Worm.com

Antivirus Solutions Detect Fewer Than 20% of Targeted Threats When First Discovered in the Wild

ATLANTA — Damballa, Inc., the only Internet security company focused specifically on targeted threats such as BotArmies, today announced findings from their second quarter analysis. As a key tool for organized crime, targeted threats continue to grow in sophistication with an elevated focus on the enterprise network.

"2008 is poised to be the year of the targeted attack," said Paul Royal, Principal Researcher at Damballa. "Targeted threats are attacks that exploit relationships between people, what’s important to them and what they don’t know. We’ve seen enhancements to the structure, format, and presentation of these attacks, which make them more likely to successfully compromise corporate users in and get out of enterprise environments. Today’s targeted attacks evade traditional enterprise security mechanisms and perpetrate malicious activities, such as data exfiltration."

In the second quarter of 2008, Damballa’s research team analyzed a corpus of targeted threats and discovered the following results:

* 40% of the overall targeted threats analyzed give control of enterprise assets to criminals. This is derived from the fact that 50% of targeted threats analyzed use HTTP for communications, which allows for easier criminal control. And of those, almost 80% will steal proxy settings to facilitate successful outbound communication.

* Over 75% of targeted attack Command and Control (CnC) sites are located in Asia, with China being the most dominant location.

* Almost half of the targeted threats analyzed were propagated using PDF files, with Word documents and PowerPoint presentations coming in second and third, respectively.

A recent analysis of antivirus solutions performed using VirusTotal shows that detections of newly discovered targeted attacks average less than 20%. These results follow similar and disturbing trends, which include armies rapidly adapting for self preservation. For example, in January 2007 a large portion of Bobax cannibalized itself to bootstrap Storm. More recently, just a few weeks after being widely discussed in the press, Kraken changed from using a custom protocol with encrypted content to one that uses plaintext HTTP.

Targeted threats no longer encompass malware executables with obvious extensions (e.g., exe, .scr, .pif). Instead, documents such as PDFs are used to execute arbitrary and malicious code. These attacks are successful because most users believe that documents such as PDFs are harmless. Yet, simply viewing a PDF with a slightly out-of-date reader can place a computer under the control of a malicious third party. In addition, when an attack is successful, the user is unlikely to know a compromise occurred.

The social engineering aspects of targeted attacks have also grown in sophistication. Instead of standard enticements normally found in spam, these attacks use subject lines which would be of importance to enterprise users. These include financial topics such as IRS complaints or notices, political topics that play off current events such as the Olympics in China, freeing Tibet, and human rights issues, and personal topics such as speaker invitations and scholarship offers.

"Enterprise organizations need to enhance their understanding of the danger targeted attacks pose to their environment. Defenses such as firewalls, IDS, and antivirus often fail to detect these new and increasingly frequent kinds of attacks," said Royal.

Damballa is showcasing the company’s technology at the 2008 Gartner IT Security Summit June 2-4 in Washington, DC (Booth # 34). Damballa’s solutions provide deeper understanding of and protection against targeted attacks than is possible with signature-based host, LAN or gateway security technologies. These solutions provide comprehensive, real-time visibility into targeted attack activity both inside the enterprise and across the Internet. Damballa’s insight often predicts attacks before they arrive, or before they can damage corporate assets. In addition, Damballa gives customers the ability to disrupt and resolve targeted attacks such as BotArmy compromises, so that remediation can take place in a planned, orderly manner.

About Damballa, Inc.

Damballa protects businesses from targeted attacks used for organized, online crime. Its unique, global approach rapidly isolates the command-and-control needed to launch multi-network attacks. Damballa’s signatureless solutions improve security both inside and outside the network perimeter, to stop threats other technologies miss and restore control to legitimate owners. Damballa identifies the severity and intent of targeted attacks such as BotArmies, even when malware can’t be detected. Its products and services provide a critical window for orderly remediation, and integrate easily into existing infrastructure without requiring additional headcount or complexity. Damballa is privately held, and is headquartered in Atlanta, Georgia.

