eEye Digital Security » News

News

Vulnerability Management Leader eEye Digital Security to Testify Before Congressional Subcommittee on Security Threats to Public and Private U.S. Infrastructure

Chief Hacking Officer to Testify Before House Subcommittee on Organizational Strategies for Vulnerability Management

(ALISO VIEJO, CA) June 2, 2004 — eEye® Digital Security, a leading developer of vulnerability management software solutions for enterprise security, today announced that the company’s co-founder and chief hacking officer, Marc Maiffret, has been asked to testify before the House Subcommittee on Technology, Information Policy, Intergovernmental Relations and the Census, at its oversight hearing on “Information Security – Vulnerability Management Strategies and Technology.” The hearing, slated for Wednesday, June 2, 2004 at 1:30 p.m. Eastern Time, will address the committee’s primary concern that “…both throughout the federal government and the private sector, systems are not consistently evaluated and updated, thereby creating and potentially exacerbating even known vulnerabilities.”

eEye's vulnerability research team, which conducts research contributing to eEye’s vulnerability management product development efforts, has discovered more critical security vulnerabilities than any other organization in the last three years. As the team’s leader, Maiffret has been asked to discuss the challenges of managing vulnerabilities within large organizations, as well as strategies to reduce and mitigate the risks associated with such vulnerabilities. This hearing represents the third time that eEye has been asked to testify before Congress on security issues.

“It is reassuring that Congress has chosen to elevate the discussion surrounding vulnerabilities within large organizations, as they represent one of the biggest risks to U.S. infrastructure today,” stated Marc Maiffret, eEye’s chief hacking officer. “I am flattered to be selected to testify before Congress once again and share our growing knowledge of successful strategies for vulnerability management.”

eEye Digital Security is a leading vulnerability management software developer that helps its enterprise customers mitigate security vulnerabilities found in software and those related to incorrect system configurations, as well as security issues related to policy and compliance. In operation since 1998, eEye’s proactive approach to enterprise security – eliminating vulnerabilities rather than thwarting attacks – has resulted in over 7,500 customer deployments worldwide. Companies using eEye’s vulnerability management software includes some of the largest in the world, including Citigroup, Continental Airlines, IBM, Viacom and thousands more. In addition, many government entities have incorporated eEye solutions into their information security infrastructures.

eEye's research team discovered numerous critical vulnerabilities including those that were eventually exploited by the Code Red, Sasser and SQL Sapphire worms, as well as the ASN.1 and RPC DCOM vulnerabilities. This research directly contributes to a growing portfolio of vulnerability management software solutions that dramatically mitigate enterprise risk from attack and significantly reduce the likelihood that potential attacks can penetrate corporate networks and cause harm and financial loss. eEye’s flagship product, the Retina® Network Security Scanner, leads the industry in accuracy, its ability to scan enterprise networks without crashing systems and its open, modular architecture, making it the easiest product on the market to deploy, use and integrate with existing enterprise applications.

The oversight hearing on “Information Security – Vulnerability Management Strategies and Technology” will take place Wednesday, June 2, 2004 at 1:30 p.m., in Room 2154 of the Rayburn House Office Building. Interested parties can view Mr. Maiffret’s testimony at eEye’s website.

About eEye Digital Security

eEye Digital Security® is pioneering a new class of security products:integrated threat management. This next-generation of security detects vulnerabilities and threats, prevents intrusions, protects all of an enterprise’s key computing resources, from endpoints to network assets to web sites and web applications, all while providing a centralized point of security management and network visibility.eEye’s research team is consistently the first to identify new threats in the wild, and our products leverage that research to deliver on the goal of making network security as easy to use and reliable as networking itself. Founded in 1998 and headquartered in Orange County, California, eEye Digital Security protects more than 9,000 corporate and government organizations worldwide, including half of the Fortune 100. For more information, please visit www.eeye.com

About eEye Digital Security

Primary Agency Contact

EMEA Agency Contact

Corporate Contact