InterCloud Security Service aims to stop botnet and zombie attacks

InterCloud Security Service

Company: Trend Micro

Details: Currently in beta, general availability expected in 2007.

Challenge: Botnet zombie attacks are on the rise. Enterprises are winding up on spam blacklists, bringing productivity to a halt and jeopardizing corporate integrity. Companies attempt to remediate attacks by inspecting the content of messages, but this approach can be processor-intensive.

Click to see: ICSS screen shot

Solution: Trend Micro’s InterCloud Security Service uses a behavioral model to analyze and remediate botnet and zombie attacks. The appliance sits on the edge of the network and acts as a replacement for an organization’s recursive DNS server, says Paul Moriarity, director of product development for Internet content security at Trend Micro. The service monitors each computer on the network’s activity, watching for anomalous behavior. “If a computer is sending a lot of e-mail over a short period of time, it’s probably a spambot,” he says. The service also tracks whether machines are visiting well-known botnet command and control centers, where zombies receive instructions. Moriarity says managed security services help IT battle this growing problem. “Managed providers are able to constantly identify new threats and patterns and push that information in real-time to appliances,” he says.

< Previous story: Genius Interactive provides on-demand e-commerce customer tracking | Next story: MojoPac lets you put any app on a storage drive >