Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Lancope Enhances Visibility and Intelligence in StealthWatch System

Lancope, a provider of network visibility and security intelligence tools, has added new “operationalized security capabilities” to its StealthWatch System to better help customers identify and block potentially damaging threats hitting their networks.

Lancope, a provider of network visibility and security intelligence tools, has added new “operationalized security capabilities” to its StealthWatch System to better help customers identify and block potentially damaging threats hitting their networks.

A new Operational Network & Security Intelligence (ONSI) dashboard and User-defined Threat Criteria allow for enhanced usability, security analytics and early threat detection, the company said.

Designed to help organizations detect a wide range of attacks, ranging from APTs and DDoS attacks to zero-day malware and insider threats, Lancope’s StealthWatch System is now able to deliver dynamic and actionable security data, helping security teams to make informed decisions and take the most appropriate actions to mitigate threats.

Lancope Logo“With the ONSI dashboard, StealthWatch security alarms are closely aligned to the various steps of the cyber attacker’s “kill chain.” The StealthWatch System now includes alarms to alert administrators about specific kill chain behaviors happening within their network, such as command-and-control activity, internal malware propagation and data hoarding/exfiltration,” StealthWatch explained. “By turning data into actionable knowledge, the ONSI dashboard provides greater security context for faster detection, more precise incident response and improved troubleshooting of these stealthy, malicious behaviors.”

As part of the new features, StealthWatch users can now set custom, tailored parameters and exclusions for identifying anomalous behaviors on their network.

“With the extraordinary number of threats facing today’s enterprises on a daily basis, incident responders do not have the luxury of time on their side,” said Kerry Armistead, vice president of product management for Lancope. “Security success today necessitates the ability to very quickly identify, interpret and respond to the myriad attacks infiltrating corporate networks. Security is a constant battle, and our new features arm StealthWatch System users with more precise and powerful tools for rapidly uncovering and remediating a broad spectrum of attacks.”

The ONSI dashboard and User-defined Threat Criteria capability will be available in late February as part of StealthWatch System Version 6.5. The StealthWatch Management Console can be deployed as a physical or virtual appliance.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Network Security

A zero-day vulnerability named HTTP/2 Rapid Reset has been exploited to launch some of the largest DDoS attacks in history.