ATLANTA, June 4, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, announces new application-layer detection for distributed denial-of-service (DDoS) attacks as part of its StealthWatch^® System 6.4. Combined with existing functionality for identifying volumetric DDoS attacks, the new capability enhances enterprise protection from this increasingly concerning type of online threat.

“The use of DDoS attacks has increased over the past several years. While the size and duration of volumetric attacks continue to grow, attackers are increasingly using application-layer and encrypted attacks,” said Kerry Armistead, vice president of product management for Lancope. “Today’s organizations must be prepared to thwart attacks on as many fronts as possible. StealthWatch 6.4 includes both application and volumetric DDoS detection to offer customers a multi-pronged approach for identifying and halting DDoS attacks before they disrupt critical operations.” 

DDoS is currently playing a key role in hacktivism, and is also frequently used as a cover for more insidious attacks, distracting victims with service outages in order to steal money or confidential data. In fact, 76 percent of surveyed IT organizations that use StealthWatch for security forensics were influenced to acquire the system because of its DDoS detection capabilities.¹

StealthWatch 6.4 extends Lancope’s DDoS detection into the application layer with the ability to identify and alarm on slow connection floods for HTTP and HTTPS. StealthWatch also enables organizations to detect the source of volumetric DDoS attacks by alarming on unusually large traffic volumes, providing a comprehensive strategy for protecting corporate and government resources from these rising attacks.

To effectively prevent large-scale DDoS attacks, organizations require not only mitigation solutions, but also network visibility tools that can make sense of the fog that rises during a denial-of-service attack. StealthWatch provides organizations with:

• Layered DDoS protection
• A simplified DDoS workflow
• Small-volume, application-layer DDoS detection
• Highly scalable DDoS identification
• On-premise DDoS detection to augment carrier detection and provide local visibility and control
• Dashboards, analytics and reporting for early warning
• Forensic data for post-mortem analysis

By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch delivers in-depth network visibility and security intelligence to hundreds of governments, enterprises and service providers around the world. Providing continuous security monitoring across the entire network, StealthWatch can quickly uncover DDoS attacks for expedited incident response, preventing costly service outages. In addition to DDoS attacks, StealthWatch also enables organizations to defend their infrastructure against additional types of threats including sophisticated malware, APTs and insider threats.

The new application-layer DDoS detection capabilities will be available in July as part of StealthWatch System 6.4. For more information on StealthWatch for advanced threat detection, go to: http://www.lancope.com/solutions/security-threats/.  

1 - Source: TechValidate. TVID: A36-361-B36.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Lesley Sullivan/Kendra Dorr

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 29, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has announced the appointment of Jim Ulam as general counsel and corporate secretary. Ulam has over 22 years of legal expertise, including general counsel roles with VeriSign and SecureWorks, as well as experience working with the FBI. As Lancope continues to expand globally, Ulam’s in-depth insight will be instrumental for overseeing a rapidly increasing number of commercial agreements and overall corporate expansion.

“Lancope is growing exponentially as more companies around the world recognize the unique value of flow-based monitoring for keeping their networks guarded against advanced attacks,” said Mike Potts, president and CEO of Lancope. “Jim has many years of invaluable experience across multiple facets of corporate law and government contracting, and will play a tremendous role in helping Lancope further accelerate our global growth.”

Prior to joining Lancope, Ulam served as general counsel for electronics power protection provider, Innovolt, helping the company achieve explosive revenue growth. Previously, he acted as general counsel and secretary for SecureWorks, overseeing the acquisition of the company by Dell, and also served as general counsel and secretary for the Internet domain and cyber security company, VeriSign. Earlier roles include deputy general counsel for IT company Network Solutions and contract attorney for SAIC, where he was responsible for negotiating multi-million dollar contracts with various branches of the U.S. Department of Defense.   

“Having spent time at SecureWorks and VeriSign, I possess a firm understanding of today’s cyber security threat landscape,” said Ulam. “Lancope offers a truly innovative approach to combating the many threats facing today’s organizations, and I look forward to helping the company grow to protect even more networks around the globe.”

