Sourcefire Announces Solutions To Address Customers' Virtual Security Needs

FireAMP Virtual and Virtual Next-Generation IPS provide continuous monitoring and threat protection

September 5, 2012

3 Min Read


Columbia, MD – August 27, 2012 -- Sourcefire, Inc. (Nasdaq: FIRE), a leader in intelligent cybersecurity solutions, today announced its latest solutions to address critical customer needs for virtualized security -- FireAMP™ Virtual and Virtual Next-Generation Intrusion Prevention Systems (NGIPS) with application control. These new solutions deliver Information Superiority by providing large enterprises and government organizations the visibility and control required to address the dynamic nature of constantly changing virtual deployments and evolving threats targeting those systems.

Sourcefire’s comprehensive approach connects physical and virtual security elements, while also integrating network and application awareness with big data analytics for increased security intelligence. Continuous monitoring and threat protection ensures that users can structure appropriate network defenses and respond comprehensively and systematically across the entire security infrastructure.

“Any security control that depends on detecting information of interest from the network is ineffective in the virtual switch unless the control itself resides or can see the data traffic in the virtual network,” said Eric Ahlm, Research Director at Gartner. “The challenge is that not all network security controls have visibility into the virtual network that resides in the hypervisor. This can create blind spots in security controls that are monitoring only the physical network. Attacks that happen on the virtual switch will go undetected until they happen on a physical network with security controls.”1

Sourcefire® Virtual Real-Time Visibility, Control and Protection

FireAMP Virtual protects VMware virtual instances from advanced malware and stops threats that bypass other security layers. The technology leverages cloud-based detection capabilities to analyze and block malware and lets enterprises create custom signatures to address newly discovered threats. It also uses Cloud Recall™ to provide continuous analysis of historical file activity to discover and remediate threats that were previously missed. Designed for VMware environments, FireAMP Virtual increases efficiency through integration with the agentless VMware vShield architecture. Customers deploying both FireAMP and FireAMP Virtual benefit from having seamless visibility and control to identify and remediate advanced malware across their entire environment.

Virtual NGIPS overcomes the lack of visibility traditional physical intrusion prevention products have over virtualized environments, with the ability to deliver application control along with a virtual management console. Sourcefire Virtual NGIPS can inspect virtual machine (VM)-to-VM communications, providing full NGIPS capabilities to protect VMware-based virtual networks. It also provides optional URL filtering to reduce the surface area of attack.

“Sourcefire’s virtual solutions are just the latest example of our commitment to protecting our customers from the most sophisticated attacks – whether they target physical, mobile or virtual systems,” said Martin Roesch, founder, CTO and interim CEO of Sourcefire. “As with physical assets, security in a virtualized setting should be about more than just stopping attacks; you also need to continually drive visibility, control and management. Sourcefire’s virtual solutions give organizations the confidence to launch or expand virtualized systems by offering insight and protection throughout their changing enterprises.”

Webinar: Break Through the Virtualization Security Roadblock

Most security professionals lack the visibility into and control over virtualized infrastructure to defend it effectively. Join Sourcefire for a live webinar that will help attendees learn to “Break Through the Virtualization Security Roadblock with Information Superiority.” Visit the following page to register for one of three events:

About Sourcefire Sourcefire, Inc. (Nasdaq:FIRE), a world leader in intelligent cybersecurity solutions, is transforming the way global large- to mid-size organizations and government agencies manage and minimize network security risks. With solutions from a next-generation network security platform to advanced malware protection, Sourcefire provides customers with Agile Security® that is as dynamic as the real world it protects and the attackers against which it defends. Trusted for more than 10 years, Sourcefire has been consistently recognized for its innovation and industry leadership with numerous patents, world-class research, and award-winning technology. Today, the name Sourcefire has grown synonymous with innovation, security intelligence and agile end-to-end security protection. For more information about Sourcefire, please visit

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights