NetContinuum, Inc., the leading provider of enterprise-class web security appliances, today called for companies worldwide to rethink their approach to web security in the wake of the SQL Slammer worm that slowed much of the Internet to a crawl this weekend. To help users protect their sites from both existing and future web attacks, NetContinuum announced that it will offer all companies affected by the attack an immediate 25 percent discount on its NC-1000 line of web security gateway appliances.

In stark contrast to previous generation security products like firewalls, anti-virus and intrusion detection systems, NetContinuum customers were automatically protected the moment the fast-spreading worm was unleashed late Friday night. The most widespread web attack since last year's Code Red worm clearly demonstrates the need for next-generation security gateways that automatically block even unknown web attacks without relying on after-the-fact signature updates, hastily built patches or complex configuration changes.

"Virtually overnight, web security has become one of the most serious threats companies face today," said Gene Banman, CEO of NetContinuum. "While no security product can protect against every attack the first time, it's clear that a fundamentally different approach is required when the web is involved. We're all fortunate this worm did not incorporate any truly damaging payload or the impact could have been far worse."

While existing security products like firewalls and intrusion detection systems are essential for securing the corporate network, they were never designed to protect web applications. As a result, more than 70 percent of all attacks today target web and application layer vulnerabilities.

The NetContinuum NC-1000 sits between the corporate firewall and the data center, inspecting all communications destined for a company's web and application servers. It fully terminates the TCP session, brings the entire payload into memory and provides deep inspection of both network and application layer traffic. All illegitimate communications are therefore blocked by default, without relying on complex signatures, patches or configuration changes. Because the SQL Slammer worm attempts to exploit a web vulnerability through a port that has no business communicating with the web server, the NetContinuum gateway automatically recognizes the request as illegitimate and drops it immediately. Web sites running the NC-1000 were not affected by the SQL Slammer worm.

To help companies protect themselves from future web and application attacks, NetContinuum will offer all organizations affected by the SQL Slammer worm a 25 percent discount on its NC-1000 web security gateway. The offer is valid for 30 days, effective immediately. For more information, please visit www.netcontinuum.com/slammer.html .

About the NC-1000

The NC-1000 is a next-generation security appliance that provides immediate protection from web-based threats and dramatically reduces the time and cost of securing web applications. Powered by the largest security ASIC ever built, the NC-1000 combines all critical web security functionality into a single, high performance gateway to secure web resources with zero impact to existing network infrastructure. Primary features include:

-- Full Website Cloaking -- The NC-1000 delivers innovative "website cloaking" capabilities that make enterprise web resources invisible to hackers. With the NetContinuum gateway deployed in front of a company's websites, this critical information is completely inaccessible, making it far less likely that hackers will attempt an attack in the first place.

-- Web Attack Prevention at all Layers -- Intruders who do attempt to launch attacks against a NetContinuum-protected site are met with robust intrusion prevention capabilities. Unlike other intrusion prevention products, the NC-1000 blocks both network layer attacks such as Denial of Service and SYN floods, as well as application layer attacks like Code Red, SQL Slammer and Cross Site Scripting.

-- Guaranteed Audit Trail of all Web Transactions -- The NC-1000 generates a single, centralized web transaction log for all web and application servers. This log is then digitally signed, encrypted and time-stamped, creating a tamper-proof audit trail of legitimate business transactions and hacker activity alike.

-- Instant SSL Encryption -- The NC-1000 lets enterprises encrypt entire websites via SSL with ease. No changes to backend applications or servers are required. The product handles up to 1 million simultaneous TCP sessions and a record-breaking 6,000 SSL RSA transactions per second.

-- Application-layer VPNs to Precise Web Resources -- Traditional VPNs simply create a secure path to the "front door" of the network with no way of limiting access to legitimate applications once inside. The NC-1000, by contrast, let's companies build precise application-layer VPNs that create a secure connection directly to authorized applications, websites and URLs.

About NetContinuum, Inc.

NetContinuum is the leading provider of enterprise-class security appliances designed to protect web services and applications. Privately held, NetContinuum is funded by blue-chip venture capital firms and investors, including Menlo Ventures, NIF Ventures/Daiwa Securities, Siemens Venture Capital, Adams Street Partners, MKS Investors and the Invus Group. For more information, please visit www.netcontinuum.com or call 408-961-5600.