The XoloX file sharing application is installed. XoloX is a peer-to-peer file sharing program that uses the Gnutella protocol.
File sharing programs are a security risk for the following reasons:
XoloX is particularly dangerous because it searches the entire hard drive for files to share. XoloX can also be configured to use a web proxy. The username and password for the web proxy are stored in cleartext in the registry (for anyone to read).
In addition to these security risks, peer-to-peer programs can use an inordinate amount of bandwith, degrading network services.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center