Lancope’s StealthWatch^® System leverages NetFlow, IPFIX and other types of flow data from existing infrastructure to enhance threat detection, incident response and forensics for hundreds of governments and enterprises. Delivering in-depth network visibility and security intelligence, StealthWatch defends organizations against today’s most damaging attacks – from APTs and DDoS to zero-day malware and insider threats.

Ulam earned his B.S. in Business Administration from the University of Maryland, and attended law school at the Mississippi College School of Law. Prior to attending law school, he was a contracting officer for the FBI, and worked in contracts administration for technology provider, Unisys.

For further details on Lancope’s leadership team, go to: http://www.lancope.com/company-overview/management/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Lesley Sullivan/Kendra Dorr

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 20, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, unveils new, user-centric monitoring capabilities for streamlined forensics and incident response. The new features, which enable administrators to investigate network behaviors and anomalies based on user names, significantly enhance Lancope’s network protection against both sophisticated, targeted attacks and insider threats.

“Lancope’s StealthWatch^® System leverages network flow data to deliver actionable security intelligence for combating today’s top threats,” said Kerry Armistead, vice president of product management for Lancope. “As the threat landscape becomes more complex, we continue to innovate to help organizations make immediate sense of the plethora of data available on the network. Our new, user-centric functionality provides an additional means of querying, searching and reporting on flow data to increase network visibility and reduce enterprise risk.”

Identity awareness has long been a cornerstone of Lancope’s early threat detection capabilities. StealthWatch users can obtain identity data from either the StealthWatch IDentity™ appliance or the Cisco Identity Services Engine (ISE). By uncovering both the user causing an event and the other users affected, StealthWatch provides greater accountability and immediate insight into network issues.

With new, user-centric monitoring features, network and security teams can now run flow queries and reports based on user names versus just IP addresses. Administrators can also search on user names, as well as obtain a User Snapshot outlining a specific person’s network activity – including any anomalous behavior or alarms triggered. These new capabilities are invaluable for combating the growing rise in insider threats, as well as for improving incident response, forensics and audit controls for regulatory compliance.

“Building on the premise that enterprise networks are likely already compromised, Lancope’s StealthWatch System is designed to detect and halt attacks inside the network, allowing remedial actions to be taken before they escalate into major issues,” said Javvad Malik, senior analyst at The 451 Group. “As advanced attacks continue to infiltrate perimeter defenses, behavioral-based network monitoring solutions like StealthWatch are becoming increasingly valuable, especially when bolstered by additional functionality like identity awareness.”

Insider attacks, in particular, can be difficult to differentiate from legitimate network transactions and are often not detected by signature-based security systems. External attackers are also increasingly using social engineering tactics and stolen credentials to bypass perimeter defenses and gain access to the internal network. The only way to prevent insider threats is to have visibility into what users are doing on the network so that suspicious behavior can be identified and further investigated.

StealthWatch collects and analyzes NetFlow, IPFIX and other types of flow data and provides additional security context to help organizations more proactively identify the full spectrum of cyber threats facing today’s enterprises – including advanced malware, APTs, insider threats and DDoS. The technology vastly improves security operations by turning the network into an always-on sensor grid for detecting anomalous behavior that could signify risk.

The new, user-centric monitoring capabilities will be available in July as part of StealthWatch System 6.4. For further details on StealthWatch identity awareness for improved risk management, go to: http://www.lancope.com/solutions/security-operations/identity-awareness/. Please find a recent report on StealthWatch by The 451 Group here: http://www.lancope.com/resource-center/industry-reports/lancope-catches-malware-report/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 13, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has joined the Cloud Security Alliance (CSA), a not-for-profit organization that promotes best practices for security assurance in cloud computing. The alliance, led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders, also provides education on the use of cloud computing as a means of securing other infrastructure.

