Damballa is the leading provider of security solutions that protect enterprise, ISP and telecommunication networks against advanced malware, persistent threats, and zero-day targeted attacks. Our unique approach rapidly identifies the command-and-control infrastructure used by criminal operators to exfiltrate data from assets and devices infected with malware. Our signatureless solutions improve security both inside and outside the network perimeter and stop threats traditional prevention solutions miss. Damballa identifies the severity and intent of these attacks even when the malware evades detection.
Damballa Failsafe is the leading solution for detecting and terminating persistent threats and targeted attacks in enterprise networks. Damballa Failsafe hunts for hidden infections and undetected threats by monitoring and analyzing egress, proxy and DNS traffic, and detecting and analyzing suspicious file downloads. By correlating suspicious network activity, Damballa Failsafe can pinpoint infected assets while profiling the severity of the threat and providing full forensics regarding threat activity and the criminal operators behind the threat.
Damballa CSP is protecting some of the largest cable and wireless ISP networks in the world. By monitoring DNS activity to detect infected subscribers, Damballa CSP is a 'light weight', highly scalable and powerful solution for identifying network abuse and infected subscribers.
Damballa FirstAlert is the advanced cyber threat intelligence system that powers the Damballa Failsafe and Damballa CSP offerings. Damballa FirstAlert detects emerging threats long before the rest of the security industry has discovered and analyzed the related malware, and it is based on more than a half a decade of global DNS traffic monitoring and malware analysis, superior machine learning technology, six patents pending and backed by some of the world's leading authorities in cyber threats and criminal networks.