ATLANTA, May 20, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, unveils new, user-centric monitoring capabilities for streamlined forensics and incident response. The new features, which enable administrators to investigate network behaviors and anomalies based on user names, significantly enhance Lancope’s network protection against both sophisticated, targeted attacks and insider threats.

“Lancope’s StealthWatch^® System leverages network flow data to deliver actionable security intelligence for combating today’s top threats,” said Kerry Armistead, vice president of product management for Lancope. “As the threat landscape becomes more complex, we continue to innovate to help organizations make immediate sense of the plethora of data available on the network. Our new, user-centric functionality provides an additional means of querying, searching and reporting on flow data to increase network visibility and reduce enterprise risk.”

Identity awareness has long been a cornerstone of Lancope’s early threat detection capabilities. StealthWatch users can obtain identity data from either the StealthWatch IDentity™ appliance or the Cisco Identity Services Engine (ISE). By uncovering both the user causing an event and the other users affected, StealthWatch provides greater accountability and immediate insight into network issues.

With new, user-centric monitoring features, network and security teams can now run flow queries and reports based on user names versus just IP addresses. Administrators can also search on user names, as well as obtain a User Snapshot outlining a specific person’s network activity – including any anomalous behavior or alarms triggered. These new capabilities are invaluable for combating the growing rise in insider threats, as well as for improving incident response, forensics and audit controls for regulatory compliance.

“Building on the premise that enterprise networks are likely already compromised, Lancope’s StealthWatch System is designed to detect and halt attacks inside the network, allowing remedial actions to be taken before they escalate into major issues,” said Javvad Malik, senior analyst at The 451 Group. “As advanced attacks continue to infiltrate perimeter defenses, behavioral-based network monitoring solutions like StealthWatch are becoming increasingly valuable, especially when bolstered by additional functionality like identity awareness.”

Insider attacks, in particular, can be difficult to differentiate from legitimate network transactions and are often not detected by signature-based security systems. External attackers are also increasingly using social engineering tactics and stolen credentials to bypass perimeter defenses and gain access to the internal network. The only way to prevent insider threats is to have visibility into what users are doing on the network so that suspicious behavior can be identified and further investigated.

StealthWatch collects and analyzes NetFlow, IPFIX and other types of flow data and provides additional security context to help organizations more proactively identify the full spectrum of cyber threats facing today’s enterprises – including advanced malware, APTs, insider threats and DDoS. The technology vastly improves security operations by turning the network into an always-on sensor grid for detecting anomalous behavior that could signify risk.

The new, user-centric monitoring capabilities will be available in July as part of StealthWatch System 6.4. For further details on StealthWatch identity awareness for improved risk management, go to: http://www.lancope.com/solutions/security-operations/identity-awareness/. Please find a recent report on StealthWatch by The 451 Group here: http://www.lancope.com/resource-center/industry-reports/lancope-catches-malware-report/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 13, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has joined the Cloud Security Alliance (CSA), a not-for-profit organization that promotes best practices for security assurance in cloud computing. The alliance, led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders, also provides education on the use of cloud computing as a means of securing other infrastructure.

“As a company that provides in-depth network visibility and security intelligence across both physical and virtual environments, Lancope is a great fit for our organization,” said Jim Reavis, executive director at CSA. “The company’s StealthWatch System is the type of innovative solution that organizations need to help shore up their security amidst an ever-evolving IT and threat landscape. Lancope’s next-generation capabilities will be invaluable in helping CSA in our ongoing threat and cloud assurance research initiatives.”

By providing comprehensive visibility and insight across the entire network, Lancope’s StealthWatch^® System enables organizations to detect advanced threats that evade conventional defenses, including APTs, insider threats, DDoS and zero-day malware. StealthWatch provides the same level of intelligence across virtual environments as it does for physical infrastructure. Additionally, StealthWatch is offered in both a hardware and virtual form factor, helping enterprises embrace the benefits of cloud computing without sacrificing network protection.

