Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Solera Networks Updates Its Network Forensics Platform

Solera Networks, a provider of network forensics solutions, today released Solera OS 5.0, a major update to its network forensics platform.

Solera NetworksSolera OS 5.0 helps IT security teams see everything happening on their networks in real-time, helping to recognize threats, and understand exactly what’s needed to defend against future attacks.

Solera Networks, a provider of network forensics solutions, today released Solera OS 5.0, a major update to its network forensics platform.

Solera NetworksSolera OS 5.0 helps IT security teams see everything happening on their networks in real-time, helping to recognize threats, and understand exactly what’s needed to defend against future attacks.

Solera OS 5.0 is what powers the company’s flagship “DS Appliance”, and makes network forensics usable in deployments ranging from range from small or branch office locations to dedicated 10Gb appliances with expandable storage for larger and faster networks. The solution goes beyond dated packet capture and network sniffing tools to revealing actionable evidence in real-time.

Malicious network activity and attempts to steal data, compromise users, or hijack network resources can be identified through the interface, enabling a swift incident response, remediation, and fortification. Solera OS integrates with several network security technologies to pivot directly from an alert or log and obtain full-payload detail of the event before, during and after the alert. It offers an open web services REST API that enables customers leverage technologies including ArcSight, FireEye, Splunk, Sourcefire, Palo Alto Networks, SonicWALL or any other application.

Network Forensics ApplianceSolera OS 5.0 touts more than two hundred new features, including:

1. A completely redesigned DeepSee® UI that makes security event investigations a snap

2. Application classification that recognizes and indexes more than 530 applications—leading the competition by several hundred applications

3. Geolocation and Google Earth® integration to map all sessions and traffic patterns to intuitively pinpoint suspicious activity

4. DeepSee Active Reporting to instantly deliver query results and eliminate wasted investigation time waiting for reports

5. DeepSee Media Panel built into Solera OS for quick viewing of all images crossing the network to effectively enforce acceptable use policy

“We are in a new threat environment, which became clear sixteen to eighteen months ago with the early Aurora breaches,” said Steve Shillingford, President and CEO of Solera Networks. “Since then, attackers have honed in on targets using ultra-sophisticated methods, while most defenders have languished, continuing to follow a ‘set-it-and-forget-it’ approach to security. This release of Solera OS 5.0 has been met with a flood of customer anticipation as organizations arrive at the realization that their networks are being breached every day, if not every hour. Often coming to us with a sense of urgency and helplessness, organizations quickly abandon their fear of the unknown once they see how network forensics empowers them to meet the aggressors head-on.”

Today’s threats are persistent, low-lying, multi-vector onslaughts that succeed one way or another to breach and compromise the best-defended networks. Effectively protecting organizations from the damaging effects of these concerted attacks requires Networks Forensics (NF) and constant network surveillance to see and know everything happening on the network.

“Between 2010’s Operation Aurora, Stuxnet and the ongoing escalation of WikiLeaks and Anonymous events and 2011’s Breach-a-Week of even Security Vendors, it should be clear that ‘best practices’ aren’t – and ‘good enough security’ isn’t,” said Joshua Corman, Research Director for Enterprise Security at The 451 Group. “Adaptive Persistent Adversaries require adaptive persistent defenses. Enterprises need to invest in greater visibility and agility. We need to see more sooner and support a prompt and agile response.”

“Our high-profile customers realize that they are going to be exploited at some point,” said Dave Nett, Vice President of secure systems integrator, SNR Systems. “Understanding the overall scope and exposure of an incident is imperative. Without a product that provides the full visibility of your enterprise traffic, you simply can’t know.”

Solera Networks is offering a 30-day trial of its Virtual Appliance which can be downloaded here.

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Expert Insights

Related Content

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Cybersecurity Funding

Forward Networks, a company that provides network security and reliability solutions, has raised $50 million from several investors.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Network Security

Cisco patched a high-severity SQL injection vulnerability in Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition (CM SME).

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Vulnerabilities identified in TP-Link and NetComm router models could be exploited to achieve remote code execution (RCE).