauf. Ab sofort ist er als Vice President Data Center & Hybrid Cloud in der Geschäftsführung des Herstellers tätig.

lesen
Logo
05.04.2017

Nachrichten

Auditing and Bypassing Security Manager policies

During our BlackHat talk last summer, we presented a subset of the exploits we identified, based upon hundreds (200+) of identified Remote Code Execution (RCE from now on) deserialization gadgets, related to CORBA stubs. Since over 50 of these gadgets are present in the Java Runt...

lesen
Logo
03.04.2017

Produkte

Digital transformation: Defining the next wave of cybersecurity

 Earlier this year, I had the opportunity to present at Cybertech 2017, the largest security conference of its kind outside of the United States....

lesen
Logo
31.03.2017

Nachrichten

HPE Security Fortify Software Security Content 2017 Update 1

HPE Security Fortify Software Security Research (SSR) is pleased to announce the immediate availability of updates to HPE Security Fortify Secure Coding Rulepacks (English language, version 2017.1.0), HPE Security Fortify WebInspect SecureBase (available via SmartUpdate), HPE Sec...

lesen
Logo
23.03.2017

Artikel

Das sind die Workstations der Zukunft

Wie sieht das moderne Reißbrett für den Konstrukteur aus? Wir haben bei Dell, HP und Microsoft nachgefragt, welche Workstations aktuell der Renner sind und welche Trends die Unternehmen sehen.

lesen
Logo
22.03.2017

Produkte

Application Defender protects against critical Struts exploit CVE-2017-5638

On March 7, 2017, a zero-day exploit was released which targets the popular Apache Struts framework.  This vulnerability is identified by MITRE advisory CVE-2017-5638, and is a critical issue which teams should address immediately to prevent HTTP response stream modification...

lesen
Logo
22.03.2017

Produkte

Securing innovation

Why is innovation together with security so important?  To win in the marketplace, businesses must grow and innovate. To succeed, they must adopt new technologies, innovate with new products, and find new partners to expand their business....

lesen
Logo
22.03.2017

Produkte

Government-wide software agreement between GSA and HPE could save millions

A recent government-wide software agreement between HPE and GSA has enormous savings potential. With the implementation of HPE Software products and services, federal agencies can expect to save more than $100 Million through cost-avoidance alone! This is in addition to the $50 M...

lesen
Logo
20.03.2017

Nachrichten

Struts2-046: A new vector

Last week a new Remote Code Execution (RCE) vulnerability affecting Struts2 was published. We already blogged about it so we will not get into the details of how Struts2 was vulnerable via the Content-Type header. Today's blog will focus on how important it is to analyze and unde...

lesen
Logo
15.03.2017

Produkte

HPE Security Fortify Software Security Content Critical Advisory Support

HPE Security Fortify Software Security Research (SSR) is pleased to announce the immediate availability of an update to HPE Security Fortify WebInspect SecureBase (available via SmartUpdate). This update includes support for critical Apache Struts 2 vulnerability (https://struts....

lesen
Logo
14.03.2017

Nachrichten

Apache Struts 2 Multipart parser vulnerability (CVE-2017-5638)

An OGNL Expression Injection vulnerability in the Jakarta Multipart parser has recently been garnering a lot of attention. The parser is used in Apache Struts 2, versions 2.3.x (2.3.5 - 2.3.32) and 2.5.x (below 2.5.10.1). The vulnerability allows a remote attacker to inject OGNL ...

lesen
Logo
14.03.2017

Produkte

Transforming government through secure innovation

 With 6 tracks to choose from at the HPE Software Government Summit, there’s a little something for everyone. However, you know that on THIS blog, we’re all about security! Read on to get insight into some of the tracks and sessions available to you, as a security profe...

lesen
Logo
14.03.2017

Produkte

Join HPE Security at InfoSec World 2017

Today, we are bombarded with constant and disruptive change. To achieve success, you have to innovate faster than the competition. Security can’t slow you down; however, NOT considering risk in this increasingly connected world jeopardizes innovation. So how do you achieve that s...

lesen
Logo
10.03.2017

Produkte

The 2017 State of SecOps: Attempts to transfer risk with managed services

In this 8-part blog series, we give a high-level overview of the findings and lessons learned in the 2017 State of Security Operations Report. This is part 4, wherein we discuss attempts to transfer risk with managed services....

lesen
Logo
09.03.2017

Produkte

Build your plan for the 2017 HPE Software Government Summit

Are you ready for the 7th annual HPE Software Government Summit? Read this blog for more information on the agenda, speakers, and more! ...

lesen
Logo
08.03.2017

Artikel

Das sind die Workstations der Zukunft

Wie sieht das moderne Reißbrett für den Konstrukteur aus? Wir haben bei Dell, HP und Microsoft nachgefragt, welche Workstations aktuell der Renner sind und welche Trends die Unternehmen sehen.

lesen
Logo
07.03.2017

Produkte

The 2017 State of SecOps: Attempts to transfer risk to managed services

In this 8-part blog series, we give a high-level overview of the findings and lessons learned in the 2017 State of Security Operations Report. This is part 4, wherein we discuss attempts to transfer risk with managed services....

lesen
Logo
03.03.2017

Produkte

Top 10 reasons you should attend HPE Software Government Summit

Are you ready to learn about Government transformation through secure innovation? Then join us at the HPE Software Government Summit on March 22nd, in Washington, D.C. Here are the top 10 reasons you should go......

lesen
Logo
02.03.2017

Artikel

Unter dem Druck massenhafter Daten

Das Internet der Dinge und die Folgen sind letztlich die Grundlage für das, was HPE auf der weltgrößten IT-Messe zeigt. Es geht um Maschinen wie Methoden – Zukunftsmusik ist auch dabei.

lesen
Logo
02.03.2017

Produkte

HPE Security Fortify continues to be a leader in Application Security Testing!

