Spring World 2017

Conference & Exhibit

Attend The #1 BC/DR Event!

Bonus Journal

Volume 29, Issue 5

Full Contents Now Available!

Jon Seals

Jon Seals

SAN FRANCISCO – With network security top of mind, businesses are nearly two times more concerned with losing private data (47 percent ) than hackers disrupting their systems (26 percent), according to the 2016 Network Security and Data Privacy Study, released today by Wells Fargo Insurance, part of Wells Fargo & Company (NYSE: WFC). Misuse of technology among employees also emerged as a new, growing threat (seven percent), while network viruses and disruption of operations fell slightly to less than 10 percent from 2015.

The study also found that there is a growing need for companies to improve employee education and training on data security. Two in 10 companies do not have an employee awareness training program, while 15 percent don’t require any training for employees.

“It’s surprising that businesses are not more concerned with employee misuse of technology —what I like to call the human factor,” said Dena Cusick, national practice leader with Wells Fargo Insurance’s Technology, Privacy and Network Risk National Practice (PDF). “Cyber risk management is first and foremost about education. Informing and regularly training employees on security protocols and incident response plans is critical for businesses today.”

The study revealed the top eight network security and data privacy concerns among businesses this year:

1.   Loss of data – 47%   (45% in 2015)
2.   Hackers – 26%   (25% in 2015)
3.   Security breaches – 26%   (20% in 2015)
4.   Maintaining reputation – 9%   (4% in 2015)
5.   Viruses – 7%   (10% in 2015)
6.   Software vulnerabilities – 7%   (7% in 2015)
7.   Employee misuse of technology – 7%   (0% in 2015)
8.   Other – 7%   (13% in 2015)

In addition to network and data breaches, companies face another imminent threat— imposter fraud, a new twist on phishing scams where a fraudster gains access to the email account of a company’s senior executive and then requests that a payment be made to a specific bank account. One in five large companies surveyed has been a target, and the incidence is even higher for companies with more than 2,000 employees or $500 million or more in revenue. Of those victimized, many of the businesses suffered a financial loss, which was often more than $500k.

“Every organization, regardless of size, needs to make cybersecurity a priority within their business,” added Meredith Schnur, senior vice president of the professional risk practice at Wells Fargo Insurance. “I handle five-to-10 incidents each week from clients who are not well-known brands. No organization is immune.”

The second-annual Network Security and Data Privacy Study analyzed trends of network security and data privacy issues among 100 decision makers at companies with $100 million or more in annual revenue.

About the Wells Fargo Insurance Technology, Privacy and Network Security Practice

Wells Fargo’s Technology, Privacy and Network Risk National Practice (TPN) (PDF) helps customers with professional liability, technology errors and omissions, media liability, network security, and privacy related lines of coverage. TPN brokers provide consultative services, market negotiations, policy analysis and placement, policy administration, claims advocacy services, and assist with loss control initiatives.

About Wells Fargo Insurance

Named one of the top 10 insurance brokers in the U.S. by Business Insurance [1], Wells Fargo Insurance provides solutions for a wide range of customers, including retail consumers, high net worth individuals, small businesses, as well as middle market and large corporate customers. Wells Fargo Insurance writes or places $11 billion of risk premiums annually in property, casualty, benefits, international and personal lines.

[1] 2016 Ranking includes Wells Fargo Insurance Services USA, Inc., Wells Fargo Insurance, Inc., and Rural Community Insurance Company

About Wells Fargo

Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with $1.9 trillion in assets. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, insurance, investments, mortgage, and consumer and commercial finance through more than 8,600 locations, 13,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in 36 countries and territories to support customers who conduct business in the global economy. With approximately 268,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 27 on Fortune’s 2016 rankings of America’s largest corporations. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Wells Fargo perspectives are also available at Wells Fargo Blogs and Wells Fargo Stories.

This material is for informational purposes and is not intended to be exhaustive nor should any discussions or opinions be construed as legal advice. Contact your broker for insurance advice, tax professional for tax advice, or legal counsel for legal advice regarding your particular situation.

