September 22, 2003 - 12:00
In line with its efforts to promote network security, GFI today released a freeware version of GFI DownloadSecurity for ISA Server 6, its content security product that handles the security risk of file downloads without resorting to blocking them all at firewall level. The freeware version scans HTTP and FTP downloads at the network perimeter using a single antivirus engine, and can be used as additional protection by companies who do not yet perform virus scanning at firewall level.
"Virus scanning of user downloads at firewall level is essential. Although infection by email is much more prevalent, infection by a file that a user has downloaded from a website is just as dangerous and damaging. Most organizations do not protect themselves against this threat. The freeware version of GFI DownloadSecurity allows companies with little or no budget for this type of security to at least install single antivirus engine scanning, thereby benefiting from some protection against infected or malicious downloads," said Nick Galea, GFI CEO.
"Of course, for better security, companies should also scan downloads for unknown Trojans, since Trojans are well suited for distribution by web,” Mr. Galea explained. “The full version of GFI DownloadSecurity offers this facility through its Trojan & Executable Scanner, and the trial version enables users to experience the benefits of this additional layer of defense.”
The recent ZeroPopUp Trojan proved how easily a Trojan can be distributed via the Web. The Trojan was advertised in a spam broadcast that enticed users to download it, describing it as a free product that would block pop-up ads. Once installed, the Trojan sent a mail to everybody in the infected user's address book promoting the ZeroPopUp URL and software, thereby using social engineering to encourage other users to download it too. While this Trojan was simply used to promote software, the same strategy could easily have been used to cause damage to the downloader's network. Further information about Trojans, how they work and the need for special Trojan detection technology is available at http://www.gfi.com/whitepapers/network-protection-against-trojans.pdf.
About the freeware version
The GFI DownloadSecurity freeware version includes the BitDefender antivirus engine, a fast and flexible virus engine that excels in the number of formats it can recognize and scan. BitDefender is ICSA certified and has won the 100% Virus Bulletin award and the European Information Technologies Prize 2002. GFI DownloadSecurity automatically updates the BitDefender definition files as new ones become available.
It can be downloaded from http://www.gfi.com/dsec/. The download is a trial version of GFI DownloadSecurity (15Mb), however the single antivirus engine feature remains active as freeware after the 60-day evaluation period. The product manual can be viewed online or downloaded at http://www.gfi.com/dsec/dsec6manual.pdf. User-to-user support is available at http://forums.gfi.com.
About GFI DownloadSecurity 6 for ISA Server (commercial version)
GFI DownloadSecurity for ISA Server enables administrators to assert control over what files users download from HTTP and FTP sites, and content checks all downloads for malicious content and viruses. GFI DownloadSecurity includes multi antivirus engines, to guarantee higher detection rate and faster response to new viruses; the ability to quarantine downloads based on file type and user; a Trojan & Executable Scanner, to detect malicious executables; network-wide blocking of Java applets and ActiveX controls; seamless integration with Microsoft ISA Server; and more.
Users do not notice GFI DownloadSecurity until they download a file: Then GFI DownloadSecurity displays a download progress dialog box and the download proceeds. Once the download is complete, GFI DownloadSecurity scans the file for viruses. If the file has no viruses and does not trigger a rule set by the security administrator, the user receives it immediately. If the file triggers a rule, it is put into quarantine for administrator approval. Once approved, the file is sent to the user as an email attachment or link. If the file is rejected, the user is notified. More product information and the freeware version can be found at http://www.gfi.com/dsec/.
GFI is a leading software developer that provides a single source for network administrators to address their network security, content security and messaging needs. With award-winning technology, an aggressive pricing strategy and a strong focus on small-to-medium sized businesses, GFI is able to satisfy the need for business continuity and productivity encountered by organizations on a global scale. GFI has offices in the US, Malta, UK, Hong Kong and Australia which support more than 200,000 installations worldwide. GFI is a channel-focused company with over 10,000 partners worldwide. GFI is a Microsoft Gold Certified Partner. More information about GFI can be found at http://www.gfi.com.