- Chat with McAfee Ready to make a purchase or have questions before you buy? Chat with a McAfee expert. Available Monday to Friday.
- Find a Reseller
- Contact Me
- Get Security Notifications Now
- Call: 1-888-847-8766
Overview
McAfee Database Activity Monitoring automatically finds databases on your network, protects them with a set of preconfigured defenses, and helps you build a custom security policy for your environment — making it easier to demonstrate compliance to auditors and improve critical asset data protection. Database Activity Monitoring cost-effectively protects your data from all threats by monitoring activity locally on each database server and by alerting or terminating malicious behavior in real time, even when running in virtualized or cloud computing environments.
Comprehensive threat protection — Protect even your unpatched databases against zero-day attacks by blocking attacks that exploit known vulnerabilities and terminating sessions that violate your security policies.
Detailed audit trail reports — Audit trail reports are available to meet SOX, PCI, and other compliance audit requirements. During post-incident forensic analysis, this audit trail can help you understand the amount of lost data and gain greater insight into malicious activity.
Streamlined patching with no required downtime — Applying missing patches and fixing misconfigurations found by the Database Activity Monitoring vulnerability scan will improve the security posture of your databases immediately — without requiring any downtime via McAfee’s virtual patching technology.
Features & Benefits
Get maximum protection for sensitive data, meet compliance requirements, and reduce exposure to costly breaches
Demonstrate compliance and minimize the likelihood of a breach by monitoring threats to databases from all sources, including network/application users, local privileged accounts, and sophisticated attacks from within the database itself.
Save time and money with faster deployment and a more efficient architecture
Simplify the process of building custom security policies to audit and protect databases with preconfigured rules and templates.
Minimize risk and liability by identifying attacks as they occur, and stopping them before they cause damage
Stop breaches by terminating suspicious sessions and quarantining malicious users with real-time monitoring and intrusion prevention for Oracle, Microsoft SQL Server, and Sybase databases.
Increase your flexibility by deploying McAfee Database Activity Monitoring on the IT infrastructure of your choice
Install sensors on physical servers, provision sensors along with the database on virtual machines, and deploy sensors remotely on cloud servers.
Discover databases automatically and organize them for monitoring and management
Find databases by scanning the network or by importing them from existing tools, and then group them by vendor, version, or custom tags (for example, HR, finance, or QA).
Get out-of-the-box protection for known vulnerabilities and common threats
Receive more than 380 predefined rules that address specific issues patched by the database vendors, as well as generic attack profiles.
Leverage templates for compliance regulations
Use a simple, step-by-step interface for building customized security policies for PCI DSS, SOX, HIPAA, GLBA, and SAS-70, as well as best practices based on experience at hundreds of customer sites.
Receive granular protection of sensitive data at the object level, regardless of the source of the attack
Evaluate process memory to determine execution plan and affected objects, identifying policy violation even from local users or obfuscated code.
Get full auditing for MySQL databases for free
Bring enterprise-level database security to the MySQL open-source database management system and collect full audit-trail information from the database.
System Requirements
These are minimum system requirements only. Actual requirements will vary depending on the nature of your environment.
Minimum System Requirements
- McAfee ePolicy Orchestrator 4.5
- Microsoft Windows Server 2003 with Service Pack 2 (SP2) or higher
- Microsoft SQL Server 2005 with SP1 or higher
- 2 GB RAM
- 1 GB free disk space
- Browser (for management console): Firefox 2.0 or later, or Microsoft Internet Explorer 7.0 or later
Supported Databases for Monitoring
- Oracle version 8.1.7 or later, running on Sun Solaris, IBM AIX, Linux, HP-UX, Microsoft Windows
- Teradata 12, 13, and 13.1 on Linux
- MySQL 5.1 and 5.5 on Linux
- Microsoft SQL 2000, 2005, and 2008 on any supported Windows platform
- Sybase ASE 12.5 or later on all supported platforms
Video / Demos
Protecting Your MySQL Databases from Hacks
McAfee‘s Slavik Markovich and Sean Roth demonstrate how MySQL databases — sitting beneath web applications — need protection from hacks and attacks.
Demos
Customer Stories
University of Bristol
Implementing Real-Time Database Activity Monitoring
Highlights
- Implemented solution campus-wide with minimal IT resources
- Immediate visibility into all suspicious activity across Oracle and Microsoft SQL server databases
- Identified and remediated vulnerabilities in internally developed applications by working closely with developers
News / Events
News
- McAfee Brings Security to the MySQL Open-Source Database Community
March 26, 2012Topics : Database Security
- McAfee Delivers Comprehensive Database Security Solution
March 23, 2011Topics : Risk & Compliance, Database Security
- McAfee to Acquire Sentrigo to Enhance Database Security Portfolio
March 23, 2011Topics : Risk & Compliance, Database Security
- Sentrigo Launches Comprehensive Enterprise-Class Vulnerability Assessment Solution for Databases
September 13, 2010Topics : Database Security
- Red Link Selects Sentrigo’s Hedgehog Enterprise to Secure Sensitive Customer Data and Meet Compliance Regulations
May 25, 2010Topics : Database Security
- Pelephone Deploys Sentrigo’s Best-of-Breed Database Security Solutions
April 5, 2010Topics : Database Security
Events
No results foundOn Demand
- Securing the Next-Generation Data Center: Are You Rugged?
On Demand Webcast
Resources
McAfee Database Activity Monitoring
For a technical summary on the McAfee product listed above, please view the product data sheet.
Solution Briefs
White Papers
Community
Forums
No results foundBlogs
- RDP+RCE=Bad News (MS12-020)
Jim Walter - March 14, 2012
See March 15 and 16 updates at the end of this blog. —————————————————- The March Security Bulletin release from Microsoft was relatively light in volume. Out of the six bulletins released, only one was rated as Critical. And for good reason. MS12-020 includes CVE-2012-0002. This flaw is specific to the Remote Desktop Protocol (RDP) present on Read more... - An Update on DNSChanger and Rogue DNS Servers
Jim Walter - March 06, 2012
In late 2011, the FBI released documents and data focusing on “Operation Ghost Click.” This malicious operation, leveraging a variety of DNSChanger-type malware, was defined by the FBI as an “international cyber ring that infected millions of computers.” Associated malware samples and events can be traced back several years, and multiple platforms were targeted. To this day many remain Read more... - McAfee Q4 Threats Report Shows Malware Surpassed 75 Million Samples in 2011
David Marcus - February 21, 2012
Today we released our Fourth Quarter 2011 Threat Report, revealing that malware surpassed the our estimate of 75 million unique malware samples last year. Although the release of new malware slowed a bit in Q4, mobile malware continued to increase and recorded its busiest year to date. Malware The overall growth of PC-based malware actually Read more... - Cultural Security: Promoting Security Policies Using Organizational Culture
Steven Fox - September 06, 2011
Most of us refer to security policies in much the same way as we refer to our car manuals – when something unexpected happens. We know these documents have useful information. However, their utility is tied to situations where answers do not present themselves readily. According to Chris Noel, SVP of Product Management at ANXeBusiness, Read more... - Building an Arsenal of Best-in-Breed Database Security Solutions
Eric Schou - August 19, 2011
Visit any news site on the Web, and undoubtedly you’ll come across a barrage of articles publicizing the details of yet another data breach. With the prominence of SQL injection attacks, and malicious insiders and hackers exploiting sensitive data stored on unpatched and vulnerable databases, enterprise organizations have found themselves reevaluating their security strategies. Following Read more...