Progress Software has unveiled a new version of its network anomaly detection system, Flowmon ADS 12.5. The update focuses on using artificial intelligence mechanisms to automate and simplify defence processes.
The aim is to address the shortage of specialists and alert overload in IT teams, especially in medium-sized companies.
Today’s security departments are faced with increasing volumes of network traffic, a deluge of notifications (alert fatigue) and increasingly sophisticated attacks. The problem is particularly acute in medium-sized companies, where limited human and budgetary resources make it difficult to respond effectively.
Delays in detecting and neutralising threats are becoming a daily occurrence there.
The new version of Flowmon ADS aims to reduce mean time to incident response (MTTR) without the need for highly specialised staff. The platform introduces several key enhancements to automate the work of analysts and provide them with ready-to-use solutions.
A key new feature is threat reports generated by AI and verified by security analysts. These provide not only information on new vulnerabilities and attack vectors, but also specific mitigation strategies and security breach indicators (IoCs). This information is available directly in the tool’s interface.
What’s more, the system offers contextual guidance that guides less experienced analysts step-by-step through the response process. Instead of a dry alert, they receive ready-made recommendations, such as isolating the infected device or modifying access rules. This is a feature that is intended to directly bridge the so-called skills gap in IT teams.
Post-incident analytics have also been improved. A new graphical visualisation of events allows communication between hosts to be traced during an attack, making it quicker to understand the course of the attack and identify all resources involved. An interactive view makes it easier to analyse related events and data flows.
The changes introduced position Flowmon ADS 12.5 as a tool designed not only to detect, but also to proactively support IT teams in the defence process. This is in response to a clear market trend in which automation and intelligent systems are becoming a key element of cyber defence strategies in the face of the increasing scale and complexity of threats. The new-look platform is now available to customers.
