Zotob: Zero-Hour Detection and Response

This White Paper explains how Network Anomaly Detection Systems (NADS), such as Lancope's StealthWatch System, provide zero-hour detection of and response to network threats, like Zotob, that bypass traditional security defense. This document explores the multiple detection elements within the StealthWatch System that work together to provide zero-hour detection of abnormal activity on the network, the immediate identification of infected hosts within the network, and the forensic data to not only expedite understanding and cleanup of infected hosts, but also minimize interruptions as well as damage.