StealthWatch’s additional levels of insight, including mobile, application and identity awareness, further enhance security context for advanced threat detection, incident response and forensics. These capabilities are particularly beneficial in a cloud environment since one of the key drivers of cloud computing is to enable users to access corporate applications from virtually anywhere using any device they choose (a.k.a. BYOD).

“When organizations transition to virtual and cloud environments, they unfortunately lose much of their network visibility as well as the efficacy of many traditional security solutions, complicating problem identification and resolution,” said Mike Potts, president and CEO at Lancope. “With StealthWatch, they can quickly regain that visibility and protection. We are excited to bring this expertise to the Cloud Security Alliance to help organizations experience the advantages of next-generation computing without dramatically impacting their risk posture or introducing undue compliance challenges.”

Without being able to monitor who is doing what on the network, when and with which device, it is extremely difficult to protect today’s dynamic technology environments. By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch empowers hundreds of government and enterprise organizations around the world to maintain high levels of security while continuously embracing new IT innovations. Further details on StealthWatch for security can be found at: http://www.lancope.com/solutions/security-operations/.

For more information on the Cloud Security Alliance, go to: www.cloudsecurityalliance.org.

About the Cloud Security Alliance
The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 7, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has released a new report entitled “APTs and Incident Response: The Next Frontier of Cyber Security.” The report examines recent trends in cyber-attacks and how organizations can more effectively address evolving threats by elevating the importance of incident response within their overall security strategies.

“Few organizations view their incident responders as the front line in their defensive posture,” said Tom Cross, director of security research for Lancope. “However, the intelligence gathered from investigating breaches is the vital ingredient that enables an organization to thwart subsequent attacks; so in a very real sense, the incident response team should become the heart of everything an organization does to protect its network.”

The Lancope report examines the rise of the Advanced Persistent Threat (APT) all the way from the coining of the term in the early 2000s and Operation Aurora in 2010, to the most recent attacks on the Wall Street Journal and New York Times. Third-party reports from Mandiant, Cisco and others are also referenced.

“According to the Enterprise Strategy Group (ESG), nearly three-quarters of organizations expect to be the target of APTs in the near future,” said Amrit Williams, CTO of Lancope. “Organizations need to realize that they are either compromised or will be soon and that traditional techniques need to be augmented with newer methods to provide visibility and control into all aspects of the internal environment.”

The report also discusses how NetFlow collection and analysis can help fill in the gaps in conventional security strategies for improved incident response. Using the recently uncovered “APT1” attacks as an example, Lancope demonstrates how technical indicators of an attack can be fed into a flow-based monitoring system to gather actionable security intelligence for preventing future attacks.

By combining flow-based behavioral analysis and in-depth security context, Lancope’s StealthWatch^® System provides a comprehensive view of network activity to keep organizations a step ahead of sophisticated attackers. Lancope’s security capabilities are continuously enhanced with research from the StealthWatch Labs Intelligence Center (SLIC).

“When you are living with an advanced threat, you are playing a nonstop game of cat and mouse on your computer network,” adds Cross. “The need to collect and analyze intelligence isn’t a one-time requirement that occurs as the result of a single incident. It needs to be an ongoing part of any organization’s defensive operation.”

Learn how to properly equip and empower your incident response team to fend off APTs and reduce enterprise risk. Access the full Lancope report, “APTs and Incident Response: The Next Frontier of Cyber Security,” here: http://www.lancope.com/resource-center/industry-reports/apt-and-incident-response-security-report/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, April 23, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has announced the appointment of Joe Buchanan as vice president of systems engineering. Buchanan joined Lancope in 2004, most recently serving as a director, and has over 14 years of technology industry experience with a focus on analyzing complex networks and designing an effective security and monitoring solution. In his new role, he is responsible for driving technical pre-sales, solution architecture and implementation to ensure customer satisfaction for Fortune 1000 companies.