COPYRIGHT 2008 Business Wire
COPYRIGHT 2008 Gale, Cengage Learning

Information provided by: Findarticles.com

HIGH POINT, N.C. — Banner Pharmacaps Inc., a leader in the pharmaceutical industry for the development of soft gelatin dosage form technology, announces that the US Food & Drug Administration granted approval for the Company’s Abbreviated New Drug Application (ANDA) for Amantadine Hydrochloride USP 100 mg soft gelatin capsules on May 29, 2008.

Amantadine is indicated for the prophylaxis and treatment of signs and symptoms of infection in the respiratory tract caused by various strains of influenza A virus. Amantadine is also utilized in the treatment of Parkinson’s Disease and drug-induced extrapyramidal reactions.

About Banner Pharmacaps Inc.

Banner Pharmacaps Inc. is a global drug delivery and specialty pharmaceutical company which is developing a proprietary portfolio of unique products and oral dosage forms that include the enhanced technologies of enteric and controlled release softgels, as well as Soflet[R] Gelcaps. Headquartered in High Point, North Carolina, Banner is committed to the research, development, and manufacture of quality healthcare products to serve our global community. Additional information about Banner is available at http://www.banpharm.com.

The parent company of Banner is VION N.V., an international food group that produces high-quality foodstuffs and ingredients for humans and animals. VION has annual sales of EU7.1 Billion, with 15,150 employees worldwide. The head office of VION is in Son en Breugel, The Netherlands.

COPYRIGHT 2008 Business Wire
COPYRIGHT 2008 Gale, Cengage Learning

Information provided by: Findarticles.com

LA JOLLA, Calif. — Burnham Institute for Medical Research:

Big Bucks for Bad Bugs

A team of Burnham investigators has been awarded a $4 million grant from the NIH to generate chemical inhibitors of human proteins that are hijacked by bacteria and viruses during infection. These protein inhibitors may provide a new strategy for treating infectious diseases. Because these drugs will inhibit human proteins rather than bacterial or viral targets, the hope is that resistant forms will not emerge due to mutations in the genomes of the pathogens.

Parkinson’s Disease: It’s in the Chemistry

Dr. Stuart Lipton and colleagues have demonstrated that the neurodegeneration associated with Parkinson’s disease might be a result of bad chemistry. Peroxiredoxin, a protein that protects cells from free-radical damage in the brain and elsewhere in the body, can be poisoned by nitric oxide via a chemical reaction called S-nitrosylation. This chemical reaction was found to occur in the brains of patients with Parkinson’s disease and contributes to neuron injury and death. This mechanism of nerve cell injury suggests novel approaches for treatment.

One Man’s JNK is Another Man’s Treasure

The cell-signaling protein JNK, which is involved in inflammation, may also play a role in the growth of melanoma, the deadliest form of skin cancer. Dr. Ze’ev Ronai’s team has found that chemicals that inhibit JNK may be useful in treating melanoma. JNK inhibitors have been developed by several pharmaceutical companies as potential anti-inflammatory drugs. Dr. Ronai’s study suggests these same drugs should be tested against melanoma.

How Sweet It Is

Dr. Hudson Freeze, a former slime-mold biologist, has found his sweet spot. His lab is studying rare, yet debilitating, diseases called Congenital Disorders of Glycosylation (CDG). These diseases are caused by a defect in a cell’s ability to produce the sugars that promote cells binding together. Mutations in the proteins that build these complex sugar molecules cause mental and motor retardation, seizures, failure to grow, low blood sugar, clotting and digestive disorders. Dr. Freeze has found that, in some cases, giving a CDG patient an oral solution containing the sugar his or her body cannot produce leads to dramatic improvement.

Traffic Control

Autoimmune diseases such as rheumatoid arthritis and inflammatory bowel disease might be treated by blocking the traffic of immune cells throughout the body. Dr. Minoru Fukuda and collaborators showed that certain sugar molecules displayed on blood vessels attract immune cells called lymphocytes, allowing them to migrate out of the blood stream. Blocking this mechanism may suppress the immune system and provide relief to the 20 million people in the U.S. who suffer from autoimmune disorders.

