ArcSight, a global provider of security and compliance management solutions that protect enterprises and government agencies, has released the fourth generation of its log management product, ArcSight Logger.

With more data, transactions, and users online, organizations are increasingly vulnerable to fraud, theft, and breaches due to hackers, malware, and malicious insiders. ArcSight Logger reduces the impact of cyber-crime by enabling faster and better investigations and forensic analysis of criminal activities.

In addition, ArcSight Logger 4 provides four-way protection against cyber-crime impacts:

(1) High-speed structured and unstructured data collection of up to 42 TB on a single appliance(2) Ultrafast search and reporting, handling terabytes of data in seconds via a Google-like interface(3) Unified analysis across all types of data in a single pane of glass, for simplified investigations(4) Secure storage and access, with support for Federal Information Processing Standards (FIPS) and Common Access Card (CAC), for criminal investigation and prosecution

The key breakthrough in ArcSight Logger is the ability to collect, search, and analyze massive amounts of both structured and unstructured data. This data includes:

Systems/IT operations data – By analyzing CPU spikes, disk usage, and network flows, ArcSight Logger can aid in detection and remediation of sophisticated malware, such as bots and keyloggers.

User data – By analyzing user access information, ArcSight Logger can aid the investigation and remediation of data breaches due to unauthorized system or database access.

Application data – By analyzing user activity within key applications, related system access, and social network activity, ArcSight Logger can aid in fraud analysis and investigation.

Unlike other approaches, which either focus only on structured data for security analysis or only on unstructured data for IT operations troubleshooting, ArcSight Logger unifies alerting, search, and analysis across any type of enterprise information. As a result, ArcSight Logger is able to collect and analyze the massive amounts of data generated by modern networks.

ArcSight Logger is a key component in the ArcSight SIEM Platform. It joins ArcSight FraudView and ArcSight IdentityView as solid solutions for preventing cyber-war, cyber-theft, cyber-fraud, and cyber-espionage, while also providing vigilance over organizational policies and regulatory compliance.