Category: Virtualization 
New APT1/Comment Crew Indicators
StealthWatch Labs has uncovered a new set of technical indicators associated with the APT1 attacks that have not been published in another forum as far as we are aware. READ MORECATEGORIES General Interest, In The News, Network Security, Virtualization
TAGS apts, botnets, apt1, mandiant report
TAGS apts, botnets, apt1, mandiant report
Lessons Learned from the New York Times Hack
Unfortunately, The New York Times is not the only organization that has been the victim of a sophisticated, targeted attack of this nature, and it certainly will not be the last as regular drum beat of these kinds of incidents has been reported over the past few years. In order to combat these new and constantly evolving threats, defensive techniques need to adapt. READ MORECATEGORIES In The News, Integrations, NetFlow, Network Performance Monitoring, Network Security, Network Visibility, StealthWatch, Virtualization
TAGS stealthwatch, netflow, lancope, network security, network visibility, malware, apts, insider threat, incident response, data loss, threat intelligence, botnets, data exfiltration, network visibiility, internal monitoring, concern index, cyber threat defense, zero-day, network threats, cyber espionage, state-sponsored attacks, data breach, cyber threats, government, internal malware, borderless network visibility, user behavior
TAGS stealthwatch, netflow, lancope, network security, network visibility, malware, apts, insider threat, incident response, data loss, threat intelligence, botnets, data exfiltration, network visibiility, internal monitoring, concern index, cyber threat defense, zero-day, network threats, cyber espionage, state-sponsored attacks, data breach, cyber threats, government, internal malware, borderless network visibility, user behavior
Are My Computers for Rent?
In a recent blog entry, Brian Krebs revealed that a Russian-based service is selling the IP addresses, usernames and passwords of computers inside organizations including Fortune 500 companies using the Remote Desktop Protocol (RDP). In the comments section, some readers asked how they can check if their servers are listed in the service’s database. While there certainly is merit in that type of diligence, they could better answer that question by reviewing their own network surveillance data. It is a question that intelligent analysis of enterprise NetFlow/IPFIX can quickly answer.
READ MORE
_190_140_s_c1.jpg)
No Matter How Frequent or Infrequent, Insider Threats Come at a Cost
If you have paid attention to the security landscape over the past decade, even in passing, you have likely picked up on the idea that the insider threat makes up at least some measurable percentage of concern within an organization's security framework. Lancope’s StealthWatch System brings all of this visibility under the same single pane of glass, and correlates anomalous host behavior with user and device information to help solve the insider threat headache. READ MORE
NetFlow-Based Security – It’s Nothing New to Lancope!
In the wake of high-profile attacks like Flame and DNSChanger, and evolving network challenges such as BYOD, more vendors are beginning to incorporate NetFlow-based security monitoring into their repertoires. As a provider of flow-based security monitoring since 2000, Lancope is excited to see this momentum in the marketplace, but we feel that it is important to distinguish our solution from some of the new/add-on solutions out there to limit industry confusion. READ MORECATEGORIES About Lancope, Integrations, NetFlow, Network Performance Monitoring, Network Security, Network Visibility, StealthWatch, Virtualization
TAGS stealthwatch, netflow, lancope, network security, network visibility, network performance, network behavior analysis, cisco, apts, compliance, virtualization, insider threat, forensics, threat detection
TAGS stealthwatch, netflow, lancope, network security, network visibility, network performance, network behavior analysis, cisco, apts, compliance, virtualization, insider threat, forensics, threat detection
