We keep our eyes and ears peeled on your behalf here at STEALTHbits Headquarters, and we recently overheard some really cool news about an Active Directory project that’s under way (and under wraps). We convinced Adam Laub, VP of Marketing, to sit down with us for just 5 questions about this mystery solution.

Daria: Word on the street has it that there's something called "Interceptor" technology that's coming. What is it?

Adam: How do you guys hear about these things?! I can't say much at this point, but I can tell you that StealthINTERCEPT is a hot new technology that will allow our customers to lock-down Active Directory from unauthorized changes, and to get real-time notifications.

D: What business benefits can users expect?

A: This is part of our larger data governance initiative, which helps our customers take back control of their unstructured data. Active Directory is a key and often overlooked piece of the puzzle. If you're not securing AD, then all you're leaving a door wide open.

D: So when can we expect to see this?
A: Soon! We have test sites running it already. You'll have to stay tuned for details.

D: Is this part of an upgrade to the StealthAUDIT Management Platform?
A: Yes and No. StealthINTERCEPT technology is new and stands on its own, but also integrates with the StealthAUDIT Management Platform.

D: Do you guys practice these vague answers?
A: Absolutely.

D: So how is this real-time technology going to work?
A: Sorry, that's five questions!

We're certainly intrigued. We'll be sure to keep you posted on this blog and in our monthly newsletter as this develops, so stay tuned. This is gonna be big.

Try this: go to your favorite search engine, and type in “high risk share.” Chances are, you’ll get the same thing I did: pages and pages of financial information dealing with risky shares as they pertain to stocks. The definition and even identification of a high risk stock is fairly straightforward (at least in theory). In the IT space, though, high risk shares are much broader in term, and can be difficult to identify (which, in turn, makes them difficult to govern). Unlike a stock market, which appears in a uniform way to all investors in that market, high risk data repositories vary across organizations based on individual access settings, permission needs, departmental requirements, and more.

One way to look at it is in terms of access. If a file or share is accessible by a very large number of users (through well-known security principles like “Everyone,” for instance) the chances increase that it would be considered at “high risk.” At the same time, organizations often purposely leave folders at the top level open because they’re commonly used across the board. So where’s the risk then, exactly?

Risk comes into play when open permissions at the top level filter down through effective rights to permissions several levels below. Because effective rights are difficult to identify (take our effective rights quiz to see how well you do), they can leave sensitive data open to many more people than need or should have access to it.

To learn more about high risk shares, and how to identify and remedy them, watch our STEALTHsession on Controlling the threat of High Risk Shares.

GLEN ROCK, NJ--(November 10, 2010) - STEALTHbits Technologies today announced that its StealthAUDIT Management Platform (SMP) was chosen as a winner in the Best of Connections 2010 awards program in the "Best Windows Product" category by Penton Media's DevConnections. SMP is a comprehensive framework featuring audit, reporting, compliance, and remediation capabilities across the Microsoft computing platform, including solutions for Exchange, ActiveSync, BlackBerry Enterprise Server, Active Directory, SharePoint, Windows Desktop and Server Operating Systems, Windows File Systems, and beyond.

"We are thrilled to have received the 'Best Windows Product' award recognizing StealthAUDIT's ability to answer the toughest IT questions across the Microsoft landscape," said Adam Laub, VP of Marketing and Technical Operations at STEALTHbits. "We're excited to have had the opportunity to showcase our unique approach to Microsoft infrastructure and application management which our customers have found so valuable, and are grateful to the Penton Media team for their acknowledgement of our achievement in this field."

The Best of Connections awards recognize companies based on their innovation, strategic importance to the market, competitive advantage and exceptional value to customers. The winners were chosen from more than 80 nominated products in six (6) categories. The field was narrowed to three finalists in each category. Finalists were interviewed at the DevConnections 2010 conference in Las Vegas, Nevada, November 2-3 to determine the winners in each category. Winners were announced live from the DevConnections 2010 exhibitor's floor at 2 pm on Thursday, November 4.

"Narrowing down the list of nominees to 18 finalists in the six Connections categories was a challenge, considering that we were faced with so many top-tier products and services," said Amy Eisenberg, Executive Editor for Windows IT Pro, "but in the end, we came up with six very deserving winners. We're proud of our selections, and we believe all our finalists and winners represent the best of the best in their categories."