“As a company that provides in-depth network visibility and security intelligence across both physical and virtual environments, Lancope is a great fit for our organization,” said Jim Reavis, executive director at CSA. “The company’s StealthWatch System is the type of innovative solution that organizations need to help shore up their security amidst an ever-evolving IT and threat landscape. Lancope’s next-generation capabilities will be invaluable in helping CSA in our ongoing threat and cloud assurance research initiatives.”

By providing comprehensive visibility and insight across the entire network, Lancope’s StealthWatch^® System enables organizations to detect advanced threats that evade conventional defenses, including APTs, insider threats, DDoS and zero-day malware. StealthWatch provides the same level of intelligence across virtual environments as it does for physical infrastructure. Additionally, StealthWatch is offered in both a hardware and virtual form factor, helping enterprises embrace the benefits of cloud computing without sacrificing network protection.

StealthWatch’s additional levels of insight, including mobile, application and identity awareness, further enhance security context for advanced threat detection, incident response and forensics. These capabilities are particularly beneficial in a cloud environment since one of the key drivers of cloud computing is to enable users to access corporate applications from virtually anywhere using any device they choose (a.k.a. BYOD).

“When organizations transition to virtual and cloud environments, they unfortunately lose much of their network visibility as well as the efficacy of many traditional security solutions, complicating problem identification and resolution,” said Mike Potts, president and CEO at Lancope. “With StealthWatch, they can quickly regain that visibility and protection. We are excited to bring this expertise to the Cloud Security Alliance to help organizations experience the advantages of next-generation computing without dramatically impacting their risk posture or introducing undue compliance challenges.”

Without being able to monitor who is doing what on the network, when and with which device, it is extremely difficult to protect today’s dynamic technology environments. By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch empowers hundreds of government and enterprise organizations around the world to maintain high levels of security while continuously embracing new IT innovations. Further details on StealthWatch for security can be found at: http://www.lancope.com/solutions/security-operations/.

For more information on the Cloud Security Alliance, go to: www.cloudsecurityalliance.org.

About the Cloud Security Alliance
The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, May 7, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has released a new report entitled “APTs and Incident Response: The Next Frontier of Cyber Security.” The report examines recent trends in cyber-attacks and how organizations can more effectively address evolving threats by elevating the importance of incident response within their overall security strategies.

“Few organizations view their incident responders as the front line in their defensive posture,” said Tom Cross, director of security research for Lancope. “However, the intelligence gathered from investigating breaches is the vital ingredient that enables an organization to thwart subsequent attacks; so in a very real sense, the incident response team should become the heart of everything an organization does to protect its network.”

The Lancope report examines the rise of the Advanced Persistent Threat (APT) all the way from the coining of the term in the early 2000s and Operation Aurora in 2010, to the most recent attacks on the Wall Street Journal and New York Times. Third-party reports from Mandiant, Cisco and others are also referenced.

“According to the Enterprise Strategy Group (ESG), nearly three-quarters of organizations expect to be the target of APTs in the near future,” said Amrit Williams, CTO of Lancope. “Organizations need to realize that they are either compromised or will be soon and that traditional techniques need to be augmented with newer methods to provide visibility and control into all aspects of the internal environment.”

The report also discusses how NetFlow collection and analysis can help fill in the gaps in conventional security strategies for improved incident response. Using the recently uncovered “APT1” attacks as an example, Lancope demonstrates how technical indicators of an attack can be fed into a flow-based monitoring system to gather actionable security intelligence for preventing future attacks.

By combining flow-based behavioral analysis and in-depth security context, Lancope’s StealthWatch^® System provides a comprehensive view of network activity to keep organizations a step ahead of sophisticated attackers. Lancope’s security capabilities are continuously enhanced with research from the StealthWatch Labs Intelligence Center (SLIC).

“When you are living with an advanced threat, you are playing a nonstop game of cat and mouse on your computer network,” adds Cross. “The need to collect and analyze intelligence isn’t a one-time requirement that occurs as the result of a single incident. It needs to be an ongoing part of any organization’s defensive operation.”

