Lancope Unveils Application-Layer DDoS Detection for Advanced Network Security
New capability enables organizations to obtain multi-faceted protection against distributed denial-of-service attacks
ATLANTA, June 4, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, announces new application-layer detection for distributed denial-of-service (DDoS) attacks as part of its StealthWatch® System 6.4. Combined with existing functionality for identifying volumetric DDoS attacks, the new capability enhances enterprise protection from this increasingly concerning type of online threat.
“The use of DDoS attacks has increased over the past several years. While the size and duration of volumetric attacks continue to grow, attackers are increasingly using application-layer and encrypted attacks,” said Kerry Armistead, vice president of product management for Lancope. “Today’s organizations must be prepared to thwart attacks on as many fronts as possible. StealthWatch 6.4 includes both application and volumetric DDoS detection to offer customers a multi-pronged approach for identifying and halting DDoS attacks before they disrupt critical operations.”
DDoS is currently playing a key role in hacktivism, and is also frequently used as a cover for more insidious attacks, distracting victims with service outages in order to steal money or confidential data. In fact, 76 percent of surveyed IT organizations that use StealthWatch for security forensics were influenced to acquire the system because of its DDoS detection capabilities.1
StealthWatch 6.4 extends Lancope’s DDoS detection into the application layer with the ability to identify and alarm on slow connection floods for HTTP and HTTPS. StealthWatch also enables organizations to detect the source of volumetric DDoS attacks by alarming on unusually large traffic volumes, providing a comprehensive strategy for protecting corporate and government resources from these rising attacks.
To effectively prevent large-scale DDoS attacks, organizations require not only mitigation solutions, but also network visibility tools that can make sense of the fog that rises during a denial-of-service attack. StealthWatch provides organizations with:
- Layered DDoS protection
- A simplified DDoS workflow
- Small-volume, application-layer DDoS detection
- Highly scalable DDoS identification
- On-premise DDoS detection to augment carrier detection and provide local visibility and control
- Dashboards, analytics and reporting for early warning
- Forensic data for post-mortem analysis
By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch delivers in-depth network visibility and security intelligence to hundreds of governments, enterprises and service providers around the world. Providing continuous security monitoring across the entire network, StealthWatch can quickly uncover DDoS attacks for expedited incident response, preventing costly service outages. In addition to DDoS attacks, StealthWatch also enables organizations to defend their infrastructure against additional types of threats including sophisticated malware, APTs and insider threats.
The new application-layer DDoS detection capabilities will be available in July as part of StealthWatch System 6.4. For more information on StealthWatch for advanced threat detection, go to: http://www.lancope.com/solutions/security-threats/.
1 - Source: TechValidate. TVID: A36-361-B36.
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.
# # #
©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.
Jody Ma Kissling
Lesley Sullivan/Kendra Dorr