Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

08:51 PM
Dark Reading
Dark Reading
Products and Releases

Solera Networks Enhances Malware Protection, Alerting And Analysis

Enhances DeepSee platform with Real-Time File Extractor

San Francisco, CA — February 28, 2012 – Solera Networks, the industry’s leading Advanced Security Intelligence and Analytics provider, today announced the latest enhancement to its award-winning DeepSee™ platform. Solera’s Real-Time File Extractor is an industry first that enables immediate, automatic identification and alerting of advanced and zero-day threats. In addition, by integrating with best-of-breed malware detection and analysis systems, the DeepSee platform enables organizations to leverage existing tools to respond faster and more accurately to attacks, thereby minimizing damage and exposure through intelligent, rapid threat response.

“At Solera Networks, we believe that all organizations need better tools to identify advanced malware, and we are excited to deliver Real Time Extractor, an engine that enables unprecedented levels of network detection and analysis,” said Steven Shillingford, president and CEO of Solera Networks. “Solera now enables organizations to continuously reconstruct, extract, and analyze any malicious or sensitive files as they move through networks—something previously unavailable in an open-platform security tool. This allows for advanced analysis or containment, well before traditional security methods have been able to respond, and well before malicious agents are able to cause persistent damage.”

Today’s targeted attacks are executed using advanced, low-lying and multi-vector malware that propagates beyond the view of traditional security products, breaching even the best-defended networks. Protecting organizations from the damaging effects of these targeted attacks requires advanced Network Intelligence and Forensics to see, identify and know everything happening on the network. Solera’s Real-Time File Extractor technology elevates malware inspection analysis and data-loss detection capabilities to a new, unmatched level. The Solera Real-Time File Extractor delivers a host of new capabilities, including:

· Actionable, real-time file extraction—Highly configurable, policy-driven extraction based on geo-location or Deep Packet Inspection (DPI) attributes such as transport protocol, file extension or mime-type.

· Continuous detection of all network traffic—Upon extraction, configurable actions include hash calculations and indexing, reputation checks, submission to indexers or search engines, or presentation to local or cloud-based malware analysis tools.

· Instantaneous presentation of artifacts—Artifact information becomes instantly available and browsable within Solera’s patented, high-performance database, Solera DB.

· Policy-based, alert-triggered extraction technology—Easily automate the analysis of today’s most common threat vectors: PE (portable executable) files, PDFs, Javascript, Java JAR files, Flash and Microsoft OLE documents.

· Cost-effective, extensible protection of remote/branch offices—Industry’s only security intelligence and forensics platform enabling the identification and alerting of advanced malware and threats at distributed locations and offices, as well as both physical and virtual network environments.

“At the most basic level, we are in a constant battle to keep the ‘bad stuff out’ of and the ‘good stuff in’ our information systems. Since such events tend to involve files, the ability to recompose files in real-time and to dispatch them to a diverse set of tools gives us a new level of insight into traffic on our networks,” said Joe Levy, CTO of Solera Networks. “This is the cumulative evolution of network security and analytics: from packets, to flows, to Deep Packet Inspection – and now, to entire files on the wire.”

Solera will be showcasing its Real-Time Extractor technology at booth #2351 in the RSA Expo Hall.

For more detailed information about the DeepSee™ platform, visit: www.soleranetworks.com.

About Solera Networks See everything. Know everything.™

Solera Networks is the security industry’s intelligent rapid response company. Its award-winning DeepSee™ platform is powered by next-generation deep-packet inspection and indexing technologies, network security analytics and intelligence capabilities. Global 2000 enterprises, cloud service providers and government agencies rely on Solera to see everything and know everything, allowing them to gain complete visibility and situational awareness, respond quickly and intelligently to advanced threats, protect critical information assets, minimize exposure and loss, and reduce business liabilities. For more information, please visit www.soleranetworks.com.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Former CISA Director Chris Krebs Discusses Risk Management & Threat Intel
Kelly Sheridan, Staff Editor, Dark Reading,  2/23/2021
Security + Fraud Protection: Your One-Two Punch Against Cyberattacks
Joshua Goldfarb, Director of Product Management at F5,  2/23/2021
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Robert Lemos, Contributing Writer,  2/22/2021
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Building the SOC of the Future
Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-02-27
SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header.
PUBLISHED: 2021-02-27
An issue was discovered in through SaltStack Salt before 3002.5. salt.modules.cmdmod can log credentials to the info or error log level.
PUBLISHED: 2021-02-27
In SaltStack Salt before 3002.5, eauth tokens can be used once after expiration. (They might be used to run command against the salt master or minions.)
PUBLISHED: 2021-02-27
An issue was discovered in SaltStack Salt before 3002.5. Sending crafted web requests to the Salt API can result in salt.utils.thin.gen_thin() command injection because of different handling of single versus double quotes. This is related to salt/utils/thin.py.
PUBLISHED: 2021-02-27
i-doit before 1.16.0 is affected by Stored Cross-Site Scripting (XSS) issues that could allow remote authenticated attackers to inject arbitrary web script or HTML via C__MONITORING__CONFIG__TITLE, SM2__C__MONITORING__CONFIG__TITLE, C__MONITORING__CONFIG__PATH, SM2__C__MONITORING__CONFIG__PATH, C__M...