About STEALTHbits Technologies, Inc.
STEALTHbits Technologies, Inc. is an innovative technology leader in the Microsoft Infrastructure and Application Management space. STEALTHbits' StealthAUDIT Management Platform bridges the gap between IT Management and Compliance, providing a unified framework by which to measure, manage, and maintain. STEALTHbits Technologies can be found online at stealthbits.com.

Editorial Contact
Adam Laub
VP, Marketing
+1.201.447.9308

Related Articles
Congratulations to the Best of Connections 2010 Winners! by Jason Bovberg, Windows IT Pro Magazine

GLEN ROCK, NJ and RESTON, VA--(Marketwire - March 2, 2011) - STEALTHbits Technologies, a leader in the IT security and compliance software space, and Carahsoft Technology Corporation, the trusted Government IT solutions provider, announced a partnership today that will enable Carahsoft to add the award-winning StealthAUDIT Management Platform (SMP) to its Intelligence Solutions offerings. The partnership will expand on STEALTHbits' decade of success in the private sector, where they provide innovative data collection, analysis, reporting, and remediation tools to the world's top organizations, including Fortune 500 companies and leading Wall Street firms.

"We are very excited about the opportunity to partner with Carahsoft in bringing a great solution into the US Public Sector," said David Gordon, VP of Business Development at STEALTHbits. "With WikiLeaks and hacker attacks in the headlines weekly, risk mitigation and security within the government space has never been more important than it is today."

SMP features comprehensive solutions spanning the Microsoft infrastructure and application stack, including Shared File Systems, Exchange, Active Directory, SharePoint, BlackBerry and ActiveSync, Desktops and Servers, and more.

"Government agencies are continually improving their efforts to protect the ever-increasing amount of data they must maintain to support their missions," said Craig P. Abod, Carahsoft President. "STEALTHbits' award-winning data security and compliance solutions supports those initiatives by detecting and locking down data access vulnerabilities, and we are pleased to add them to our Cyber Security Solutions portfolio."

About STEALTHbits Technologies, Inc.
STEALTHbits Technologies, Inc. is a leader in the Microsoft Infrastructure and Application Management space. Our mission is to provide solutions to the most difficult business problems across the Microsoft computing platform and beyond by allowing our customers to measure, manage, and understand multiple aspects of their environments using a single unified platform. Learn more at http://www.stealthbits.com.

About Carahsoft Technology Corporation
Carahsoft Technology Corp. is the trusted Government IT solutions provider. As a top-ranked GSA Schedule Contract holder, Carahsoft serves as the master government aggregator for many of its best-of-breed vendors, supporting an extensive ecosystem of manufacturers, resellers, and consulting partners committed to helping government agencies select and implement the best solution at the best value. Carahsoft is consistently recognized by its partners as a top revenue producer, and is listed annually among the industry's fastest growing firms. Visit us at http://www.carahsoft.com.

SharePoint is growing more and more prevalent in organizations, and offers a great way for users to interact and share content remotely for collaboration on projects. With the increasing use of SharePoint, however, SharePoint admins are facing the same issues that plagued (and, in many cases, continue to plague) administrators of the distributed file system. Increasingly, sites are growing stale, violating ethical wall regulations, and being deemed "high risk" in terms of access and permissions settings.

Each of these issues have their own steps for mitigating the risk associated with them, which we'll discuss in more detail below, but it's worth noting that what they all have in common is the need for data that will help identify the problem. After all, you can't fix it if you don't know that it's broken.

High Risk Repositories
Sites classified as being at high risk are those that are effectively open to your entire organization. This happens because site managers can assign trustees, who can, in turn, assign permission that expose content to too many people. Some examples of these kinds of permissions are Authenticated Users, Domain Users, and Anonymous Logons. When identifying high risk repositories, it's important to examine effective rights; just because a user does not have access through one set of permissions does not mean that all of their assigned permissions will keep them from being able to read, write, modify, or even delete content. Explore how users have access to identify what, exactly, is at risk, and then work to lock down permissions.