The 2017 Gartner Magic Quadrant for AST was just released. As the first AST vendor to provide capabilities in SAST, DAST, IAST and RASP, HPE Security Fortify continues to lead through innovation, taking a leadership position for the 7th year in a row!...

lesen
Logo
23.02.2017

Artikel

Hyperkonvergenz ist nur ein erster Schritt

Die Industrie 4.0 muss zu einem Umbruch in der Rechenzentrumsbranche führen: Das IoT als Fundament der Industrie 4.0 benötigt hyperkonvergente Netze, um Daten aus Fabrikhallen und anderen Gebäuden einzufangen.

lesen
Logo
22.02.2017

Produkte

Save-the-date: Protect 2017!

Save the date! HPE Protect is coming to Washington, D.C. September 11-13th, 2017! ...

lesen
Logo
21.02.2017

Produkte

Save-the-date: HPE Protect 2017!

Save the date! HPE Protect is coming to Washington, D.C. September 11-13th, 2017! ...

lesen
Logo
20.02.2017

Artikel

Technische Zeichnungen schnell und kosteneffizient drucken

Eine neue HP-Druckmaschine vom Typ Page-Wide XL 8000 inklusive einer Online-Faltmaschine wurde jetzt bei Linde Engineering in Betrieb genommen. Der Drucker ersetzt drei der bisherigen Maschinen, die in der Produktion langsamer und im Unterhalt kostenintensiver waren. Mit dem Eins...

lesen
Logo
16.02.2017

Produkte

ArcSight for the win!

HPE Security is thrilled to announce that ArcSight is the winner of “Best SIEM Solution” by SCMagazine in their 2017 SC Awards. Winners were announced on February 14th, 2017 at RSA Conference in San Francisco, CA. ...

lesen
Logo
14.02.2017

Produkte

Data-centric IoT security is here!

HPE Security kicks off RSA Conference 2017 with an exciting announcement: Hewlett Packard Enterprise Delivers First-to-Market Data-centric IoT Security!...

lesen
Logo
14.02.2017

Produkte

Looking for the fastest threat investigation solution? Found it!

HPE debuts ArcSight Investigate, the industry’s fastest threat investigation solution, at RSA Conference 2017! ...

lesen
Logo
09.02.2017

Produkte

The 2017 State of SecOps: Providing effective business metrics

In this 8-part blog series, we give a high-level overview of the findings and lessons learned in the 2017 State of Security Operations Report. This is part 3, wherein we discuss providing EFFECTIVE business metrics. ...

lesen
Logo
07.02.2017

Produkte

You're invited: HPE Software Government Summit 2017

Please join us for Hewlett Packard Enterprise Software Government Summit 2017, taking place Wednesday, March 22 in Washington, D.C. ...

lesen
Logo
02.02.2017

Produkte

The 2017 State of SecOps: Development of Fusion Centers

In this 8-part blog series, we give a high-level overview of the findings and lessons learned in the 2017 State of Security Operations Report. This post delves into finding 2: Development of fusion centers. ...

lesen
Logo
02.02.2017

Produkte

The 2017 State of SecOps: Decreased maturity with hunt-only programs

In this 8-part blog series, we give a high-level overview of the findings from the 2017 State of Security Operations Report....

lesen
Logo
02.02.2017

Produkte

Security (in DevOps) is something that happens every single day

In a recent live webinar, HPE Security Strategist, Stan Wisseman, spoke to Coveros CEO and Founder, Jeff Payne about his thoughts on DevOps and how to fit security into the process. It was a great conversation, and one that any company thinking of adopting DevOps should hear. &nb...

lesen
Logo
30.01.2017

Nachrichten

Analytics in security

Analytics—it’s a hot topic in a variety of industries, not just in security. The new form of currency is data; and with that, we can garner a plethora of information. The only things we need are time, the right set of skills, and a robust path to follow. When these traits combine...

lesen
Logo
24.01.2017

Produkte

Talk Security with HPE at RSA Conference

RSA Conference is the largest security conference in the world--rightfully referred to as, 'Where the world talks security." At HPE Security, we know that RSA is an amazing opportunity to share our approaches to the changing cyber landscape, help you discover new and evolvin...

lesen
Logo
23.01.2017

Produkte

Decreased maturity with hunt-only programs

In this 8-part blog series, we give a high-level overview of the findings from the 2017 State of Security Operations Report....

lesen