“Detection is not the end—it’s just the beginning.” — Jerry Mancini, NETSCOUT
In this episode of Technology Reseller News, Publisher Doug Green speaks with Jerry Mancini of NETSCOUT about the company’s latest advancements in automated threat detection and response—with a particular focus on why telecommunications networks are uniquely vulnerable and high-value targets.
NETSCOUT, long known for its deep packet inspection and network performance management, is expanding the capabilities of its adaptive threat analytics—a platform designed not only to detect threats but also to assemble and contextualize them using network-level intelligence.
Beyond Detection: Seeing the Full Picture
While most cybersecurity tools focus on isolated detections—EDR, firewall logs, and suspicious indicators—NETSCOUT’s approach centers on reconstructing the complete threat narrative across the enterprise. By capturing packet data continuously and using workflows to connect disparate detections, NETSCOUT enables investigators to:
- Understand the root cause and lateral movement
- Detect activity before and after a flagged incident
- Integrate signals from multiple sources (EDR, NDR, WAF, and more)
- Investigate threats in real time and retrospectively
Why Telcos Are at Greater Risk
Mancini highlights the unique role of telco infrastructure in global data movement, making them prime targets for cyber espionage and traffic manipulation. Attackers, such as the Salt Typhoon group, have used compromised routers and peering points to reroute and eavesdrop on massive data flows—impacting not just carriers but their customers across the internet.
Best Practices for Threat Hunters
NETSCOUT supports both bottom-up investigations (starting with a detected incident) and top-down threat hunts (searching for indicators tied to known campaigns). The platform’s ability to store and search packet-level data gives teams visibility that goes far beyond typical log-based detection tools.
Mancini’s key advice: “You need more than alerts—you need the data to trace back, understand what happened, and act before it’s too late.”
Where to Learn More
Visit netscout.com to explore solutions in:
- Network Performance Management
- DDoS Detection & Mitigation
- Adaptive Threat Analytics
NETSCOUT supports both enterprise and service provider environments and is available to assist with immediate and long-term threat management strategies.
POWERED BY BLUBRRY
