Social network auditing and malware detection tool released by Raytheon

SALT LAKE CITY, 18 Sept. 2010. Raytheon Co. (NYSE: RTN) released SureView 6.5, an endpoint information-protection solution that provides enterprises with improved abilities to audit social-networking activity, expand investigative capabilities to detect malware, and increase scalability.

Sep 18th, 2010

Posted by John McHale

SALT LAKE CITY, 18 Sept. 2010. Raytheon Co. (NYSE: RTN) released SureView 6.5, an endpoint information-protection solution that provides enterprises with improved abilities to audit social networking activity, expand investigative capabilities to detect malware, and increase scalability.

Raytheon SureView supports organizations' efforts to mitigate cybersecurity risks by proactively auditing end-user behavior on computer endpoints for policy violations and high-risk activity. The tool captures policy violations, compliance incidents, and malicious acts that might lead to an information breach and then replays the events in a digital video recorder-like format.

"Our customers face a daunting array of continuously evolving cyberthreats -- both from external actors as well as insiders," says Steve Hawkins, vice president of Raytheon's Information Security Solutions product line. "SureView's enhancements were developed in response to our customers' specific requirements to help them more effectively manage the risks associated with multiple threat vectors. SureView goes beyond data-leak protection to provide proactive information protection."

SureView 6.5's new features include: enhanced capabilities for mitigating the advanced persistent threat (APT), including new malware-detection capabilities; new social-networking auditing to monitor high-level activity on the top 150 social-networking websites; and the new Investigator Workbench, which is an intuitive organization and collaboration tool that enables users to group and organize data, including video replay and notes, into a virtual briefcase for easy sharing and export.

"Raytheon SureView captures user activities such as accessing classified or proprietary data and trying to send it outside the firewall," Hawkins says. "SureView then provides a playback of that activity, enabling proactive mitigation of harmful acts."

The new Raytheon tool also offers increased processing speed, both from the collector to the central database, and from the central database to the Investigator Workbench. The new search engine enables operators to narrow and define searches to specific data types, all from one screen. Operators can review more data in less time, quickly accessing incidents in seconds.

SureView complements other solutions designed to mitigate the APT by providing irrefutable and unambiguous attribution of end-user activity in full context to rapidly discern malicious from benign actions while respecting employee-privacy guidelines.

More in Defense Executive