Lancope's StealthWatch® System Tracks Network Reconnaissance, Internal Malware, Command-and-Control and Data Exfiltration Traffic
Four new StealthWatch threat intelligence dashboards help enterprises detect and combat the most dangerous, stealthy cyber-attacks
ATLANTA, June 11, 2012 /PRNewswire/ -- Cisco Live and Gartner Security & Risk Management Summit -- Lancope, Inc., a leader in flow-based security and network performance monitoring, has announced that its StealthWatch® System now includes four new dashboards for viewing threat intelligence surrounding network reconnaissance, internal malware proliferation, command-and-control traffic and data exfiltration. The tailored views make it even easier for organizations to track these especially dangerous, stealthy types of attacks within their networks.
The dashboards also serve as key components of the new Cisco Cyber Threat Defense Solution for combating today's most elusive, sophisticated cyber-attacks. Lancope is currently exhibiting StealthWatch and the new dashboards at Cisco Live Booth #944 in San Diego, Calif., as well as at the Gartner Security & Risk Management Summit in Washington, D.C.
Combining the advanced security capabilities of Lancope and Cisco, the Cyber Threat Defense Solution provides unprecedented visibility into the network interior. By collecting and analyzing NetFlow, IPFIX and other flow data from existing infrastructure, StealthWatch cost-effectively provides in-depth insight into the full spectrum of internal and external threats facing enterprise networks. Automatic threat prioritization and optional, automated mitigation further expedite troubleshooting and reduce the time between problem identification and resolution.
The StealthWatch Management Console (SMC) serves as the central point for collecting, analyzing, graphically displaying and reporting on network and security data across the enterprise. Through these new, specialized dashboards included in the SMC, administrators can now more easily view actionable intelligence surrounding:
- Network reconnaissance – probing of the network to uncover attack vectors that can be leveraged for customized attacks
- Internal malware propagation – the spread of malware across hosts on the internal network to gather security reconnaissance information, steal data or create backdoors for infiltrating a network
- Command-and-control traffic – botnet communications between attackers and compromised hosts within the network
- Data exfiltration – the export of sensitive information back to an attacker, generally via command-and-control communications
These new levels of intelligence help to ensure that security analysts can determine the correct next steps to take for mitigating each type of risk. In addition to combating threats in real time, the data can also be used for additional efforts including forensic investigations and regulatory compliance.
"Complex, elusive threats can linger within a network for months or even years, stealing data and disrupting operations," said Joe Yeager, director of product management for Lancope. "The main goal of the Cisco Cyber Threat Defense Solution is to enable organizations to more quickly uncover network anomalies and suspicious behaviors that could lead to damaging attacks. The new intelligence dashboards included in StealthWatch support these efforts by providing a faster, more direct means of tracking the most nefarious types of attack attempts before they wreak havoc on network assets."
Not relying on signature updates to detect attacks, StealthWatch delivers the comprehensive situational awareness needed to achieve higher levels of security and network performance across the entire enterprise. The system is scalable to meet the needs of even the largest networks, analyzing up to 3 million flows per second, and can also provide visibility into virtual environments. Sophisticated behavioral analysis and advanced capabilities including identity, application and mobile device awareness enable organizations to remain a step ahead of the many cyber-attacks threatening to take down their networks or extract confidential data.
In addition to exhibiting the StealthWatch System at Cisco Live, Cisco's annual IT and communications conference, Lancope will also be monitoring show floor traffic and will be featured in two speaker presentations at the conference.
Further details on the Cisco Cyber Threat Defense Solution including the four new StealthWatch dashboards can be found at: http://www.cisco.com/web/strategy/docs/gov/cyber_threat_defense_so.pdf.
For more information on StealthWatch, please visit: http://www.lancope.com/products.
Lancope®, Inc. is a leading provider of flow-based monitoring solutions to ensure high-performing and secure networks for global enterprises. Unifying critical network performance and security information for borderless network visibility, Lancope provides actionable insight that reduces the time between problem identification and resolution. Enterprise customers worldwide, including healthcare, financial services, government and higher education institutions, rely on Lancope to make better network decisions, respond faster to network problem areas and avoid costly outages and downtime — at a fraction of the cost of conventional network monitoring solutions. With Lancope, you can know your network and run your business better. Privately held and venture-backed, Lancope is headquartered in Atlanta, Georgia. For more information, visit www.lancope.com.
©2012 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.
SOURCE Lancope, Inc.Back to top