Products and services are offered through Wells Fargo Insurance Services USA, Inc., a non-bank insurance agency affiliate of Wells Fargo & Company, and are underwritten by unaffiliated insurance companies. Some services require additional fees and may be offered directly through third-party providers. Banking and insurance decisions are made independently and do not influence each other.

©2016 Wells Fargo Insurance Services USA, Inc. All rights reserved.

Patches Released by Veritas

SAN ANTONIO – Digital Defense, Inc. (DDI), a leading provider of managed security risk assessments, disclosed the discovery of two security vulnerabilities found in Veritas’ Infoscale Operations Manager. The vulnerabilities allow user access when the software is installed on Linux or as SYSTEM when installed on Windows. If exploited, a cybercriminal could potentially take full control of the managed hosts, gaining access to sensitive data and causing significant disruption to an organization’s operations.

DDI's Vulnerability Research team discovers Zero Day on Vertias Infoscale Operations Manager.

Tweet this

Veritas was swift in its collaboration with DDI and response with patches to the system issued today. It is critical for organizations to immediately apply the patches released by Veritas. For specific instructions on how to obtain and apply the update, contact Veritas technical support.

About the Vulnerabilities

Details surrounding the vulnerabilities are available on the DDI website. Additionally, DDI’s patented scanning technology is capable of detecting all of these vulnerabilities with explicit network tests for the affected network services. Free scans are available.

Digital Defense Research Methodology and Practices

DDI’s Vulnerability Research Team (VRT) regularly works with organizations in the responsible disclosure of zero-day vulnerabilities. The expertise of DDI’s VRT, when coupled with the company’s next generation hybrid cloud platform, FrontlineVulnerability Manager, enables our early detection capabilities. When zero-days are discovered and internally validated, our VRT immediately contacts the IT platform supplier to notify the organization of the new finding(s) and then VRT assists, wherever possible, with the IT platform supplier’s remediation actions.

“The strength of our talent and technology continues to be a differentiator for our organization,” states Larry Hurtado, DDI president and CEO. “The diligence of our team has resulted in the swift identification and notification of vulnerabilities that could threaten the security of organizations across the globe.”

About Digital Defense

Founded in 1999, Digital Defense, Inc. (DDI) is a trusted provider of managed security risk assessment solutions, protecting billions of dollars in assets for clients around the globe, including those in highly regulated industries such as healthcare, financial and retail; as well as those entrusted with sensitive data, such as legal and energy sector members. DDI’s unique Vulnerability Management as a Service model delivers consistently accurate vulnerability scanning and penetration testing, while its security awareness training promotes employees’ security-minded behavior. DDI security solutions are highly regarded by industry experts, as illustrated by the company’s top 25 ranking (#21) in Cybersecurity Ventures’ list of the World’s 500 Hottest Cybersecurity Companies, as well as inclusion in CSO Outlook’s Top 10 Network Security Companies and CIO Review’s 20 Most Promising Cyber Security Solutions. Contact DDI at 888-273-1412 or digitaldefense.com; and connect with us on LinkedIn, Twitter and Blog.

Digital Defense and the Shield Logo are Registered Service Marks of Digital Defense, Inc. All other trademarks are the property of their respective owners.

Leading National Home Loan Provider Augments VPLS Network with Broadband to Minimize Downtime and Deliver a Consistent User Experience

SANTA CLARA, Calif. – Silver Peak, the global leader in broadband and hybrid WAN solutions, today announced Veterans United Home Loans headquartered in Columbia, Mo., a national VA Home Loan lender, has successfully deployed the Silver Peak Unity EdgeConnect SD-WAN solution to fortify its current Virtual Private LAN Services (VPLS) Ethernet network across its 30+ locations. With Silver Peak, Veterans United can now fully leverage existing underutilized broadband connectivity to prevent brownouts and mitigate lack of service issues.

