In the wake of NASDAQ Hack and Stuxnet Virus, Q1 Labs Issues Executive Guidance on Avoiding Network Breach
WALTHAM, Mass. – February 11, 2011 – Q1 Labs, the global provider of total security intelligence solutions, today issued guidance for enterprises looking to better protect their networks from threats – both insider and cyber crime – in the wake of the recent report of NASDAQ suffering a network breach.
“NASDAQ Director’s Desk breach is the latest high profile example of breaches that are taking place every day,” said Tom Turner, senior vice president of marketing and channels at Q1 Labs. “This is a perfect example of industrial cyber espionage, where intruders enter the network inconspicuously to sit and wait for the right time to unleash its wrath on the network, otherwise known as Advanced Persistent Threats (APTs). Companies of all sizes are being attacked repeatedly on a daily basis, and they often lack the visibility and situational awareness to deal with these attacks. We provide the Security Intelligence necessary to detect and alert on anomalous behavior that is often the harbinger of APTs.”
Top reasons organizations’ networks are successfully breached include:
- Lack of investment in core information security infrastructure technology, including but not limited to, switches, firewalls, IPS, VPNs, vulnerability scanners, and identity/access management.
- Lack of sufficient security intelligence on the network.
- Not properly leveraging the information security technology they already own; this includes having poorly configured network and security devices.
- Not addressing key vulnerabilities in their infrastructure.
- Unable to effectively minimize risk because of organizational and/or technology silos.
In retrospect, previous high profile attacks such as Stuxnet, the Google breach, Wikileaks, NASDAQ and others are all connected; the key theme is low and slow APTs. These breaches are the driving force for the need for Security Intelligence – the ability to see everyaction taking place on a network.
As the only Security Information and Event Management (SIEM) provider to integrate Application Layer Behavior Analysis, Q1 Labs is uniquely positioned to provide effective visibility and context by correlating network & application activity against log events and other security telemetry across entire networks. As a result, the company offers the following recommendations regarding network security in order to prevent a breach; organizations should:
- Break down technology silos through the integration and analysis of a broad spectrum of information including network, virtual network, security, vulnerability, asset, application, and configuration data, among others.
- Bridge operational silos and deliver the most appropriate security functions to meet the requirements of a broad spectrum of users including operators, analysts, auditors, managers, and executives, among others.
- Have all the contextual information needed to prioritize the risk of a security incident based on the overall impact to the business.
- Automate the detection and notification of newly introduced risks on the network.
- Seek to establish an integrated security intelligence framework for assessing risk across all relevant information.
For more information and to receive in-depth guidance on how to prevent a breach, click here to download the “Five Practical Steps to Protecting Your Organization Against Breach” white paper from Q1 Labs.
Visit Q1 Labs’ Website
Follow Q1 Labs on Twitter
About Q1 Labs
Q1 Labs is a global provider of high-value, cost-effective next-generation security intelligence products. The company’s flagship product, the QRadar Security Intelligence Platform, integrates previously disparate functions – including SIEM, risk management, log management, network behavior analytics, and security event management – into a total security intelligence solution, making it the most intelligent, integrated and automated security intelligence solution available. QRadar provides users with crucial visibility into what is occurring with their networks, data centers, and applications to better protect IT assets and meet regulatory requirements. Q1 Labs is headquartered in Waltham, Mass., U.S.A., and the company’s global customer base includes managed service providers, healthcare providers, energy firms, retail organizations, utility companies, financial institutions, government agencies, and universities, among others. For more information, visit Q1Labs.com, e-mail info@Q1Labs.com, or call 781-250-5800.