Cybercriminals raise the heat on databases

Fortinet launches a family of security appliances dedicated to database vulnerability assessment

Databases are fast becoming the next target for cybercriminals, says analyst firm IDC.

According to IDC research director Charles Kolodgy, databases are becoming the next major target for cybercriminals due to the sensitive and valuable information they hold.

[ Learn how to secure your systems with Roger Grimes' Security Adviser blog and newsletter, both from InfoWorld. ]

Kolodgy said there is an increasing need for powerful tools that can detect and help guard against data breaches.

He said this was especially critical for vertical industries such as retail, which require compliance with the Payment Card Industry Data Security Standard (PCI-DSS), to protect customers' personal and credit card information.

In order to meet the need, unified threat management (UTM) solutions firm Fortinet has launched a family of security appliances dedicated to database vulnerability assessment (VA).

Hardening databases
Fortinet vice president of products, Anthony James, explained that the FortiDB-1000B appliance was a mid-enterprise product designed to 'harden' databases by detecting weaknesses in passwords, access privileges and configuration settings.

The FortiDB-1000B VA appliance provides an automated, cost-effective and centralized solution for database application security, explained James, with evaluation and remediation advice for common compliance requirements built in.

He said that by identifying weaknesses in databases, the FortiDB appliance helps to prevent the theft of proprietary and personal data by what might appear to be legitimate users. FortiDB works by identifying the weakness, alerting system administrators of potential threats, and offering remediation advice.

The FortiDB-1000B appliance supports heterogeneous environments including Oracle, DB2, Sybase and SQL Server, with each appliance supporting up to 30 concurrent databases.

Deeper layers of security
"Fortinet's introduction of the FortiDB appliance family is a key step in fulfilling our long-term growth strategy to broaden and deepen our portfolio of enterprise network and application security products," said Fortinet's James.

"The FortiDB product line enables Fortinet to help secure deeper layers of the network -- up to and including the application layer -- and brings a much-needed product to market to help address one of the most critical security issues today: protection of consumer and corporate data."

"Much of the world's personal and proprietary electronic data is held in the databases of corporations and businesses, with most of it having an intrinsic monetary value in the criminal underworld," said IDC's Kolodgy. "So, database security tools, like Fortinet's FortiDB-1000B appliance, are no longer optional. Instead, they are a necessary component to help protect personal information that organizations are obligated to secure."

MIS Asia is an InfoWorld affiliate.

Join the discussion
Be the first to comment on this article. Our Commenting Policies