On Tuesday, January 26th, 2010, as part of routine analytic tasks related to an evaluation of an enterprise network, NetWitness discovered a 75+ gigabyte cache of stolen data - the result of the activities of an unknown miscreant using a large botnet to control and monitor more than 74,000 compromised PCs. This compromise was discovered by using NetWitness NextGen™ to identify and observe a known member of an existing botnet downloading a new executable. NetWitness provides a series of security analytic applications based on a patented network forensic engine. The use of network forensic methods enables analytic paths and detective capabilities which are specifically required to deal with advanced threats.
CLICK HERE to download white paper.
|
508 Compliance Cyber Security E-discovery Intrusion Detection/Prevention Metadata Modeling Operational Security |
|
|
500 Grove Street |
703.889.8950 |
Press Release: 2nd Annual NetWitness User Conference -- October 25th and 26th, Washington, D.C.
Press Release: NetWitness Teams with RSA to Provide Real-Time Situational Awareness
Press Release: NetWitness Discovers Massive ZeuS Compromise
Press Release: NetWitness Receives U.S. Patent for Network Analysis
Press Release: Summit Partners Invests in NetWitness Corporation
Press Release: NetWitness Voted “Best Live Demonstration”
Press Release: NetWitness Announces Partnership with Targaid Trusted Systems