News
3/24/2014
10:25 AM
50%
50%

Lancope Unveils New Version Of StealthWatch System

StealthWatch 6.5 delivers enhanced usability and security analytics

ATLANTA, March 24, 2014 – Lancope, Inc., a leader in network visibility and security intelligence, unveils the latest version of its behavioral-based security monitoring platform, StealthWatch® System 6.5. The new version delivers enhanced usability and security analytics for unprecedented network visibility and threat detection. Through a new, intuitive web interface and advanced security alarming, StealthWatch System 6.5 makes it easier for organizations to quickly identify and thwart sophisticated attacks that bypass perimeter defenses.

"This past year has brought about a whole new wave of threats and an increased intensity when it comes to sophisticated, targeted attacks and high-profile data breaches," said Jon Oltsik, senior principal analyst with Enterprise Strategy Group (ESG). "Today's security technologies must evolve as quickly as the threat landscape, and enterprise security teams must now play a much more active role in threat defense. Lancope provides the types of valuable tools and in-depth security intelligence necessary to address today's most dangerous attacks without expending excessive resources."

New StealthWatch Security Capabilities

The Operational Network & Security Intelligence (ONSI) dashboard closely aligns StealthWatch System alarms to the attacker's "kill chain," turning network and security data into actionable intelligence for faster detection and removal of threats.

New "data hoarding" alarms detect when outside attackers or malicious insiders are removing data from critical locations such as file servers or Point of Sale (PoS) terminals to help prevent damaging data breaches.

StealthWatch Labs Security Updates provide additional protection from major threats by delivering behavioral security algorithms to Lancope customers outside of their product update cycles.

User-defined Threat Criteria allow Lancope customers to further expand their network protection by creating custom security events and alarms based on their own security policies or specific threats to their environment.

Additional StealthWatch Enhancements

An intuitive Web interface delivers a simple, elegant and powerful platform for enhanced usability and early threat detection.

Active Directory integration in the user interface provides additional user identity details, such as office location, contact information and job role, for advanced troubleshooting of network and security issues.

Custom application configuration enables users to detect custom applications within their environment to assist in the identification of anomalous traffic.

"As the threat landscape continues to evolve, Lancope remains on the cutting edge by providing new detection algorithms and functionality for fending off the latest attack vectors," said Kerry Armistead, vice president of product management for Lancope. "StealthWatch System 6.5 delivers substantial new security capabilities alongside greater ease-of-use to maximize network protection for government agencies and enterprises worldwide."

By leveraging NetFlow and other flow data from existing infrastructure, the StealthWatch System delivers pervasive network visibility, combined with advanced security context, for detecting a wide variety of threats including zero-day malware, DDoS attempts, insider threats and APTs. StealthWatch System 6.5 is currently available with entry-level system pricing beginning at U.S. domestic $71,495. Existing Lancope customers will receive StealthWatch System 6.5 as part of their maintenance service. For additional details on the new version, go to: http://www.lancope.com/files/collateral/Lancope-DS-StealthWatch-Whats-New-6.5.pdf.

About Lancope

Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today's top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope's StealthWatch® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope's security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5395
Published: 2014-11-21
Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei HiLink E3276 and E3236 TCPU before V200R002B470D13SP00C00 and WebUI before V100R007B100D03SP01C03, E5180s-22 before 21.270.21.00.00, and E586Bs-2 before 21.322.10.00.889 allow remote attackers to hijack the authentication of users ...

CVE-2014-7137
Published: 2014-11-21
Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM before 3.6.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) contactid parameter in an addcontact action, (2) ligne parameter in a swapstatut action, or (3) project_ref parameter to projet/tasks/contact.php; (4...

CVE-2014-7871
Published: 2014-11-21
SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.

CVE-2014-8090
Published: 2014-11-21
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nes...

CVE-2014-8469
Published: 2014-11-21
Cross-site scripting (XSS) vulnerability in Guests/Boots in AdminCP in Moxi9 PHPFox before 4 Beta allows remote attackers to inject arbitrary web script or HTML via the User-Agent header.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?