Lancope, Inc., a leader in network visibility and security intelligence, will present at the Infosecurity Europe conference, taking place April 29 – May 1 in London. Lancope Director of Security Research Tom Cross will demonstrate how enterprises can more easily detect and analyze sophisticated, targeted attacks within their networks using existing network logging technologies such as NetFlow and IPFIX. The session, entitled “Hunting attackers with network audit trails,” will take place on Thursday, May 1 at 12:00 p.m. BST in the Infosecurity Europe Technical Theatre.
“Most of the organizations falling victim to today’s targeted threats have a valuable security resource on their hands that they are unfortunately not fully leveraging,” said Cross. “By collecting and analyzing flow data inherent in existing networking infrastructure, organizations of all sizes and complexity levels can cost-effectively gather actionable security intelligence for vastly improved threat detection, forensic investigations and incident response.”
By attending the Lancope session, Infosecurity Europe participants will:
· Understand why sophisticated attackers are able to subvert perimeter network defenses
· Discover how standard network logging technologies such as NetFlow and IPFIX work and how to enable them on popular networking equipment
· Be aware of open source and commercial NetFlow collection solutions and how to use them to analyze network traffic
· Learn how to discover and investigate attacks within network audit trails
· Find out how to apply threat intelligence gleaned from incident investigations to protect an organization against future attacks
Tom Cross heads up Lancope’s StealthWatch® Labs, which conducts both in-house research and taps into a broad community of third-party experts and partners to aggregate emerging threat information from around the world, and apply that intelligence to strengthening customers’ security postures. Cross has over a decade of experience as a computer security researcher and thought leader and is credited with discovering a number of critical security vulnerabilities in enterprise-class software.
In addition to presenting at the show, Lancope will also exhibit its new StealthWatch System Version 6.5 at Infosecurity Europe Booth #F28. The StealthWatch System delivers advanced network behavior and security analytics for accelerated protection from a wide variety of threats – including zero-day malware, DDoS attempts, insider threats and APTs.
StealthWatch System 6.5 enhances users’ ability to uncover and thwart the various stages of the attacker’s “kill chain,” such as network reconnaissance, command-and-control activity and data hoarding. The StealthWatch System is used by more than 700 government and enterprise organizations worldwide, and is also a key component of the Cisco Cyber Threat Defense Solution.
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team.