For more information or to schedule an interview with a Burnham researcher, please contact:

Burnham Institute

Andrea Moser
Vice President, Communications
Burnham Institute for Medical Research
858-646-3146
amoser@burnham.org

Russo Partners, LLC

David Schull
President
Russo Partners, LLC
212-845-4271
david.schull@russopartnersllc.com

Heidi Chokeir, Ph.D.
Assistant Account Executive
Russo Partners, LLC
619-814-3512
heidi.chokeir@russopartnersllc.com

About Burnham Institute for Medical Research

Burnham Institute for Medical Research is dedicated to revealing the fundamental molecular causes of disease and devising the innovative therapies of tomorrow. Burnham is one of the fastest growing research institutes in the country with operations in California and Florida. The Institute ranks among the top four institutions nationally for NIH grant funding and among the top 25 organizations worldwide for its research impact. Burnham utilizes a unique, collaborative approach to medical research and has established major research programs in cancer, neurodegeneration, diabetes, infectious and inflammatory and childhood diseases. The Institute is known for its world-class capabilities in stem cell research and drug discovery technologies. Burnham is a nonprofit, public benefit corporation. For more information, please visit www.burnham.org.

COPYRIGHT 2008 Business Wire
COPYRIGHT 2008 Gale, Cengage Learning

Information provided by: Findarticles.com

Contaminated water that led to an outbreak of norovirus at an Egg Harbor restaurant last June may not have come from the restaurant’s broken septic system, according to a study released Friday.

In all, 257 people became sick after drinking water at the Log Den restaurant between May 29 and June 2 last year. An investigation confirmed norovirus was in the restaurant’s well, and there was a leak in the Log Den’s septic system.

Ayres Associates Inc, Madison, conducted a second study to determine the source of the norovirus. In that May 28 study, the engineering firm did not rule out the septic leak as the cause of the outbreak, but noted two other virus strains were found in wells near the restaurant but not in the Log Den’s well. The additional strains suggest there may be another source of the norovirus, the study said.

The results offer a murky conclusion to a yearlong legal and public health fight over the Log Den’s norovirus outbreak.

After the incident, the Log Den fixed a broken Fernco fitting in its private onsite wastewater treatment system and passed subsequent water quality tests, according to the study.

But the restaurant is trying to overcome the stigma of the outbreak. A neighbor said dyes dumped into the restaurant’s bathroom and septic systems are still flowing into his water supply, and questions remain about the overall quality of the groundwater in Door County.

Wayne Lautenbach, one of the family owners of the Log Den, said the outbreak hurt the business, which opened just weeks before people got sick. A year later, the restaurant is still known for the outbreak.

According to the Centers for Disease Control and Prevention, noroviruses cause vomiting, diarrhea, abdominal cramps, nausea and fever. Symptoms usually last one to three days.

Noroviruses are highly contagious and “are transmitted by consumption of fecally contaminated food or water or by direct person-to-person spread,” according to the CDC.

A woman eating at the restaurant last week pushed her water aside and argued with the waiter about whether it was safe to drink, Lautenbach said.

“People are always coming in and asking if the water is safe,” he said. “This has dragged out for a year and created an awful lot of doubt in people’s minds.”

Lautenbach blamed lawyers for blowing the issue out of proportion. Several lawsuits were filed shortly after the outbreak. They have yet to be resolved.

“Our water has always tested safe, except that one time,” he said. “We have the best water treatment you can get a hold of.”

Allin Walker lives with his wife in a house on Green Bay near the Log Den. He said they won’t drink their water after the Log Den investigation discovered Enterovirus and Adenovirus in their well. Tracing dye fed into the men’s room toilet at the Log Den also continues to make its way into their faucet.

Walker and his wife drink bottled water and installed a filtration system for tap water. He still isn’t satisfied his water is clean.

“The UV system is 90 percent sure” our water is clean, Walker said. “Nobody will tell us it’s 100 percent.”

Concerns over water quality started after the Log Den opened just down the street from their house. Walker and his wife lived in the house for three years without having a water test come back negative. After the restaurant was up and running, human viruses and antibiotics were found in their water supply, Walker said.

He said he’s frustrated because officials know there are real concerns about the water supply. One state employee told him she wouldn’t drink the water.

“And that’s an acceptable answer,” Walker said. “It doesn’t seem to matter that at least two people with compromised immune systems are living in the neighborhood. It doesn’t seem to matter that grandchildren are playing in the water. There doesn’t seem to be a public health crisis.”