“Joe is a tremendous asset to our company and is loved by our customers and highly respected by our business partners,” said Mike Potts, president and CEO of Lancope. “He has already made great headway in ensuring a positive customer deployment experience, and will undoubtedly continue to work tirelessly in his new role to further grow Lancope’s customer base and expand our systems engineering infrastructure.”

Prior to joining Lancope, Buchanan worked in a senior systems support role with Mirant, a Fortune 500 energy company that was previously a division of Southern Company. Preceding Mirant, he spent seven years in the United States Air Force. Buchanan holds a B.S. degree in computer science from the University of Maryland, as well as numerous technical certifications.

“Since I joined the company in 2004, Lancope has continuously offered innovative solutions for solving the toughest network and security challenges facing governments and enterprises,” said Joe Buchanan, vice president of systems engineering for Lancope. “As IT infrastructure and the threat landscape continue to evolve, Lancope’s StealthWatch^® System helps keep organizations a step ahead of attackers with unique, behavioral-based monitoring and advanced security intelligence. I look forward to playing an enhanced role in helping customers leverage StealthWatch to fend off sophisticated attacks and keep their networks up-and-running.” 

By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch significantly improves early threat detection and incident response capabilities for hundreds of government and enterprise organizations around the world. More information on StealthWatch can be found at: http://www.lancope.com/products/.

For further details on Lancope’s leadership team, go to: http://www.lancope.com/company-overview/management/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

London (UK) and Infosecurity Europe, 18 April 2013 – As part of this year’s education programme at Infosecurity Europe, Amrit Williams, CTO at Lancope, Inc., a leader in network visibility and security intelligence, will present on how to detect and thwart the various stages of an advanced attacker’s kill chain. By implementing controls along the entire kill chain, organisations can stop an exploit or infection prior to data exfiltration. Further information on the presentation is available here. 

The continuing rise of sophisticated, targeted attacks is prompting new thinking about the defence of computer networks. According to recent research, 85 percent of security incidents go completely undetected by the breached organisation, and 92 percent of uncovered incidents are discovered by a third party.^{i, ii} According to another report, a typical zero-day attack lasts 312 days on average.ⁱⁱⁱ Advanced threats not only bypass perimeter security technologies such as firewalls, IPS and email security, but also manage to stay undetected by internal security controls such as anti-virus and host-based IPS.

Borrowed from military jargon, the kill chain refers to the steps a sophisticated attacker goes through in order to execute a successful strike. In the presentation, Williams will discuss each stage of the kill chain and present a multifaceted approach for detecting and preventing attacks at each stage.

The discussion will enable attendees to:

• Understand why conventional controls are no longer enough to fend off advanced attacks

• Learn about each stage of the kill chain

• Know how to best apply existing security technologies to each stage of the kill chain

• Determine which additional tools and strategies may be needed within an organisation to combat advanced threats

“Incident response is becoming the centrepiece of advanced threat defence,” explains Williams. “With companies taking an estimated 300+ days to identify that they’ve been compromised, malware has the chance to spread across the network and steal confidential data. Organisations need to augment traditional controls with better incident response teams, forensic capabilities and technologies that provide visibility into the state of their internal networks.”

The Lancope presentation, “Targeting the Kill Chain: A multifaceted approach to defence in depth,” will take place on Wednesday, 24th April 2013 from 12:40 - 13:05 in the Technical Theatre at Infosecurity Europe in Earls Court, London. As chief technology officer, Williams brings over 18 years of experience in security and technology to Lancope, and previously served as an analyst with Gartner Research. He holds CISSP and CISM certifications, and has obtained several technology patents.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Neil Stinchcombe

Eskenzi PR

+44 20 71 832 833

neil@eskenzipr.com

ATLANTA, April 15, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, is offering a free trial of its StealthWatch^® FlowReplicator. Available as either a standalone solution or as part of a larger StealthWatch deployment, the FlowReplicator enables both novice and advanced NetFlow users to significantly improve their security posture and network operations by making it easy to collect flow data for analysis and reporting. To access the free trial, go to: http://www.lancope.com/trials/fr/.*

“NetFlow has quickly emerged as a powerful technology for obtaining optimal network visibility and security,” said Jim Frey, vice president of research at Enterprise Management Associates (EMA). “Already inherent in routers, switches and other infrastructure devices, flow data provides a cost-effective means of filling in the gaps left by conventional solutions, and is lightweight enough to be used in virtual and cloud deployments. Lancope’s FlowReplicator enables enterprises to overcome inherent limitations on the number of NetFlow destinations and leverage flow telemetry for cost-effective network performance and security monitoring.”

