{"id":404825,"date":"2020-12-22T16:18:34","date_gmt":"2020-12-22T21:18:34","guid":{"rendered":"http:\/\/www.marketnewsdesk.com\/?p=404825"},"modified":"2020-12-22T16:18:34","modified_gmt":"2020-12-22T21:18:34","slug":"qualys-researchers-identify-7-million-vulnerabilities-associated-with-solarwinds-fireeye-breach-by-analyzing-anonymized-vulnerabilities-across-worldwide-customer-base","status":"publish","type":"post","link":"https:\/\/www.marketnewsdesk.com\/index.php\/qualys-researchers-identify-7-million-vulnerabilities-associated-with-solarwinds-fireeye-breach-by-analyzing-anonymized-vulnerabilities-across-worldwide-customer-base\/","title":{"rendered":"Qualys Researchers Identify 7+ Million Vulnerabilities Associated with SolarWinds\/FireEye Breach by Analyzing Anonymized Vulnerabilities across Worldwide Customer Base"},"content":{"rendered":"
\n

Qualys offers free 60-day integrated Vulnerability Management, Detection and Response service to help organizations quickly assess devices impacted by SolarWinds Orion vulnerabilities, SUNBURST Trojan detections, and FireEye Red Team tools, and to remediate and track results via dynamic dashboards<\/h2>\n

PR Newswire<\/p>\n<\/p><\/div>\n

\n

\n FOSTER CITY, Calif.<\/span>, Dec. 22, 2020<\/span> \/PRNewswire\/ —\u00a0Qualys, Inc<\/a>.\u00a0(NASDAQ:\u00a0QLYS), a pioneer and leading provider of cloud-based security and compliance solutions,\u00a0today announced its research team, using the Qualys Cloud Platform, has identified 7.54\u202fmillion\u202fvulnerabilities related to\u202fFireEye\u202fRed Team assessment tools and compromised versions of\u00a0SolarWinds\u00a0Orion, tracked as Solorigate or SUNBURST, across its 15,700-member customer base.<\/p>\n

\n

\n
\n \"Qualys
\n <\/a>\n <\/p>\n<\/p><\/div>\n

Of the vulnerabilities identified, researchers noted that across 5.29 million unique assets most are related to the FireEye Red Team tools. These findings highlight the scope of the potential attack surface if these tools are misused. The research team further identified that 99.84% of the 7+ million vulnerability instances are from eight vulnerabilities in Microsoft software that have patches available.<\/p>\n

To help mitigate risk and exposure from this breach, Qualys is providing IT and security teams free 60-day access to its integrated Vulnerability Management, Detection and Response service, which leverages the power of the Qualys Cloud Platform. <\/p>\n

More information can be found on the Qualys advisory blog at qualys.com\/solarwinds-fireeye-advisory-blog-post<\/a>.<\/p>\n

“The Qualys free solution provides much-needed visibility and response\u00a0in a single app\u00a0that many need at a time when IT and security organizations around the world are scrambling to shore up their systems,” said Frank Dickson<\/span>, program vice president, Security and Trust at IDC.\u00a0“Qualys’ solution draws from its native security and compliance platform to deliver vulnerability management, detection and response, the ability to detect malware, and the integrity of files. It is great solution, easy to use and deploy,\u00a0and it’s hard to beat as it is free.”<\/p>\n

“The scope of this nation-state attack is massive, as overnight a widely used and trusted piece of software turned into known malware,” said Sumedh Thakar<\/span>, president and chief product officer at Qualys. “Since its discovery, Qualys teams have been actively researching the issue and helping customers assess their environments. The good news is that nearly all of the CVE’s are patchable, and we’ve made this solution available to the industry so they can immediately work to protect themselves\u00a0from being exploited by these vulnerabilities.”<\/p>\n

Qualys is offering a fully functional license free for 60 days. The license enables full situational awareness, detection, and remediation to reduce risk and exposure from the SolarWinds and FireEye breaches. It includes: <\/p>\n