Ayres’ report noted a long history of water contamination in Door County caused by the region’s geology. Fractured rock formations and shallow soils offer little filtration for portions of the county’s groundwater. As a result, contaminants easily flow into the drinking the water, according to the study.

The county has a strict program to inspect and regulate septic systems, said Chris Olson, an assistant sanitarian for Door County. The county inspects 400 to 500 septic systems per year and orders replacements for about 100 older systems, he said.

Following the Log Den incident, which brought public attention to the issue of water quality in Door County, further studies are in the works, said Grant Thomas, the county’s corporation counsel.

A public/private work group will review the regulation of private septic systems in Door County, Thomas said. The group will offer recommendations for local and, if needed, state codes to protect water quality, Thomas said.

“We did everything we could within the current state of the law and regulations,” he said about the Log Den incident. “Repairs were made to the Log Den’s septic system that fixed the problem. I do share the public’s concerns.”

Copyright 2008 Dolan Media Newswires
Provided by ProQuest Information and Learning Company. All rights Reserved.

Information provided by: Findarticles.com

Company Developing Non-Nucleoside Polymerase Inhibitor for Treatment of Hepatitis C

SAN DIEGO, June 2 /PRNewswire-FirstCall/ — Anadys Pharmaceuticals, Inc. announced today the initiation of dosing in a Phase I clinical trial of ANA598, an investigational oral non-nucleoside polymerase inhibitor for the treatment of chronic hepatitis C virus (HCV) infection. The objectives of this trial are to assess safety, tolerability, and pharmacokinetics following ascending single oral doses of ANA598 in healthy volunteers. Approximately 40 healthy subjects will participate in the study, which is being conducted in the United States. Following successful completion of the healthy volunteer study, Anadys plans to begin a Phase Ib study of ANA598 in HCV-infected patients in the third quarter of 2008.

"Based on its very favorable preclinical profile, including potency, pharmacokinetics, and tolerability, we believe ANA598 has the potential to become an important component of future combination therapy for patients with HCV infection," said James Freddo, M.D., Anadys’ Chief Medical Officer. "We are excited about initiating this clinical program and look forward to future trials of ANA598 in HCV patients, first as a single agent and then in subsequent combination studies. We expect the full benefit of direct antivirals to be demonstrated when studied as components of novel combination regimens incorporating multiple anti-HCV agents."

Steve Worland, Ph.D., Anadys’ President and CEO commented, "This is a significant milestone for Anadys. ANA598 is the second internally discovered compound that we’ve moved into clinical studies this year. With the commencement of dosing in a Phase I clinical trial for ANA773 in cancer patients in February and this study of ANA598 underway, Anadys is now focused on achieving important clinical milestones in both programs."

About ANA598

ANA598 is a highly potent and selective inhibitor of HCV genotypes 1a and 1b NS5b RNA polymerases (IC50 < 1 nM) and of HCV replication in cell culture (EC50 values for genotypes 1b and 1a replicons are 3 and 50 nM, respectively). ANA598 has been well-tolerated in all preclinical studies, including 28-day GLP toxicology studies, and was selected as a development candidate in June 2007.

Clinical Need and Market Opportunity in HCV Infection

Chronic hepatitis C virus (HCV) infection is a serious public health concern affecting approximately 2.7 million people in the United States and approximately 170 million people worldwide. HCV causes inflammation of the liver, which may lead to fibrosis and cirrhosis, liver cancer, and ultimately, liver failure. Cirrhosis of the liver resulting from chronic HCV infection is the leading indication for liver transplantation in the U.S. Due to the asymptomatic nature of HCV infection, it often goes undetected for up to 20 years following initial infection. Each year, 8,000 to 10,000 people in the U.S. die from complications of HCV.

The current standard of care is a combination of pegylated interferon and ribavirin. Inadequate response rates, in particular for patients infected with genotype 1 HCV, along with significant side effects of approved therapy, support the medical need for improved treatment options. It is estimated that fewer than 5% of people with chronic HCV infection living in the U.S. are under treatment today. The majority of infected individuals are unaware of their infection status and the large majority of individuals who know their status do not currently receive drug therapy. There is also a growing number of individuals who have failed interferon-based regimens who may be successfully treated with combinations of two or more direct antivirals. It is expected that the next generation of therapies for treatment of HCV will include small molecules, such as ANA598, that act directly upon specific viral enzymes to inhibit viral replication. These direct antivirals are expected to improve overall therapy by increasing cure rates and improving tolerability and convenience of treatment.

