New Version of ManageEngine’s EventLog Promises to Enhance Network Security with Global IP Threat Database

EventLog Analyzer 11.2, ManageEngine’s Security Information and Event Management (SIEM) solution, has an enhanced threat intelligence platform able to detect traffic from blacklisted IP addresses.

The real-time IT management company’s new solution offers real-time email or SMS notifications upon detection of malicious IP traffic to help administrators contain the IP-based attacks at the initial stage.

Being able to detect the malicious IP sources and then blocking them is a company’s first line of defense of such attacks. Hackers are constantly using new, seemingly benign, IP addresses to inject malicious content into a network without alerting the company’s SIEM. Because of this, security solutions need to continuously update their global IP databases to keep organizations safe.

“Deploying traditional security solutions, such as network firewalls, antivirus and malware detection systems, will not be effective for unknown threat attacks. Manually configuring firewalls and other network devices to include the malicious IP address is a daunting task that requires frequent updates,” said Manikandan Thangaraj, product manager, IT security solutions, at ManageEngine.

EventLog Analyzer, Thangaraj said, has the capability to easily and effectively solve the IP address problem by detecting and updating blacklisted IP addresses in real time and providing in-depth visibility on IP-based threats to create effective security policies.

EventLog Analyzer 11.2 has a list of approximately 600 million blacklisted IP addresses sourced from the top and trusted open source sites that updates daily.

The solution also sends real-time email or SMS notifications as soon as the malicious IP interacts with the network, giving companies an opportunity to respond immediately. Detailed reports on malicious IP interactions are also available, making the process easier and more efficient.

The newest version of EventLog Analyzer is available for a base price of $495 and can be downloaded here.


Key Takeaways:

– EventLog Analyzer has a list of 600 million blacklisted IP addresses updated daily.
– The SIEM solution sends real-time emails and text messages to alert IT Teams of interactions with malicious IP addresses.
– Real-time blocking of malicious IP addresses eliminates the need for IT teams to perform additional inspection on intrusions, exploits, malware, traffic handling, and analysis improving threat-handling efficiency and reducing the time to mitigate IP-based threats.