U Cincinnati Uncovers Web Vulnerabilities with Hailstorm

  • By Dian Schaffhauser
  • 05/08/09

The University of Cincinnati has implemented Cenzic Hailstorm to safeguard data of students, faculty, and staff. Using Hailstorm the university will be able to proactively scan all IT managed Web sites campus wide, identifying vulnerabilities and performing remediation. In addition, the university is also implementing regular testing into its software development lifecycle.

"We have found several vulnerabilities while testing, so it is absolutely essential that our Web applications are secure upon deployment and thereafter," said Kim Logan, information security officer, at the institution "We chose Cenzic Hailstorm, because it had the least amount of false positives compared to any other solution we tested, and excels in the areas of assessment configuration, traversal definition, reporting, and customization. It's also extremely user friendly, which is a big plus."

The infosec team has invited the campus community to have free vulnerability scanning performed on their systems. In return, users will receive a detailed report that lays out significant vulnerabilities and how to fix them.

The university expects to use the software application in both development and quality assurance work, "to ensure applications that the university builds and deploys are as safe as possible," said Kevin McLaughlin, assistant vice president for Information Security.

U Cincinnati is also using Rapid7's NeXpose for vulnerability assessment, policy compliance, and remediation management.

Cenzic is also used at Boston College.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • landscape photo with an AI rubber stamp on top

    California AI Watermarking Bill Garners OpenAI Support

    ChatGPT creator OpenAI is backing a California bill that would require tech companies to label AI-generated content in the form of a digital "watermark." The proposed legislation, known as the "California Digital Content Provenance Standards" (AB 3211), aims to ensure transparency in digital media by identifying content created through artificial intelligence. This requirement would apply to a broad range of AI-generated material, from harmless memes to deepfakes that could be used to spread misinformation about political candidates.

  • stylized illustration of an open laptop displaying the ChatGPT interface

    'Early Version' of ChatGPT Windows App Now Available to Paid Users

    OpenAI has announced the release of the ChatGPT Windows desktop app, about five months after the macOS version became available.

  • person signing a bill at a desk with a faint glow around the document. A tablet and laptop are subtly visible in the background, with soft colors and minimal digital elements

    California Governor Signs AI Content Safeguards into Law

    California Governor Gavin Newsom has officially signed off on a series of landmark artificial intelligence bills, signaling the state’s latest efforts to regulate the burgeoning technology, particularly in response to the misuse of sexually explicit deepfakes. The legislation is aimed at mitigating the risks posed by AI-generated content, as concerns grow over the technology's potential to manipulate images, videos, and voices in ways that could cause significant harm.

  • Jetstream logo

    Qualified Free Access to Advanced Compute Resources with NSF's Jetstream2 and ACCESS

    Free access to advanced computing and HPC resources for your researchers and education programs? Check out NSF's Jetstream2 and ACCESS.