Netscout enables customers to automatically and instantly block DDoS attacks

News Desk -

Share

NETSCOUT SYSTEMS, INC., a provider of cybersecurity, service assurance, and business analytics solutions, announced the release of a new, innovative AI-based solution. The new solution will allow Netscout customers to automatically and instantly block a large proportion of DDoS attacks, simplifying operations and reducing risk to their businesses.

“This is an innovative way to block DDoS attacks,” stated Darren Anstee, chief technology officer for security at NETSCOUT. “Omnis AIF, which incorporates the new DDoS reputation feed, takes an intelligence-based approach providing customers with faster, more comprehensive, and more automated solutions. Our approach is different because we leverage global observations in DDoS attack activity to drive local automation and response. As a result, we can dramatically lower the risk of business impact due to DDoS attack for our customers.”

Darren Anstee, chief technology officer for security at NETSCOUT

The solution makes use of NETSCOUT’s ATLAS network, which provides unparalleled visibility into DDoS attack activity on the Internet. Using artificial intelligence, multiple ATLAS datasets are analyzed, curated, and correlated. This automated intelligent pipeline was created with the help of NETSCOUT’s ATLAS Security Engineering and Response Team (ASERT) to identify botnet members and other network infrastructure actively participating in DDoS attacks.

This intelligence is continuously updated and shared in real-time with NETSCOUT’s industry-leading Arbor Threat Mitigation System (TMS) and Omnis AED Smart DDoS attack protection solutions via the Omnis ATLAS Intelligence Feed (AIF). This new Omnis AIF content allows TMS and AED to know in advance the IP addresses of devices across the Internet that are being used to launch DDoS attacks, allowing them to instantly block up to 90% of attack traffic without further analysis during an attack.

This data gives TMS and AED the intelligence they need to automatically stop botnet-generated DDoS attacks such as reflection/amplification, direct-path TCP state exhaustion, application-layer, and encrypted attacks. The Omnis AIF analysis is based on NETSCOUT’s unique global DDoS attack visibility, which spans over one-third of all Internet traffic and millions of DDoS attacks. This global intelligence can then be automatically applied for local defense.

Customers will experience less business impact from legitimate blocked traffic and will spend less time analyzing DDoS attacks with this intelligence-based approach.