The FlowReplicator is a purpose-built device for the high-capacity replication of disparate log data to one or many destinations. By aggregating and providing a single, standardized destination for NetFlow, IPFIX, sFlow, Syslog and SNMP information, the FlowReplicator greatly simplifies the integration of multiple types of network and security data within large enterprises. The appliance can receive data from any connectionless UDP application, and is available in either a physical or virtual form factor, allowing users to choose the implementation and maintenance structure that works best for their organization.

Lancope’s StealthWatch System collects and analyzes flow data from existing infrastructure to provide in-depth network insight and security context for improved troubleshooting and incident response. By delivering a comprehensive view of network activity, StealthWatch can help organizations defend their networks from advanced challenges including APTs, insider threats, cloud computing and BYOD.

The FlowReplicator free trial is a fast, easy way to begin experiencing the power of NetFlow for enhanced security, forensics, performance and compliance. Further information on the product can be found at: http://www.lancope.com/products/stealthwatch-flowreplicator/. Download the free trial here: http://www.lancope.com/trials/fr/.

*VMware vSphere v4.x or v5.x infrastructure required to deploy trial.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

With a 259 percent return on investment (ROI) within three years according to a commissioned study conducted by Forrester Consulting, StealthWatch delivers tangible benefits for enterprises:

• The American Cancer Society reduced the time it took to mitigate a security incident by more than 75 percent with StealthWatch. (Source: TechValidate. TVID: 0EF-E3C-98F)
• Central Michigan University reduced mitigation time for security incidents by 25 to 49 percent with StealthWatch. (Source: TechValidate. TVID: 099-041-236)

“While it is still very useful for measuring the overall health of a network, flow-based monitoring has quickly emerged as a must-have technology for improving cyber security,” said Mike Potts, president and CEO of Lancope. “As conventional security tools continue to be evaded by sophisticated attackers, advanced security monitoring solutions like StealthWatch have become critical for detecting suspicious internal network behaviors that are indicative of an attack.”

Lancope customers agree:                                                                                          

• According to a large enterprise financial services company, “Lancope has allowed us for the first time to truly have visibility of what’s happening within our internal networks and see suspicious traffic as it develops...” (Source: TechValidate. TVID: ECC-001-141)
• A chief security officer in the retail industry said, “Lancope’s real-time view of network traffic and events is useful for security monitoring and is equally effective at application performance monitoring.” (Source: TechValidate. TVID: 988-881-376)
• According to a Global 500 professional services company, “Lancope’s StealthWatch has enabled us to detect malware that other security controls are unable to detect or block, and find the affected sources inside our network, clean them, and reduce bad network traffic.” (Source: TechValidate. TVID: E30-CB8-7B8)
• An engineer from an enterprise pharmaceutical company added, “The intelligence that Lancope gives us is immeasurably valuable in terms of security response, forensics and knowledge of what is happening on the network.” (Source: TechValidate. TVID: D4F-5EA-836)

By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch provides an always-on sensor grid for detecting anomalous behavior and threats within the network. With advanced capabilities including virtual, mobile, identity, application and host reputation monitoring, StealthWatch significantly improves early threat detection and incident response capabilities for hundreds of government and enterprise organizations around the world.