Learn how to properly equip and empower your incident response team to fend off APTs and reduce enterprise risk. Access the full Lancope report, “APTs and Incident Response: The Next Frontier of Cyber Security,” here: http://www.lancope.com/resource-center/industry-reports/apt-and-incident-response-security-report/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Lesley Sullivan

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, April 23, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, has announced the appointment of Joe Buchanan as vice president of systems engineering. Buchanan joined Lancope in 2004, most recently serving as a director, and has over 14 years of technology industry experience with a focus on analyzing complex networks and designing an effective security and monitoring solution. In his new role, he is responsible for driving technical pre-sales, solution architecture and implementation to ensure customer satisfaction for Fortune 1000 companies.

“Joe is a tremendous asset to our company and is loved by our customers and highly respected by our business partners,” said Mike Potts, president and CEO of Lancope. “He has already made great headway in ensuring a positive customer deployment experience, and will undoubtedly continue to work tirelessly in his new role to further grow Lancope’s customer base and expand our systems engineering infrastructure.”

Prior to joining Lancope, Buchanan worked in a senior systems support role with Mirant, a Fortune 500 energy company that was previously a division of Southern Company. Preceding Mirant, he spent seven years in the United States Air Force. Buchanan holds a B.S. degree in computer science from the University of Maryland, as well as numerous technical certifications.

“Since I joined the company in 2004, Lancope has continuously offered innovative solutions for solving the toughest network and security challenges facing governments and enterprises,” said Joe Buchanan, vice president of systems engineering for Lancope. “As IT infrastructure and the threat landscape continue to evolve, Lancope’s StealthWatch^® System helps keep organizations a step ahead of attackers with unique, behavioral-based monitoring and advanced security intelligence. I look forward to playing an enhanced role in helping customers leverage StealthWatch to fend off sophisticated attacks and keep their networks up-and-running.” 

By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch significantly improves early threat detection and incident response capabilities for hundreds of government and enterprise organizations around the world. More information on StealthWatch can be found at: http://www.lancope.com/products/.

For further details on Lancope’s leadership team, go to: http://www.lancope.com/company-overview/management/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

London (UK) and Infosecurity Europe, 18 April 2013 – As part of this year’s education programme at Infosecurity Europe, Amrit Williams, CTO at Lancope, Inc., a leader in network visibility and security intelligence, will present on how to detect and thwart the various stages of an advanced attacker’s kill chain. By implementing controls along the entire kill chain, organisations can stop an exploit or infection prior to data exfiltration. Further information on the presentation is available here. 

The continuing rise of sophisticated, targeted attacks is prompting new thinking about the defence of computer networks. According to recent research, 85 percent of security incidents go completely undetected by the breached organisation, and 92 percent of uncovered incidents are discovered by a third party.^{i, ii} According to another report, a typical zero-day attack lasts 312 days on average.ⁱⁱⁱ Advanced threats not only bypass perimeter security technologies such as firewalls, IPS and email security, but also manage to stay undetected by internal security controls such as anti-virus and host-based IPS.

Borrowed from military jargon, the kill chain refers to the steps a sophisticated attacker goes through in order to execute a successful strike. In the presentation, Williams will discuss each stage of the kill chain and present a multifaceted approach for detecting and preventing attacks at each stage.

The discussion will enable attendees to:

• Understand why conventional controls are no longer enough to fend off advanced attacks

• Learn about each stage of the kill chain

• Know how to best apply existing security technologies to each stage of the kill chain

• Determine which additional tools and strategies may be needed within an organisation to combat advanced threats

“Incident response is becoming the centrepiece of advanced threat defence,” explains Williams. “With companies taking an estimated 300+ days to identify that they’ve been compromised, malware has the chance to spread across the network and steal confidential data. Organisations need to augment traditional controls with better incident response teams, forensic capabilities and technologies that provide visibility into the state of their internal networks.”

