LONDON (UK): Lancope, Inc., a leader in network visibility and security intelligence, has announced new application-layer detection for distributed denial-of-service (DDoS) attacks as part of its StealthWatch® System 6.4. Combined with existing functionality for identifying volumetric DDoS attacks, the new capability enhances enterprise protection from this increasingly concerning type of online threat.
“The use of DDoS attacks has increased over the past several years. While the size and duration of volumetric attacks continue to grow, attackers are increasingly using application-layer and encrypted attacks,” said Kerry Armistead, vice president of product management for Lancope. “Today’s organisations must be prepared to thwart attacks on as many fronts as possible. StealthWatch 6.4 includes both application and volumetric DDoS detection to offer customers a multi-pronged approach for identifying and halting DDoS attacks before they disrupt critical operations.”
DDoS is currently playing a key role in hacktivism, and is also frequently used as a cover for more insidious attacks, distracting victims with service outages in order to steal money or confidential data. In fact, 76 percent of surveyed IT organisations that use StealthWatch for security forensics were influenced to acquire the system because of its DDoS detection capabilities.1
StealthWatch 6.4 extends Lancope’s DDoS detection into the application layer with the ability to identify and alarm on slow connection floods for HTTP and HTTPS. StealthWatch also enables organisations to detect the source of volumetric DDoS attacks by alarming on unusually large traffic volumes, providing a comprehensive strategy for protecting corporate and government resources from these rising attacks.
To effectively prevent large-scale DDoS attacks, organisations require not only mitigation solutions, but also network visibility tools that can make sense of the fog that rises during a denial-of-service attack