Case Study: CounterTack achieves near-real-time endpoint threat detection and massive scalability with Cloudera

Big Data Helps Detect and Defeat Security Attacks

CounterTack, a Waltham, MA–based cybersecurity firm, protects enterprise endpoints—workstations, mobile devices, POS terminals and other IoT-connected gear—by analyzing system-level behavior to detect attacks. As endpoint counts and data volumes exploded, their original MySQL back end could not provide real-time processing or scale beyond small deployments, forcing the company to find a big-data solution to meet the needs of large corporate customers.

CounterTack integrated its Sentinel platform with a Cloudera enterprise data hub built on Apache Hadoop (using HBase, Flume, Cloudera Search and Cloudera Manager) to ingest and analyze massive endpoint data streams. The result: near real-time detection and automated response—shrinking average detection time from hundreds of days to minutes—support for 100,000+ endpoints, flexible cloud/on‑premise deployments, and improved incident‑response and SIEM/IDS/IPS effectiveness for enterprise customers.

CounterTack

Thomas Bain

Vice President of Global Marketing, CounterTack, Inc.