The TechValidate survey data also revealed that, among participating IT organizations:

• 76 percent primarily use StealthWatch for incident response (Source: TechValidate. TVID: E42-9BC-659)
• 72 percent primarily use StealthWatch for security forensics (Source: TechValidate. TVID: BB6-24C-48B)
• 60 percent use StealthWatch to detect or prevent network reconnaissance (Source: TechValidate. TVID: E18-7B0-612)
• 69 percent used StealthWatch to detect or prevent malware or viruses (Source: TechValidate. TVID: A67-C90-FF3)
• 83 percent used StealthWatch to detect or prevent suspicious user behavior (Source: TechValidate. TVID: 609-77A-F7D)

Lancope recently launched the latest version of its StealthWatch System, featuring the StealthWatch Labs Intelligence Center™ (SLIC) Threat Feed, which leverages global threat intelligence to provide an additional layer of protection from sophisticated attacks. For more information on StealthWatch for security monitoring, go to: http://www.lancope.com/solutions/security-operations/.  

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, March 18, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, will deliver a complimentary webinar on Thursday, March 28 at 11:00 a.m. ET / 8:00 a.m. PT to discuss how organizations can detect APT1 within their networks. The company will also reveal new APT1 technical indicators discovered by its StealthWatch^® Labs research team. For more information on the free webinar, or to register, go to: http://www.lancope.com/company-overview/webinar/hunting-for-apt1-inside/.    

Mandiant’s recent report on APT1, describing computer network attacks tied to China, was a watershed event that significantly raised awareness about the threat of state-sponsored computer network intrusions. Of course, the first thing that everyone wants to know when they hear reports like this is whether or not the attacks impacted their network.

“Based on the technical indicators of the attack, Lancope provides a unique way to look back into past network activity to determine whether an organization was successfully compromised by APT1,” said Tom Cross, director of security research for Lancope. “Due to the persistent nature of these attacks, it is likely that if an organization was compromised in the past, its network may still be targeted now and into the future. Discovering these indicators within the network is an important starting point for conducting a thorough forensic investigation in order to prevent subsequent attacks.” 

Join this webinar to learn about Lancope’s new research results and discover how to determine whether APT1 has successfully compromised your network. Lancope’s director of security research, Tom Cross, will explain what organizations should be looking for in light of this new research, and senior systems engineer, Charles Herring, will demonstrate how to use intelligent network surveillance to find it.

WHO:             Tom Cross, Director of Security Research, Lancope, Inc.   

                        Charles Herring, Senior Systems Engineer, Lancope, Inc.

WHAT:           “Hunting for APT1 Inside Your Network”

WHEN:           Thursday, March 28, 11:00 a.m. ET / 8:00 a.m. PT

REGISTER:   http://www.lancope.com/company-overview/webinar/hunting-for-apt1-inside/

The StealthWatch Labs research team conducts both in-house research and taps into a broad community of third-party experts and partners to aggregate emerging threat information from around the world. Research is shared with customers and the public through the StealthWatch Labs Intelligence Center, and is also leveraged internally to enhance the early threat detection capabilities of Lancope’s StealthWatch System. For more information on how to detect APT1 with StealthWatch, go to: http://www.lancope.com/blog/stealthwatch-and-apt1/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, March 6, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, will deliver its ‘University of NetFlow’ training courses in seven cities in March, including Raleigh, Charlotte, San Francisco, San Jose, Washington, D.C., Philadelphia and New York. This marks Lancope’s highest number of courses ever conducted in a single month. Participants in the complimentary training will discover how to better leverage the use of NetFlow and other types of flow data to significantly improve network security, resiliency and integrity. To view the schedule of upcoming courses, or to register, go to: http://www.lancope.com/news-events/university-of-netflow/. 

“Our goal for 2013 was to expand the value of the ‘University of NetFlow’ training courses by leveraging cutting-edge security intelligence from our StealthWatch Labs research team,” said Jody Ma Kissling, vice president of marketing for Lancope. “We also wanted to increase the number of courses we deliver to allow more end users to take advantage of this advanced knowledge. With seven classes scheduled for March and a new, hands-on security lab, we are off to a great start.”

