Story image

Trustwave brings database security scanning to the cloud

02 May 2019

Trustwave has announced a new database security scanning and testing software that helps organisations better protect critical data assets hosted on-site or by major cloud service providers from advanced threats, configuration errors, access control issues, unauthorised privilege escalation, missing patches and more.

“Databases are the proverbial ‘bank vaults’ cybercriminals aim to crack leveraging malware, zero-day vulnerabilities, savvy social engineering and other sophisticated means,” says Trustwave product management senior vice president C.J. Spallitta.

“As businesses continue expanding globally, obtain new assets through acquisitions and adopt mixed computing models to control costs, maintaining data visibility while keeping pace with an evolving threat landscape becomes a challenge.”

Trustwave DbProtect is a scalable comprehensive database security platform that delivers real-time visibility and protection to data housed across an organisation’s footprint no matter what environment or a mix of environments the data traverses or resides.

The software offers compliance management capabilities through constant monitoring for unusual data behaviours indicative of a breach or policy violations.

New features in Trustwave DbProtect include:    

  • Support for major cloud providers --Trustwave DbProtect allows customers to protect big data stores across (and in between) major cloud services including Amazon Web Services, Amazon Relational Database Service, Microsoft Azure, Google Cloud Platform, GovCloud, FedCloud and others supporting Windows Server. Organisations choosing to host operations entirely in the cloud benefit by eliminating the need to have a locally installed management console and backend database servers.
     
  • Powerful database discovery and agentless scanning --Trustwave DbProtect quickly discovers all databases and associated objects, users and enabled security features across an organisation’s entire footprint and chosen deployments including on-premises, hosted and hybrid cloud. An agentless scanning feature eliminates the need for scanner installation on each individual database in favour of a single scanning engine that can connect and administer vulnerability and rights management scans on thousands of databases simultaneously.
     
  • Cybersecurity risk and compliance infraction reduction --Trustwave DbProtect identifies data leakage, misconfigurations, access control issues, missing patches, unauthorised data modifications and other concerns that put organisations at risk for breaches and associated steep fines for non-compliance. Organisations can collect and correlate a forensic audit trail of all privileged database activities to meet regulatory obligations effectively.   
     
  • Real-time alerting for threats and policy violations -- Organisations gain a picture on the state of their data security and compliance efforts at any point in time. Once a baseline is established, Trustwave DbProtect continuously monitors for new threats and data policy violations alerting information technology and security teams. Detailed analysis and ranking depending on the severity of each instance are given allowing internal teams to prioritise and properly plan to take appropriate corrective actions.
     
  • Single dashboard view and reporting -- Trustwave DbProtect delivers a single consolidated view of threats, vulnerabilities, perceived risks and compliance endeavours across the entire data environment. Using analytics, database administrators can drill down for detailed views of each individual database or group of databases to run reports against an established baseline charting progress and operational efficiencies. 
Bitglass appoints new cloud, business development leaders
The cloud security company has appointed vice presidents for worldwide channels and worldwide business development.
Ping Identity offerings accelerates cloud MFA and SSO adoption
90% of respondents trust MFA as an effective security control to protect identity data in public clouds, yet only 60% of organisations have formally adopted it.
Trend Micro introduces cloud and container workload security offering
Container security capabilities added to Trend Micro Deep Security have elevated protection across the DevOps lifecycle and runtime stack.
Veeam joins the ranks of $1bil-revenue software companies
It’s also marked a milestone of 350,000 customers and outlined how it will begin the next stage of its growth.
Veeam enables secondary storage solutions with technology partner program
Veeam has worked with its strategic technology alliance partners to provide flexible deployment options for customers that have continually led to tighter levels of integration.
Veeam Availability Orchestrator update aims to democratise DR
The ability to automatically test, document and reliably recover entire sites, as well as individual workloads from backups in a completely orchestrated way lowers the total cost of ownership (TCO) of DR.
EXCLUSIVE: Forcepoint global channel chief talks strategy
As a solution sold 100% via the channel, cybersecurity solutions company Forcepoint places a strong emphasis on its partner relationships.
Salesforce continues to stumble after critical outage
“To all of our Salesforce customers, please be aware that we are experiencing a major issue with our service and apologise for the impact it is having on you."