Qualys Launches No-Charge Scanning Service That Detects SANS/FBI Top 20 Network Security Vulnerabilities

Washington, D.C — October 29, 2001 — Qualys™, Inc., a leading provider of enterprise network vulnerability assessment and monitoring solutions, today launched at the CSI (Computer Security Institute) Show a free network scanning service that detects the Top Twenty Most Critical Internet Security Vulnerabilities as identified by the SANS (System Administration, Networking, and Security) Institute and the FBI (Federal Bureau of Investigation). Available online at https://www.qualys.com, the new QualysGuard™ Top Twenty scanning service consists of a free one-time online scan that enables enterprise security administrators to quickly assess their network’s exposure to these top vulnerabilities and delivers suggestions for corrective action.

The SANS/FBI Top Twenty list, released on October 1 and available on http://www.sans.org pinpoints the most frequently exploited network security flaws by worms such as Code Red and Nimda. The list also includes a host of other vulnerabilities with even more potential for destruction.

“Network administrators are forced to juggle between their daily duties and attempt to stay current with the rapidly expanding numbers of security threats,” said Gerhard Eschelbeck, Vice-President of Engineering for Qualys. “The QualysGuard Top Twenty scan lets you quickly determine if you are open to these current attacks and take steps to safeguard your network and secure your corporate data.”

The QualysGuard Top Twenty scanning service is a subset of the full QualysGuard global online vulnerability scanning service, which is also delivered via the Internet. The full QualysGuard service currently detects more than 1,200 network vulnerabilities, in addition to the Top Twenty, and is updated constantly with new vulnerability detection signatures to provide perpetually up-to-date protection against emerging network threats.

The free Top Twenty scanning service provides users with a one-time scan of a single IP address. The rapid and non-disruptive scan focuses solely on detecting the Top Twenty Vulnerabilities as identified by the SANS Institute in conjunction with the FBI. This includes general vulnerabilities that affect all systems, vulnerabilities that affect Windows™ systems, and vulnerabilities that affect Unix® (and Linux) systems. In addition to detecting the vulnerabilities on a network, the QualysGuard service assesses their level of risk and offers suggestions on fixes.

Companies interested in learning more about the Top Twenty vulnerabilities and that wish to take advantage of a no-charge QualysGuard Top Twenty scan can do so by visiting https://www.qualys.com/forms/top20.html.

About Qualys

With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

Media Contact:
Tami Casey
Qualys
media@qualys.com