@veteransunited augments their MPLS deploying @silverpeak Unity EdgeConnect SD-WAN +Boost https://www.silver-peak.com/news/press-releases/sd-wan-customer-veterans-united

Tweet this

Like many high-growth geographically distributed enterprises, Veterans United Home Loans relies on the consistency of network performance and ability to quickly scale to maintain a successful business model. After several bouts with brownouts due to lapses in VPLS performance, Veterans United evaluated a range of SD-WAN solutions that would meet their zero brownout tolerance needs and offer the performance, security and resiliency required to deliver the agility their high-touch business model demands. Armed with their own WAN emulator, the Veteran’s United IT team was able to simulate production network scenarios, including brownouts and network interruptions to fully test and validate SD-WAN solutions.

Based on the internal test results of the Silver Peak EdgeConnect solution, Veterans United quickly landed on an SD-WAN vendor that checked all of the boxes on its requirements list, including the ability to fully utilize existing broadband connectivity and classify network traffic in alignment with business intent. By augmenting the current VPLS network with EdgeConnect, Veterans United realized the full potential of its broadband connectivity and is experiencing an unparalleled level of network performance and consistency that enables loan officers to service customers efficiently and effectively across all locations.

“Silver Peak’s EdgeConnect SD-WAN solution has afforded us the flexibility we need to segment applications and prioritize performance across our network in alignment with business intent,” said Gary Lee, Chief Technology Officer of Veterans United. “We have a limited threshold for error when it comes to the ability to service our borrowers, network performance and resiliency has proven to be the foundation of ensuring we are effective and successful.”

Veterans United Home Loan’s decision to deploy Silver Peak was not only rooted in the performance of the company’s flagship SD-WAN solution, but the ability to simply and flexibly apply incremental performance by deploying Unity Boost WAN optimization. Unity Boost gives Veterans United the unique ability to apply even higher performance standards to business critical applications like voice, thereby ensuring a predictable and consistent user experience delivered on a single device, when and where the customer needs it.

“Veterans United Home Loans is the perfect example of a geographically distributed enterprise that simply needed a hybrid approach to building a better WAN,” added Silver Peak SVP and CMO, John Vincenzo. “Veterans United is not alone as most of our customers are quickly coming to the realization that network performance, consistency and reliability are critical to achieving greater business agility while virtually eliminating the business impact and costs associated with network interruptions and outages.”

Unlike other SD-WAN solutions that focus simply on enabling enterprises to leverage Internet connectivity, Silver Peak delivers a level of broadband quality of service that increases the reliability and security customers expect from traditional private line connections. With EdgeConnect as the foundation for an SD-WAN, distributed enterprises can improve the resiliency of their WAN, dynamically balance traffic across multiple paths and increase application performance over any source of connectivity.

About Veterans United Home Loans

Based in Columbia, Mo., the national lender financed more than $7.3 billion in loans in 2015. Its mission is to help Veterans and service members take advantage of the home loan benefits earned by their service. In 2016, Veterans United was named No. 30 on the Top 100 Best Companies to Work For by Great Place to Work and Fortune. The company’s employee-driven charitable arm, Veterans United Foundation, is committed to enhancing the lives of Veterans and military families nationwide by focusing on supporting military families and nonprofit organizations that strengthen local communities. Veterans United Home Loans and its employees have given more than $20 million to the Foundation since its founding in November 2011. Learn more at EnhanceLives.com.

About Silver Peak

Silver Peak is the global leader in broadband and hybrid WAN solutions. Silver Peak offers a complete range of best-in-class hardware, software and cloud-based WAN solutions that provide secure and reliable virtual overlays to connect users to applications with the flexibility to use any combination of underlying transport without compromising application performance. This results in greater business agility and lower costs. More than 2,000 globally distributed enterprises have deployed Silver Peak broadband and hybrid WAN solutions across more than 75 countries. Learn more at www.silver-peak.com.

