Call a Specialist Today! 844-294-0776

The Latest FireEye News
Product and Solution Information, Press Releases, Announcements

FireEye Releases Comprehensive Investigation Analysis System, Accelerating Incident Response
Posted: Mon Oct 06, 2014 03:31:15 PM
 

Real-time forensics capability pairs in-depth analytics and visualization with ultrafast intelligent packet capture and retrieval

Milpitas, California - Oct 6, 2014 – FireEye, Inc. (NASDAQ: FEYE), the leader in stopping today's advanced cyber attacks, today announced the release of the FireEye® Investigation Analysis System (IA Series), a forensics analytics capability that enhances and expedites incident investigation by pairing in-depth analytics and visualization with the industry’s fastest lossless, intelligent packet capture and retrieval.  With the release, the FireEye Enterprise Forensics Portfolio further complements the company’s existing threat prevention platforms by augmenting the FireEye Multi-vector Virtual Execution™ (MVX™) technology with deep record and investigative analytics.  FireEye’s IA Series addresses the demands placed on responders who must quickly shift to an investigative process, once an attempted attack has been detected.

The Investigation Analysis System is designed to provide the additional context, correlation and visualization required to identify otherwise hidden threats and enable security teams to understand:

  • How long the organization has been under attack.
  • How the attacker got in, including details on the intrusion vector.
  • The extent of the damage, including the number of systems affected and any credentials that were compromised.

“Incident visibility is a major blind spot for enterprises today,” said Jon Oltsik, senior principal analyst at the Enterprise Strategy Group. “With this release, FireEye has provided a useful resource to shine a light on the incidents that would otherwise be unseen, while providing analysts with a tool to accelerate the forensics investigative and analysis process."

“Today, a clear need exists for an integrated security and investigative solution that shortens the time between detection of advanced attacks and response,” said Manish Gupta, senior vice president of products at FireEye.  “FireEye’s new Investigation Analysis System establishes the benchmark for real-time forensics by broadening incident awareness from detection through forensics and accelerating the investigative process required for both incident response and hunting.”

The Investigation Analysis System is a standalone appliance that works hand-in-hand with the FireEye Network Forensics Platform, acquired through FireEye’s purchase of nPulse Technologies.  The Network Forensics Platform provides ultrafast packet capture and meta-data extraction, while the Investigation Analysis System extends that functionality through a centralized, easy-to-use analytical interface across an organization’s network meta-data.   Key features include:

  • Powerful visualization through customizable dashboards.
  • Integrated incident investigation case and workflow management.
  • Centralized visibility across FireEye’s Network Forensics Platform (PX Series) nodes.
  • High-performance, application-level queries on massive data sets.

 
« Return to News List