The Lancope presentation, “Targeting the Kill Chain: A multifaceted approach to defence in depth,” will take place on Wednesday, 24th April 2013 from 12:40 - 13:05 in the Technical Theatre at Infosecurity Europe in Earls Court, London. As chief technology officer, Williams brings over 18 years of experience in security and technology to Lancope, and previously served as an analyst with Gartner Research. He holds CISSP and CISM certifications, and has obtained several technology patents.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Neil Stinchcombe

Eskenzi PR

+44 20 71 832 833

neil@eskenzipr.com

ATLANTA, April 15, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, is offering a free trial of its StealthWatch^® FlowReplicator. Available as either a standalone solution or as part of a larger StealthWatch deployment, the FlowReplicator enables both novice and advanced NetFlow users to significantly improve their security posture and network operations by making it easy to collect flow data for analysis and reporting. To access the free trial, go to: http://www.lancope.com/trials/fr/.*

“NetFlow has quickly emerged as a powerful technology for obtaining optimal network visibility and security,” said Jim Frey, vice president of research at Enterprise Management Associates (EMA). “Already inherent in routers, switches and other infrastructure devices, flow data provides a cost-effective means of filling in the gaps left by conventional solutions, and is lightweight enough to be used in virtual and cloud deployments. Lancope’s FlowReplicator enables enterprises to overcome inherent limitations on the number of NetFlow destinations and leverage flow telemetry for cost-effective network performance and security monitoring.”

The FlowReplicator is a purpose-built device for the high-capacity replication of disparate log data to one or many destinations. By aggregating and providing a single, standardized destination for NetFlow, IPFIX, sFlow, Syslog and SNMP information, the FlowReplicator greatly simplifies the integration of multiple types of network and security data within large enterprises. The appliance can receive data from any connectionless UDP application, and is available in either a physical or virtual form factor, allowing users to choose the implementation and maintenance structure that works best for their organization.

Lancope’s StealthWatch System collects and analyzes flow data from existing infrastructure to provide in-depth network insight and security context for improved troubleshooting and incident response. By delivering a comprehensive view of network activity, StealthWatch can help organizations defend their networks from advanced challenges including APTs, insider threats, cloud computing and BYOD.

The FlowReplicator free trial is a fast, easy way to begin experiencing the power of NetFlow for enhanced security, forensics, performance and compliance. Further information on the product can be found at: http://www.lancope.com/products/stealthwatch-flowreplicator/. Download the free trial here: http://www.lancope.com/trials/fr/.

*VMware vSphere v4.x or v5.x infrastructure required to deploy trial.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

With a 259 percent return on investment (ROI) within three years according to a commissioned study conducted by Forrester Consulting, StealthWatch delivers tangible benefits for enterprises:

• The American Cancer Society reduced the time it took to mitigate a security incident by more than 75 percent with StealthWatch. (Source: TechValidate. TVID: 0EF-E3C-98F)
• Central Michigan University reduced mitigation time for security incidents by 25 to 49 percent with StealthWatch. (Source: TechValidate. TVID: 099-041-236)

“While it is still very useful for measuring the overall health of a network, flow-based monitoring has quickly emerged as a must-have technology for improving cyber security,” said Mike Potts, president and CEO of Lancope. “As conventional security tools continue to be evaded by sophisticated attackers, advanced security monitoring solutions like StealthWatch have become critical for detecting suspicious internal network behaviors that are indicative of an attack.”

Lancope customers agree:                                                                                          

• According to a large enterprise financial services company, “Lancope has allowed us for the first time to truly have visibility of what’s happening within our internal networks and see suspicious traffic as it develops...” (Source: TechValidate. TVID: ECC-001-141)
• A chief security officer in the retail industry said, “Lancope’s real-time view of network traffic and events is useful for security monitoring and is equally effective at application performance monitoring.” (Source: TechValidate. TVID: 988-881-376)
• According to a Global 500 professional services company, “Lancope’s StealthWatch has enabled us to detect malware that other security controls are unable to detect or block, and find the affected sources inside our network, clean them, and reduce bad network traffic.” (Source: TechValidate. TVID: E30-CB8-7B8)
• An engineer from an enterprise pharmaceutical company added, “The intelligence that Lancope gives us is immeasurably valuable in terms of security response, forensics and knowledge of what is happening on the network.” (Source: TechValidate. TVID: D4F-5EA-836)

By collecting and analyzing NetFlow, IPFIX and other types of flow data from existing infrastructure, StealthWatch provides an always-on sensor grid for detecting anomalous behavior and threats within the network. With advanced capabilities including virtual, mobile, identity, application and host reputation monitoring, StealthWatch significantly improves early threat detection and incident response capabilities for hundreds of government and enterprise organizations around the world.