WESTFORD, Mass. – NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT), a leading provider of business assurance – a powerful combination of service assurance, cybersecurity, and business intelligence solutions – today announced the availability of its next-generation, real-time information platform called the InfiniStreamNG™. The InfiniStreamNG delivers unprecedented scalability and flexibility in multiple form factors and deployment options: virtual, software and hardware appliances. Both enterprise and service provider customers can leverage InfiniStreamNG in data center, cloud, and hybrid infrastructures, providing seamless, end-to-end visibility, which can dramatically accelerate their digital transformation initiatives. The new platform enables NETSCOUT to elevate its value proposition and expand its total addressable market (TAM). With the InfiniStreamNG, customers can leverage their investment in NETSCOUT solutions, traditionally made by network operations teams, to encompass all aspects of IT and security operations across the enterprise, public sector, and service provider markets.

“A long-time pioneer in the use of real-time network traffic intelligence, NETSCOUT has made this most accurate representation of system activity available to support an entire new generation of carrier, web, and enterprise applications”

Tweet this

The InfiniStreamNG was designed with a revolutionary new architecture that “mines” IP traffic intelligence in real time, to deliver timely, accurate and actionable information to service assurance, cybersecurity, and business intelligence applications on a single platform for the first time in the industry. This new, open architecture leverages an advanced and extended version of NETSCOUT’s patented Adaptive Service Intelligence™ (ASI) technology, now termed ASI Plus, to seamlessly incorporate technologies from the Danaher Communications acquisition, and facilitate support for a wider range of new analytic software from NETSCOUT, from strategic partners and from other third parties. As a result, the InfiniStreamNG is positioned to serve as the industry’s most versatile real-time metadata technology.

“Today’s most successful and innovative companies, both in the enterprise and the carrier sector, realize that the flawless delivery of digital services, agile deployment, and cost-effective operations require real-time, actionable intelligence,” said Anil Singhal, co-founder, president and chief executive officer, NETSCOUT. “Three years ago, we saw the opportunity to leverage IP convergence to provide scalable, real-time access to the mission-critical data needed to drive our customer’s digital initiatives. Since then, we have made significant investments in both organic innovation and strategic acquisitions to capitalize on this massive opportunity.”

Singhal noted, “Our InfiniStreamNG is a powerful ‘anyware’ platform that elegantly and seamlessly integrates NETSCOUT’s core ASI technology with the key technologies we obtained through our acquisition of Danaher’s Communications business. In just one year since completing this acquisition, we have delivered a modern, platform-agnostic, and highly cost-effective solution that doesn’t require costly middleware due to our smart data approach for processing, storing and accelerating the collection and analysis of wire data. This real-time analytics platform, harnessing the full power of IP intelligence, will accelerate our customers’ digital transformation initiatives, placing NETSCOUT at the heart of the success of their rapidly changing digital business.”

“A long-time pioneer in the use of real-time network traffic intelligence, NETSCOUT has made this most accurate representation of system activity available to support an entire new generation of carrier, web, and enterprise applications,” said Zeus Kerravala, founder and principal analyst, ZK Research. “This high-quality data, which started out serving mostly network performance management uses, now feeds multiple analytics stacks including service assurance, application performance management, business intelligence and cybersecurity, at cloud scale. With this new level of deeper visibility and greater control, businesses can have the necessary confidence that they will achieve their intended business outcomes as they transform their information architectures.”

The introduction of this new platform represents the realization of NETSCOUT’s long-held vision of bringing the power of IP intelligence to the mainstream in the industry, to deliver comprehensive business assurance to its customers, encompassing service assurance, cybersecurity and big data applications. This platform supports a broad, multi-dimensional, leadership initiative we announced more than a year ago called “Guardians of the Connected World,” as part of NETSCOUT’s commitment to helping businesses evolve and unlock opportunities to innovate by delivering virtually constant and ubiquitous visibility in the connected world. This is also the first proof point of the combined assets and technologies enabled by NETSCOUT’s strategic acquisition of Danaher Corporation’s Communications Business in mid-July 2015 that included Tektronix Communications, Arbor Networks and the enterprise portions of Fluke Networks. With the wide range of analytics supported by the InfiniStreamNG, customers can leverage this single platform to help them consolidate a myriad of specialized analytics and tools, each of which have relied on separate, dedicated platforms across their technology infrastructures.

