With Damballa, OEMs supplement their existing product and service offerings with:
- Accurate international information on targeted attacks – with virtually no false positives or guesswork
- Real-time intelligence on suspicious and malicious activities – both inside and across corporate boundaries
- Actionable information on compromised systems for rapid prioritization and remediation
- 24x7 access to the Damballa Knowledgebase for additional detai.
Other OEM solution details include:
| Feature |
Description |
Client Benefit |
| Service Level Agreement |
- Guaranteed uptime for Damballa intelligence feed
- Data is warranted as accurate
|
- OEM clients receive reliable, accurate, timely targeted attackinformation
|
| Frequent Updates |
- Hourly and daily updates on suspicious and malicious activity
- ATOM data feed for all relevant intelligence fields
|
- Allows OEM to prevent individual bots and other malware from acting in a unified, coordinated manner
- OEMs can choose when to update user devices, including incremental fees for frequent updates
- Information flows even when upgrading sending and receiving infrastructure
|
| Identification of compromised Systems |
- IP addresses
- BotArmy associations
- Malware type
|
- Information is more usable and actionable than simple, exhaustive IP address lists
|
| Online activity that AV and IDS/IPS solutions miss |
- Current and historical machine status
- Recent activity from compromised systems
- Probability that host is still compromised
|
- OEM customers gain the ability to accept, deny or quarantine communications
|
| Knowledgebase understanding |
- BotArmy attack, reconnaissance and polymorphic capabilities
- Recent suspicious and malicious activities, including rallying and attack information
- Remediation guidance for compromised systems
|
- Provides end users with an understanding of the risk to intellectual property
- Educates client management on targeted threats
- Enhances the standing of the OEM within the installed base
|
