Together, the Bit9 and RSA NetWitness Spectrum services are engineered to help improve the quality of cyber forensics, increase time-to-value by expediting investigations and reduce operational cost.
WALTHAM,USA:Bit9 announced an agreement with RSA, the Security Division of EMC, to integrate Bit9’s cloud-based software reputation service with RSA NetWitness Spectrum Live service.
Under terms of the agreement, the Bit9 Cyber Forensics Service has been integrated with NetWitness Spectrum Live subscription service, a service that is designed to assist in the identification, analysis and prioritization of malware-based threats to enterprise networks.
The Bit9 Cyber Forensics Service, as a press release tells, is a trust-based security technology that allows forensics investigators to quickly identify all known good software files on computer systems and helps to focus their efforts on a subset of malicious or suspicious executable files. Together, the Bit9 and RSA NetWitness Spectrum services are engineered to help improve the quality of cyber forensics, increase time-to-value by expediting investigations and reduce operational cost.
“Bit9’s Cyber Forensics Service helps fast-track a forensics investigation by narrowing the field an investigator needs to focus on when a company has experienced a breach,” said Allan Carey, senior manager of product marketing for RSA NetWitness. "The solutions can help our customers definitively eliminate known good software from their scope and redirect efforts on the unknown aspects of an incident or advanced threats confronting their organization."
Because the average computer contains 20,000 executable files and the average server has 40,000 or more executable files, it is difficult for IT professionals to sift through files and separate the good from the bad, especially when under a deadline during a sensitive investigation. The enhanced service, the company claims, makes it quick and easy to uncover the virtual “needle in the haystack”—the advanced persistent threat (APT). What once was a very large dataset is now dramatically reduced, which results in a much more cost-effective investigation.
“As more organizations realize the severity of cyber-attacks it becomes increasingly important that they equip themselves with the right kinds of threat detection technology,” said Doug Cahill, vice president of business development for Bit9.