The first major phase of new analytic solutions supported by the InfiniStreamNG platform is scheduled for release through the rest of this calendar year. The InfiniStreamNG has been shipping to a number of service provider customers for several quarters and will be available to all customers this month. For more information on NETSCOUT’s business assurance solutions, click here.

NETSCOUT SYSTEMS, INC. (NASDAQ: NTCT) is a leading provider of business assurance – a powerful combination of service assurance, cybersecurity, and business intelligence solutions – for today’s most demanding service provider, enterprise and government networks. NETSCOUT’s Adaptive Service Intelligence (ASI) technology continuously monitors the service delivery environment to identify performance issues and provides insight into network-based security threats, helping teams to quickly resolve issues that can cause business disruptions or impact user experience. NETSCOUT delivers unmatched service visibility and protects the digital infrastructure that supports our connected world. To learn more, visit www.netscout.com or follow @NETSCOUT on Twitter, Facebook, or LinkedIn.

©2016 NETSCOUT SYSTEMS, INC. All rights reserved. NETSCOUT, the NETSCOUT logo, Guardians of the Connected World, Adaptive Service Intelligence, InfiniStream, InfiniStreamNG, nGenius and nGeniusONE are registered trademarks or trademarks of NETSCOUT SYSTEMS, INC., and/or its subsidiaries and/or affiliates in the USA and/or other countries. Third-party trademarks mentioned are the property of their respective owners.

BOSTON – Threat Stack, a leader in cloud-native security and compliance management, announced today that Applause, the global leader in digital testing, selected the Threat Stack Cloud Security Platform™ (CSP) to achieve greater security visibility into its cloud environments. Threat Stack CSP enables Applause to meet the high-level security needs and compliance standards of its industry-leading enterprise customers.

.@applause leverages @threatstack CSP to meet the high #security standards of its industry-leading customers

Tweet this

Applause provides managed testing services for web, mobile, internet of things (IoT) and other digital experiences by harnessing the power of a global community to test on real devices in real locations under real-world conditions. The Applause platform connects its customers with the professional testing community to collect and analyze issues and feedback that brands act on to deliver great digital properties and products. Applause uses Threat Stack CSP’s integrated infrastructure monitoring and vulnerability management capabilities to receive greater context around threats to secure the Applause platform. This level of visibility allows the company to identify and remediate threats before they impact customers. Threat Stack CSP helps Applause meet customers’ compliance regulations and cuts down on the time spent performing security audits.

“We’re an agile technology company that moves fast,” said Thom Kenney, CTO, Applause. “We needed a security solution that would help us manage and address risks while still maintaining that speed. Threat Stack helps us meet the compliance and security needs of our customers without throwing up a bunch of red flags and false positives with no context.”

Threat Stack CSP enables Applause’s cloud infrastructure and operations teams to have a shared role in security monitoring. Alerts are integrated in real-time directly into both teams’ workflows to enable greater collaboration and fast, fully-informed responses.

“We’re excited to partner with Applause to help them meet the high security standards of their client roster,” said Brian M. Ahern, Chairman and CEO, Threat Stack. “We understand Applause’s need to move fast and Threat Stack helps them achieve that speed while also maintaining their security posture.”

For more information on Threat Stack, please visit https://threatstack.com.

About Threat Stack
Threat Stack enables growth-driven companies to scale with confidence by identifying and verifying insider threats, external attacks and data loss in real-time. The only fully integrated, cloud-native continuous monitoring solution that gives customers instant visibility and automatically responds to changes in their environment, Threat Stack provides the coverage needed to run secure and compliant, in all environments, without sacrificing speed and efficiency. For more information, or to start a free trial, visit threatstack.com.