Controlling Stale Content
Stale content in SharePoint is similar to stale content within Active Directory and the File System: it hasn't been modified in a long time. Continuous monitoring is required to determine the last time a site was used, and working together with the data custodians who created the sites that you have identified as stale is important to ensure that it's okay to remove them. Keeping stale sites out of your SharePoint farms will help with simpler management. It's important to note here that, if a SharePoint site has child sites, SharePoint won't let you delete the parent site. This is why it's especially important to reach out to probable owners of sites to gather more information before proceeding.

Ethical Walls
Ethical walls differ by organizations, and apply to most collaborative file systems, including SharePoint. The need for ethical walls stems from the requirement to separate the data that discrete groups within the organization can see. Maybe your organization wants to keep the engineering department's plans for product upgrades out of the hands of the sales team, or your finance team shouldn't have access to the investment team's quarterly assessments. Whatever the reason, one way to identify if ethical wall violations occur is to see where SharePoint group have common access, then corroborate that access within Active Directory to ensure that trustees can only see what they are supposed to.

To learn more about how SMP makes managing SharePoint easy, please view our Controlling SharePoint Sites STEALTHsession, or request a fully-functional product trial.

We talk about governance and compliance a whole lot on this blog, and for good reason. Across the board, IT security is a difficult undertaking, and it's becoming more challenging by the day. For one thing, security threats from outside of the organization have only increased in the last few years, with hackers becoming more sophisticated. From the glamorization of hacking in popular culture (see Girl With A Dragon Tattoo hacker heroine Lisbeth Salander) to 'hacking kits' available online (see Business Day on 1/18/2011), the constant threat of external attack is front and center on a daily basis. Perhaps even more dangerous, the threat from inside (like the alleged catalyst of Wikileaks, for instance) is alive and well, and often gets overlooked as organizations scramble to defend their perimeters.

The process for securing data and systems starts with protecting your resources by eliminating (or, at the very least, controlling) vulnerability, continues with active monitoring to detect deviations from norms and standards, and culminates with corrections for exceptions. Underlying all of these processes are industry-centric compliance regulations that ensure that all organizations in a particular vertical are adhering to the same strict security standards.

IT departments follow these regulations in an effort to pre-empt attacks and plug holes. Unfortunately, the tedious nature of the checkpoints for particular compliance standards makes them difficult for administrators to adhere to, potentially leaving environments fatally vulnerable. The problem stems from the fact that the data (detailed accounts of access, permissions, changes, etc. for users and groups, as well as patch and security configurations for systems) is difficult to come by. Extrapolate that difficulty by hundreds or even thousands of users and boxes, and millions and billions of files, and you begin to see the pain point. What's more, even an exceedingly complex query may only be answering one of many compliance checkpoints from standards councils like PCI, HIPAA, NERC, and SOX.

The key to industry compliance, then, is a way to collect data once, and then use that data to check against an entire list of requirements. This approach will allow administrators to shift from data-gatherers to pro-active threat blockers. After all, discovering that Lisbeth Salander has rights to your system is only half the battle.

For more about our solution to the compliance-adherence problem, check out this video on the Compliance Baseline Manager.

Microsoft SharePoint has become a leading solution for enterprise collaboration and document management. SharePoint supports a decentralized approach to administration, allowing organizations to assign Site Collection Administrators and Site Owners responsibilities for managing subsets of SharePoint content. While this delegation of responsibility may streamline the collaborative process in ways, it comes at a cost. Without proper governance plans in place within your SharePoint environment, SharePoint sites can begin to sprout up uncontrollably and may only be used for a matter of weeks, if at all. Eventually, you can end up with a chaotic SharePoint farm with content and permissions completely out of control and almost impossible to remediate.

Being able to take back control of your SharePoint environment can be a daunting task, but it must be done to have an efficiently managed SharePoint farm with proper governance in place. This is important to do before performing a SharePoint migration from SharePoint 2007 to SharePoint 2010. You wouldn't move every piece of junk from your garage and attic into a new house without first sorting through them and only boxing up what you needed to bring with you. The same can be said for SharePoint. If your SharePoint farm is out of control with site, content and permission sprawl, you must go through and decide what you need to bring with you to your new SharePoint farm, and ensure it is neatly packaged with the proper permissions wrapped around it before moving it over. Even if you are not migrating to a new farm, if you are going to implement a governance plan (which is highly recommended) you need to get your farm in order before doing so.

