Mazu Profiler proves critical in the wake of Zotob worm.Mazu Networks, the leading provider of behavior-based, network security solutions, today announced that Mazu Profiler(TM) enabled their customers to quickly detect and contain the Zotob worm, while significantly reduce future exposure by malicious code variants. With nonstop HP's brand name for its fault-tolerant servers, which range in size from four CPUs to 4,000 CPUs. The NonStop line was created by Tandem Computers, which was acquired by Compaq, which later became part of HP. news coverage on Zotob's worldwide success in compromising corporate networks, it is clear that worms continue to be a serious problem that traditional security approaches are not effectively addressing. Mazu Profiler(TM), the leading network anomaly detection An approach to intrusion detection that establishes a baseline model of behavior for users and components in a computer system or network. Deviations from the baseline cause alerts that direct the attention of human operators to the anomalies. See IDS and anomaly. system specifically designed to protect the internal network, proved successful in contending with Zotob because it allowed Mazu Networks' customers to respond: * Quickly: Mazu Profiler alerted on Zotob's first infection point and tracked how the worm was propagating, noting the ports and protocols being exploited and listing all infected in·fect tr.v. in·fect·ed, in·fect·ing, in·fects 1. To contaminate with a pathogenic microorganism or agent. 2. To communicate a pathogen or disease to. 3. To invade and produce infection in. systems. Network anomaly detection proved beneficial because previous knowledge of the malicious code was not needed to identify and isolate Zotob. * Accurately: Mazu Profiler alerted on actual activity versus flooding security teams with nonessential non·es·sen·tial adj. Being a substance required for normal functioning but not needed in the diet because the body can synthesize it. alerts warning of hypothetical threats. * Safely: Mazu Profiler's real-time impact analysis helped customers avoid actions that could disrupt critical services. Through intelligence gained from Mazu Profiler, customers could quickly verify whether the ports being exploited by the worm were also connected to key systems and services. Consequently, customers could isolate infected systems or shutdown ports being used for worm propagation The transmission (spreading) of signals from one place to another. without adversely affecting business operations Business operations are those activities involved in the running of a business for the purpose of producing value for the stakeholders. Compare business processes. The outcome of business operations is the harvesting of value from assets . Mazu Profiler enabled Mazu Networks' customers to recover quickly and reduce opportunity for future exposure. In a climate where the time between vulnerability and exploit continues to shrink, network anomaly detection is proving to be a critical element of defense-in-depth. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion