Skip Navigation Links
Skip Navigation Links
Skip Navigation Links
Skip Navigation Links
Challenge : Hackers

Your data is valuable --- and not just to you. The times have long past when “hackers” were limited to small groups of elite black hats, script kiddies, and others who were just interested in causing trouble.

Many successful attacks are well planned and funded because government, corporate and personal data has intrinsic economic and political value. In many cases the professional criminals, espionage agents and terrorists understand defense in depth as well or better than the organizations they are attacking. The sheer number of flaws in common software afford exploit writers a board number of options when developing original attacks and designer malware, which can be virtually undetectable by common intrusion detection and content monitoring methodologies.

For example, organized crime rings use targeted spear phishing techniques combined with unpublished application exploits to gain a foothold inside of their target’s network. Attackers maintain access to victimized organizations by installing simple, but effective program code that “beacons” to one or more hosts outside of the organization under the control of the adversary. These beacon packets can contain simple command and control or reconnaissance messages, or over time, gigabytes of exfiltrated corporate data. This technique runs rampant on government and corporate networks alike.

The Need for Next Generation Monitoring
Regardless of all the wily techniques used by these bad actors, there is one unavoidable truth: while hackers can evade countermeasures such as IDS, firewalls and content monitoring, they cannot evade having their activities recorded by the full packet capture and session reconstruction provided by NetWitness NextGen.

NetWitness Decoder and Concentrator comprise the underpinnings of an enterprise infrastructure providing comprehensive situational awareness and visibility into content and context of all network activity. When combined with power of automated reporting and alerting in Netwitness Informer and the interactive network forensics and analytics in NetWitness Investigator, your organization can acquire the Total Network Knowledge needed to deal effectively with multidimensional threats from today’s hackers.



 Support Community Blog