NetWitness is used by several Global 1000 companies in fields such as financial services, power and energy, telecommunications and retail as well as government agencies involved in defense, homeland security and law enforcement. According to EMC, security threats that NetWitness defends against include: insider threats; zero-day exploits and targeted malware; advanced persistent threats; fraud; espionage; and data leakage. NetWitness also provides continuous monitoring of critical security controls.
NetWitness is a well respected security analysis and visualization platform, according to Scott Crawford, managing research director at Enterprise Management Associates, an industry research firm. "It has become popular with investigative security professionals that value more than just insight into a more complete context of threat activity," Crawford wrote in a blog post Monday. "It has become a critical aspect of recognizing the extent to which any exploit can succeed."
Other companies competing with NetWitness include Solera Networks, Nicksun and AccessData and interest in them as acquisition targets should increase in the wake of the EMC/NetWitness deal, Crawford said in an interview.
RSA was forced to disclose a breach, which "resulted in certain information being extracted from RSA's systems," wrote Art Coviello, executive chairman of RSA, in a blog post Friday. The attack targeted RSA's SecureID two-factor authentication products, Coviello wrote.