‘University of NetFlow’ training courses enable attendees to maximize their existing infrastructure to defend against evolving security concerns including APTs, DDoS, insider threats and advanced malware. In addition to expediting network troubleshooting and incident response, NetFlow can also improve forensic investigations and compliance initiatives, especially when collected and analyzed by advanced monitoring solutions like Lancope’s StealthWatch^® System.

Educating end users since 2007, ‘University of NetFlow’ courses will go global in 2013, and continue to evolve to help attendees combat the ever-changing threat landscape. Through expert presentations, best practice discussions and hands-on labs, attendees around the world will learn how to transform their network and security operations to survive amidst the current and future cyber battlefield.

Specific dates for the March courses include:

• March 7 – Raleigh
• March 8 – Charlotte
• March 14 – San Francisco
• March 15 – San Jose
• March 25 – Washington, D.C.
• March 26 – Philadelphia
• March 27 – New York City

About the University of NetFlow
Lancope’s University of NetFlow began educating users five years ago with an introductory NetFlow 101 boot camp. As the original NetFlow educator, the University evolved its boot camp into a half-day course focusing on the power of flow data for network performance benefits. Today, the University is dedicated to continuing education by teaching innovative uses of flow data. The course is designed to share the industry knowledge and cutting-edge research derived from Lancope’s security team to help organizations make the most of their NetFlow investment. To view the agenda and schedule of upcoming courses, go to: http://www.lancope.com/news-events/university-of-netflow/agenda/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA and RSA Conference, February 19, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has released the newest version of its award-winning StealthWatch^® System to further improve security and network operations for governments and large enterprises. Delivering advanced levels of network insight, StealthWatch 6.3 enables organizations to reduce the risks associated with sophisticated cyber-attacks while significantly enhancing their network reliability and integrity.

“As a leading provider of security monitoring solutions, Lancope keeps its finger on the pulse of today’s threat landscape to ensure that our customers remain protected from ever-evolving attacks,” said Mike Potts, president and CEO of Lancope. “Attackers continue to become more stealthy and persistent, remaining within enterprise networks for extended periods of time. The latest version of StealthWatch adds a threat feed and other key features to help organizations further improve threat detection, incident response and forensics and more effectively thwart advanced attacks.”

New capabilities in StealthWatch 6.3 include:

• The StealthWatch Labs Intelligence Center™ (SLIC) Threat Feed, which leverages global threat intelligence to detect command-and-control (C&C) communications and provide an additional layer of protection from botnets and other sophisticated attacks.  
• NAT Support, enabling organizations to pinpoint which IP addresses and users inside the network are responsible for issues.
• Cyber Threat Defense Dashboards for tracking network reconnaissance, internal malware propagation, covert C&C communications, data exfiltration and internal host reputation.
• Enhanced Identity Reporting, consolidating identity data into a single report regardless of whether it originates from Cisco ISE or the StealthWatch IDentity™ appliance.
• The FlowReplicator™ Virtual Edition, giving users the flexibility of choosing the implementation and maintenance structure that works best for their organization.
• Common Criteria In Evaluation – StealthWatch 6.3 is currently in evaluation for Common Criteria Evaluation Assurance Level 1 (EAL1) certification, reaffirming Lancope’s commitment to meeting the unique security needs and best practices of government entities.

By performing behavioral analysis on NetFlow, IPFIX and other types of flow data, StealthWatch provides the in-depth network visibility needed to more effectively address emerging challenges including APTs, insider threats, DDoS, sophisticated malware and BYOD. Advanced functionality including virtual, identity, device and application awareness provides additional context for more streamlined troubleshooting.

Version 6.3 is currently available with entry-level system pricing beginning at U.S. domestic $54,995. For further details on new features, go to: http://www.lancope.com/files/documents/Lancope_StealthWatch_Whats_New.pdf.

Lancope will exhibit StealthWatch 6.3 at Booth #1653 during the RSA Conference, taking place in San Francisco from February 25 to March 1, 2013.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com