The StealthAUDIT Management Platform is a great tool that provides the means to gain complete insight into your SharePoint environment in order to effectively take control and enforce your governance plan. Even the best SharePoint governance plan can only help you control your SharePoint environment after it has been enforced. SMP for SharePoint provides invaluable information about your SharePoint content, activity, permissions and infrastructure that is not only necessary BEFORE implementing a governance plan or performing a migration, it is vital for continuous monitoring of your environments to ensure the governance plan is being effective.

WikiLeaks has spotlighted the susceptibility of public and private sector entities to fall victim to disclosures of confidential information. The fact of the matter is, if WikiLeaks gets shut down tomorrow, there are thousands of others like them.

The only way to address risks of this nature is to understand and lock down the permissions on the file system and other shared data repositories within companies and agencies. However, a typical file system at a Fortune 100 financial institution can contain trillions of permissions. As a result, the "Who? What? Where? and When?" are particularly difficult questions to answer due to 20+ years of file system management, migrations, natural organizational turnover, mergers and acquisitions, domain consolidations, and the sheer volume of data.

All of these situations cause massive permission sprawl in the file system, leaving organizations exposed to unauthorized access and disclosure.

Yesterday, in response to WikiLeaks, President Obama mandated that all agencies ensure that workers have access exclusively to what is necessary for their jobs. OMB Director Jack Lew said there is a zero tolerance policy under the new directive. There are ways to mitigate the associated risks of leakage of sensitive, confidential, or proprietary data; an essential first step is to understand who has access to the data, who is accessing the data, and who no longer needs privileges to specific data repositories.

Enforcing least privilege access is a daunting task at any sized organization, but taking a few initial steps to clean up and enforce permission standardization across all data repositories goes a long way towards reducing exposure of data to internal threats. Simple steps towards securing the infrastructure include controlling high risk or open repositories, removing individualized access in favor of alignment with group / role-based access, reducing permissions sprawl, and enforcing ethical walls.

Glen Rock, NJ (Dec. 2, 2010) STEALTHbits Technologies, a leader in the data security and compliance space, announces the release of Version 2.0 of their Data Governance software solution set. Helping organizations address critical security risks such as the recent WikiLeaks incident, the StealthAUDIT Management Platform for Data Governance arms administrators with comprehensive and scalable user activity monitoring, security permissions and assessment tools, and advanced auditing, reporting, and resolution features.

Version 2.0 of the SMP for Data Governance solution set boasts powerful new features geared towards addressing data loss prevention and permissions management, which can prevent internal leaks such as the recent security breach of 250,000 classified US diplomatic cables. Administrators can now pinpoint who has and is using access to files, when they are accessing them, how they received permissions, where shares are vulnerable, and much more. In addition, tighter integration with common storage devices such as NetApp Storage Controllers and Windows File Systems, advanced stale data reduction techniques, and a streamlined architectural approach for high-volume environments, uniquely position SMP to identify and resolve critical security issues in any organization.

"IT admins in even small and medium-sized organizations can be managing what equates to trillions of permissions settings," said Chris Olsen, CISM, VP of Product Management at STEALTHbits. "With many companies dealing with thousands of employees, decades of file system management, and organizational changes, the sheer volume of data makes internal data governance a nearly impossible endeavor."

SMP spans the entire Microsoft computing environment from Active Directory and the File System to Exchange, SharePoint, and beyond. Detailed data collection combined with built-in business intelligence make SMP ideal for detecting and locking down data access vulnerabilities.

"The recent WikiLeaks scandal has made companies realize just how vulnerable their data is. While many organizations spend the majority of their security resources on protecting their perimeter, they often overlook the most prolific threat: insiders like the one that caused the recent government leak. Every organization has individuals that have access to data they shouldn't have access to. Our customers have been leveraging SMP for years to discover and address those kinds of security issues. We've dedicated over a year to Version 2.0, and this release could not be more timely. SMP now goes even further to help our customers understand the "Who? What? Where? and When?" across their most critical data," said Steve Cochran, CEO at STEALTHbits Technologies.

About STEALTHbits Technologies, Inc.

STEALTHbits Technologies, Inc. is an innovative technology leader in the Microsoft Infrastructure and Application Management space. STEALTHbits' StealthAUDIT Management Platform bridges the gap between IT Management and Compliance, providing a unified framework by which to measure, manage, and maintain. STEALTHbits Technologies can be found online at stealthbits.com.