About Anadys

Anadys Pharmaceuticals, Inc. is a clinical-stage biopharmaceutical company dedicated to improving patient care by developing novel medicines in the areas of hepatitis C and oncology. The Company is developing ANA598, a non-nucleoside polymerase inhibitor for the treatment of chronic hepatitis C and ANA773, an oral TLR7 agonist prodrug for the treatment of cancer.

Safe Harbor Statement

Statements in this press release that are not strictly historical in nature constitute "forward-looking statements." Such statements include, but are not limited to, references to (i) the planned trial design of the ANA598 healthy volunteer study; (ii) Anadys’ expectation to begin a Phase Ib study of ANA598 in the third quarter of 2008; (iii) Anadys’ belief that ANA598 has the potential to become an important component of future combination therapy for patients with HCV infection and that the full benefit of direct antivirals will be demonstrated when studied as components of novel combination regimens incorporating multiple anti-HCV agents; (iv) Anadys’ ability to achieve important clinical milestones in the ANA598 and ANA773 programs; and (v) expectations regarding the evolution of the market for HCV therapies. Such forward-looking statements involve known and unknown risks, uncertainties and other factors, which may cause Anadys’ actual results to be materially different from historical results or from any results expressed or implied by such forward-looking statements. For example, the results of preclinical studies may not be predictive of future results, and Anadys cannot provide any assurances that ANA598 and ANA773 will not have unforeseen safety issues, will have favorable results in future clinical trials or will receive regulatory approval. In addition, Anadys’ results may be affected by risks related to competition from other biotechnology and pharmaceutical companies, its effectiveness at managing its financial resources, its ability to successfully develop and market products, difficulties or delays in its preclinical studies or clinical trials, difficulties or delays in manufacturing its clinical trials materials, the scope and validity of patent protection for its products, regulatory developments involving future products and its ability to obtain additional funding to support its operations. Risk factors that may cause actual results to differ are more fully discussed in Anadys’ SEC filings, including Anadys’ Form 10-K for the year ended December 31, 2007 and Anadys’ Form 10-Q for the quarter ended March 31, 2008. All forward-looking statements are qualified in their entirety by this cautionary statement. Anadys is providing this information as of this date and does not undertake any obligation to update any forward-looking statements contained in this document as a result of new information, future events or otherwise.

Information provided by: Findarticles.com

Gartner IT Security Summit — eEye Digital
Security ( www.eeye.com ), an expert in integrated security and threat
management solutions, today announced the availability of Blink 4.0, now
with Vista and Windows 2008 support, to its popular and award-winning
endpoint protection platform.

Blink 4.0 combines multiple layers of endpoint security capabilities and
leverages a host-based intrusion prevention engine that dynamically
collects and incorporates new threat data in real time. Blink 4.0 also
enables users to have centralized policy control over applications, system
resources and removable storage devices.

Blink provides virus and spyware protection, intrusion prevention and
vulnerability assessment, and system and application firewalls that protect
desktops from malicious zero-day attacks, ID theft, keylogging, phishing,
and variants of malware such as hijacking by botnets.

“Since its launch, Microsoft has sold over 140 million copies of Vista,”
said eEye Digital CEO Kamal Arafeh. “With the additional support added to
the outstanding performance of Blink 4.0, businesses can now be assured
they have best-of-breed integrated threat management capabilities that are
second to none.”

Available since 2004, Blink has successfully stopped 100 percent of remote
intrusion attempts. It provides a complete endpoint protection platform
with full-featured integrated threat management capabilities.

Independent product reviews give Blink high marks: “eEye performed best in
detecting exploits. It was the clear leader in identifying client-side
attacks, alerting on all of our tests,” said Information Security Magazine
(November 2007).

Blink 4.0 Offers Robust Protection

The Blink 4.0 application offers a comprehensive security solution that
enables companies to combat the ever escalating malware variants that are
common in today’s environment. The application provides more than five
discrete endpoint security applications into one Blink agent, reaping
significant time savings in the process. Yet system resource requirements
are less than half the memory footprint of maintaining five discrete
endpoint security products. By reducing licensing and support expenses,
Blink 4.0 is able to cut endpoint security costs by more than 50 percent.

