GFI LANguard N.S.S. 6 now detects wireless nodes and suspicious USB devices

January 17, 2005 - 12:00

GFI LANguard N.S.S. 6 now detects wireless nodes and suspicious USB devices


Includes enhanced Linux vulnerability checking & enables creation of custom Linux checks

London, UK – GFI today announced the release of a new version of its popular network security scanner, GFI LANguard Network Security Scanner (N.S.S.) 6. Version 6 can detect all machines and devices connected to the network via a wireless link. It can also alert administrators when suspicious USB devices are connected to the network. Additionally, the new version includes further Linux security checks and the ability to create custom Linux checks via its inbuilt SSH module.

Wireless node/link detection
Wireless links can pose a tremendous security risk. In a recent break-in at an Israeli post office/bank branch, for example, offenders stole the equivalent of US$13,000 by connecting a wireless gateway to a switch inside the outlet, through which they then remotely accessed the system to transfer money to newly opened accounts.  Similarly, in the US, the Lowe’s home improvement retail chain was robbed of credit card numbers and other information by hackers who accessed the data via a wireless connection at one of the store’s parking lots. Detecting unauthorized and possibly unsecured wireless links is therefore a must. Through an advanced algorithm, GFI LANguard N.S.S. 6 can detect machines and devices which are connected to the network via a wireless link.

"The detection of wireless devices is often overlooked by administrators. However, rogue or unauthorized access points are inexpensive to buy and simple for users to set up and hide. It is therefore essential for organizations to scan for wireless connections," said Andre Muscat, GFI Product Manager.

USB device scanning
USB (Universal Serial Bus) hubs present a potential security risk – almost any device can be connected to the network, including removable hard disks, digital cameras, wireless access points and more. Such devices can introduce viruses, Trojans, illegal software and so on, or can be utilized by users to take confidential data that they have access to. Administrators have little control over this and should therefore regularly monitor which devices are connected to the network to eliminate unauthorized and dangerous USB devices. GFI LANguard N.S.S. 6 takes the legwork out of this chore by automatically scanning all devices connected to the USB hub, filtering authorized USB devices (e.g., a mouse), and alerting administrators about dangerous or unknown USB devices.

In addition, GFI LANguard N.S.S. can also check that the service of its sister product, GFI LANguard Portable Storage Control, is active. GFI LANguard P.S.C. provides network-wide control of portable storage devices, enabling administrators to control which users can use a USB stick, MP3 player, iPod, floppies and so on.

Includes new Linux vulnerability checks and enables custom Unix/Linux vulnerability checks
GFI LANguard N.S.S. 6 offers an extensive set of Linux vulnerability checks, including new ones such as root kit detection. It now also incorporates an SSH scripting feature that allows administrators to connect to remote Linux/Unix machines and launch scripts. This feature also enables the creation of custom security checks.

Other new features
Version 6’s new features also include the following:
• Displays both Share and NTFS permissions for all shares in the network - allowing administrators to easily check and lock down their shares
• Highly improved network devices reporting
• Supports saving and re-loading of saved scan results to and from database/XML files
• New status monitor through which administrators can monitor the status of scheduled operations like scans and software update deployments
• Improved performance through multithread scan engine
• Several new filtering conditions.
A detailed list of all new features is available at http://kbase.gfi.com/showarticle.asp?id=KBID002242.

About GFI LANguard N.S.S.
GFI LANguard Network Security Scanner (N.S.S.) checks a network for possible security vulnerabilities by scanning the entire network for missing security patches, services packs, open shares, open ports, unused user accounts and more. With this information (displayed in customizable reports), administrators can easily lock down their network against hackers. GFI LANguard N.S.S. can also remotely deploy missing patches and service packs in applications and OS. GFI LANguard N.S.S. is the leading Windows security scanner and very competitively priced. For more information and to download the product, one can visit http://www.gfi.com/lannetscan/.

About GFI
GFI is a leading software developer that provides a single source for network administrators to address their network security, content security and messaging needs. With award-winning technology, an aggressive pricing strategy and a strong focus on small-to-medium sized businesses, GFI is able to satisfy the need for business continuity and productivity encountered by organizations on a global scale. GFI has offices in the US, Malta, UK, Hong Kong and Australia which support more than 200,000 installations worldwide. GFI is a channel-focused company with over 10,000 partners worldwide. GFI is a Microsoft Gold Certified Partner. More information about GFI can be found at http://www.gfi.com.