NetFlow NinjasTM Blog

Tag: Behavioral Analysis

Insider Threat Protection with NetFlow

POSTED BY Angela Frechette on 05.20.2013  |  0 comments
Despite the fact that external attacks often get more attention in the media, recent data is proving that the threat posed by malicious, negligent or compromised insiders is indeed very real. The best way to detect and prevent insider threats is to have in-depth visibility into the internal environment and a means of filtering and prioritizing the massive amount of data available on the network into concise, actionable intelligence. READ MORE
CATEGORIES NetFlow, Network Security, Network Visibility, StealthWatch
TAGS stealthwatch, netflow, lancope, network security, network visibility, anomaly detection, behavioral analysis, insider threat, forensics, user-centric monitoring

Lancope’s Cisco ASA Updates

POSTED BY Chris Smithee on 12.12.2012  |  0 comments
NSEL data from Cisco ASA provides rich information and unique data points for advanced security troubleshooting. Lancope stitches Cisco ASA NetFlow records together with records from the remainder of the network, allowing StealthWatch users to understand not just the transaction path for network traffic, but also what happened to those transactions when they were handled by the ASA. Lancope has also recently added StealthWatch support for the NAT translations available from NSEL records. READ MORE
CATEGORIES Integrations, NetFlow, Network Security, Network Visibility, StealthWatch
TAGS stealthwatch, netflow, lancope, network security, network visibility, behavioral analysis, incident response, nsel, cisco asa, security context, nat

Forrester Endorses Lancope and Cisco Approach for Combating Advanced Threats

POSTED BY Jody Ma Kissling on 11.16.2012  |  0 comments
According to a Forrester Consulting Technology Adoption Profile commissioned by Lancope and Cisco, “Enlightened organizations have adopted network flow analysis capabilities to augment their preventative controls, but fail to include the additional context necessary to truly identify malicious activity within their networks.” While there are many solutions on the market that simply collect and store flow data, or even provide basic analysis, Lancope’s StealthWatch System provides the additional context called for by Forrester. READ MORE
CATEGORIES NetFlow, Network Security, Network Visibility, StealthWatch
TAGS stealthwatch, netflow, lancope, network security, network visibility, behavioral analysis, advanced threats, cisco systems, identity awareness, forrester, concern index, application awareness, ip reputation, security context, host reputation

Lancope Shares Top 5 Tips for Network Protection During NCSAM

POSTED BY Angela Frechette on 10.22.2012  |  0 comments
In the spirit of National Cyber Security Awareness Month (NCSAM), Lancope’s director of security research, Tom Cross, offers tips for effectively securing enterprise networks. READ MORE
CATEGORIES Network Security, Network Visibility, Press Releases, StealthWatch
TAGS stealthwatch, netflow, lancope, network security, network visibility, byod, apts, behavioral analysis, advanced threats, virtualization, insider threat, ipv6, threat intelligence, password security, cloud computing, threat context, targeted attacks, 0-day

StealthWatch Goes Beyond Signatures; Detects the Weird

POSTED BY David Brooks on 10.03.2012  |  0 comments
Robert Lemos recently put together a great article for Dark Reading detailing the increasing need for organizations to move beyond typical signature-based, hardened perimeters in order to “detect the weird.” Lancope of course has been on the edge of this wave for several years, providing anomaly detection down to the host level utilizing what we refer to as the Concern Index (CI). READ MORE
CATEGORIES In The News, Network Security, Network Visibility, StealthWatch
TAGS stealthwatch, lancope, network security, network visibility, anomaly detection, behavioral analysis, advanced threats, threat intelligence, mobile security, identity awareness, concern index