Retina Appliance 651

At the recent RSA conference, eEye unveiled its Retina Appliance 651, a new
network vulnerability assessment and tracking appliance that thwarts
exploits and data loss attacks, analyzing operating systems, applications,
and policies for malicious activity.

Combining eEye’s Retina Network Security Scanner, Iris Network Traffic
Analyzer and Blink’s Host-based Intrusion Prevention solution into a single
appliance, the Retina 651 detects illegal traffic and fundamental flaws in
an environment and recommends the best possible action for remediation and
mitigation. Available now, pricing for the Retina 651 starts at $2,495.

Pricing and Availability

Available today, Blink 4.0 Personal edition lists for $24.95; Blink 4.0
Professional edition lists for $29 per user starting at 10 users; and Blink
Enterprise edition, which includes the REM centralized management platform,
lists for $25 per user starting at 100 users. Customers and partners
interested in volume discounts should contact an eEye Security Account
Manager at sales@eEye.com or call (866) 282-8276.

For more information on eEye threat management products please visit
http://www.eeye.com/html/products .

About eEye Digital Security

eEye Digital Security is pioneering a new class of security products:
Integrated Security & Threat Management. This next-generation of security
detects vulnerabilities and threats, prevents intrusions, protects all of
an enterprise’s key computing resources, from endpoints to network assets
to web sites and web applications, all while providing a centralized point
of security management and network visibility. eEye’s research team is
consistently the first to identify new threats in the wild, and our
products leverage that research to deliver on the goal of making network
security as easy to use and reliable as networking itself. Founded in 1998
and headquartered in Orange County, California, eEye Digital Security
protects more than 9,000 corporate and government organizations worldwide,
including half of the Fortune 100. For more information, please visit
www.eEye.com .

Primary Agency Contact
Victor Cruz
MediaPR
(401) 808-6264
Email Contact

EMEA Agency Contact
Ralph Klower
INTERFACE Relations
+49 (0) 89-552 688-66
Email Contact

Corporate Contact
Stacy Newman
eEye Digital Security
(949) 333-1913
Email Contact

Information provided by: Findarticles.com

Worry-Free(TM) Business Security 5.0 and Worry-Free(TM) SecureSite(TM) provide better security against evolving Web threats and for an increasingly mobile workforce.

CUPERTINO, Calif., June 2 /PRNewswire/ — Trend Micro Incorporated , a global leader in Internet content security, has enhanced its flagship Worry-Free Security Solutions, first introduced over four years ago, with a radically new and upgraded line for small businesses and eCommerce sites that require smarter, better-performing technology to conquer a more sophisticated Web threat landscape that has mutated beyond conventional viruses and spam. The Worry-Free Business Security 5.0 line, created for small businesses; and Trend Micro’s first eCommerce security, Worry-Free SecureSite, build upon Trend Micro’s commitment to create safer, smarter, simpler solutions specifically small businesses that want to protect their assets, their customer information and, most importantly, their reputation.

In addition to conventional protection against spyware, viruses, spam, phishing and inappropriate Web content, these augmented solutions have features that not only address changing Web and email threats, but differences in the way people work compared to four years ago. For example, with a more mobile workforce, customers of Worry-Free Business Security 5.0 will benefit from the "location-awareness" feature that automatically changes Worry-Free security settings on laptops depending if employees are inside or outside the office. Company data is protected even when employees are using an outside wireless connection. And with email as a primary form of communication within companies, the issue of spam congesting networks is an annoyance for most. The new Worry-Free line provides multi-layer spam protection by blocking spam before reaching networks.

  Trend Micro is introducing the following new solutions:

  Worry-Free SecureSite

A completely new solution within the Worry-Free line, SecureSite is designed for eCommerce online retailers whose revenue and brand-reputation depend upon the security of their Web site. A hosted service, Worry-Free SecureSite protects online shoppers from hackers working to exploit them by stealing credit card numbers, passwords and other important digital information. Threats and vulnerabilities from the Web are quickly identified and averted through Trend Micro’s worldwide network of threat experts. For the full press release on Worry-Free SecureSite, please visit http://trendmicro.m