The TechValidate survey data also revealed that, among participating IT organizations:

• 76 percent primarily use StealthWatch for incident response (Source: TechValidate. TVID: E42-9BC-659)
• 72 percent primarily use StealthWatch for security forensics (Source: TechValidate. TVID: BB6-24C-48B)
• 60 percent use StealthWatch to detect or prevent network reconnaissance (Source: TechValidate. TVID: E18-7B0-612)
• 69 percent used StealthWatch to detect or prevent malware or viruses (Source: TechValidate. TVID: A67-C90-FF3)
• 83 percent used StealthWatch to detect or prevent suspicious user behavior (Source: TechValidate. TVID: 609-77A-F7D)

Lancope recently launched the latest version of its StealthWatch System, featuring the StealthWatch Labs Intelligence Center™ (SLIC) Threat Feed, which leverages global threat intelligence to provide an additional layer of protection from sophisticated attacks. For more information on StealthWatch for security monitoring, go to: http://www.lancope.com/solutions/security-operations/.  

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com

ATLANTA, March 18, 2013 – Lancope, Inc., a leader in network visibility and security intelligence, will deliver a complimentary webinar on Thursday, March 28 at 11:00 a.m. ET / 8:00 a.m. PT to discuss how organizations can detect APT1 within their networks. The company will also reveal new APT1 technical indicators discovered by its StealthWatch^® Labs research team. For more information on the free webinar, or to register, go to: http://www.lancope.com/company-overview/webinar/hunting-for-apt1-inside/.    

Mandiant’s recent report on APT1, describing computer network attacks tied to China, was a watershed event that significantly raised awareness about the threat of state-sponsored computer network intrusions. Of course, the first thing that everyone wants to know when they hear reports like this is whether or not the attacks impacted their network.

“Based on the technical indicators of the attack, Lancope provides a unique way to look back into past network activity to determine whether an organization was successfully compromised by APT1,” said Tom Cross, director of security research for Lancope. “Due to the persistent nature of these attacks, it is likely that if an organization was compromised in the past, its network may still be targeted now and into the future. Discovering these indicators within the network is an important starting point for conducting a thorough forensic investigation in order to prevent subsequent attacks.” 

Join this webinar to learn about Lancope’s new research results and discover how to determine whether APT1 has successfully compromised your network. Lancope’s director of security research, Tom Cross, will explain what organizations should be looking for in light of this new research, and senior systems engineer, Charles Herring, will demonstrate how to use intelligent network surveillance to find it.

WHO:             Tom Cross, Director of Security Research, Lancope, Inc.   

                        Charles Herring, Senior Systems Engineer, Lancope, Inc.

WHAT:           “Hunting for APT1 Inside Your Network”

WHEN:           Thursday, March 28, 11:00 a.m. ET / 8:00 a.m. PT

REGISTER:   http://www.lancope.com/company-overview/webinar/hunting-for-apt1-inside/

The StealthWatch Labs research team conducts both in-house research and taps into a broad community of third-party experts and partners to aggregate emerging threat information from around the world. Research is shared with customers and the public through the StealthWatch Labs Intelligence Center, and is also leveraged internally to enhance the early threat detection capabilities of Lancope’s StealthWatch System. For more information on how to detect APT1 with StealthWatch, go to: http://www.lancope.com/blog/stealthwatch-and-apt1/.

About Lancope
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch^® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.

# # #

©2013 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.

Media Contacts:

Jody Ma Kissling 

Lancope, Inc.

770-225-6513

jma@lancope.com

Bill Keeler/Nina Gill

Schwartz MSL

781-684-0770

lancope@schwartzmsl.com