Continued financial success

LogLogic closed another record quarter, continuing the historical pattern of a year on year doubling in size of the overall business. Series D financing secured $15 million to support global expansion, distribution and product innovation strategies. Investors included SAP Ventures, the venture capital arm of SAP AG, Focus Ventures, Sequoia Capital, Telesoft Partners, Worldview Technology Partners, and Invesco Private Capital among others.

EMEA expansion

This latest investment immediately contributed to the expansion of LogLogic's global foot-print. Former SurfControl executive, Henning Ogberg was appointed in Europe to drive growth, develop the channel network and establish new offices, initially in Germany and France.

Henning brings to LogLogic almost 20 years of sales experience in international business and new market establishment as well as 12 years of software and internet security industry experience. In his previous position, Henning was senior sales director for Central, Eastern and Northern Europe. He will work closely with LogLogic’s global channel team to develop the partner network and build a scaleable, dependable successful program throughout Europe, Middle East and Africa.

This strengthening of European presence was re-enforced with the signing of new partnership agreements with Entel in Spain and Exer Datacom in France.

Product enhancements

A new LogLogic product family was released which is targeted specifically at the enterprise mid-market and the channel. The MX family of appliances bundle in compliance content in the form of out of the box reports and alerts, with a focus on PCI credit card standards for user tracking and the ITIL operations framework amongst other global regulations.

The launch of the MX family comes at a time when a survey carried out by research experts, Vanson Bourne, on behalf of LogLogic found that almost half (45 per cent) of medium to large retailers in the UK who handle credit card transactions are unable to track and trace who has been accessing data within the company network. The MX family will simplify how organizations such as those questioned can implement track and trace policies, which will help them ensure PCI compliance.

"Complying with regulations and audit requirements are the norm for medium to enterprise companies now-a-days," said Michael Coté, Software Industry Analyst for RedMonk. "Without getting too bogged down in creating custom built systems that require initial setup and then ongoing care-feeding, medium sized companies would really like to just plug something in and be done with it. While larger organizations may have the time, inclination, and need for more customized solutions, mid-sized companies want log management driven compliance that's low hassle and gets the job done rather than having to carve out what they need from a broader platform."

LogLogic ecosystem growth

LogLogic significantly expanded its managed service provider footprint on the back of a global trend to move security and compliance to a cloud computing approach. Verizon Business Services, SAVVIS and SecureWorks each launched subscription-based log management services based on LogLogic. Verizon Business Services’ acquisition of Cybertrust last year means that the company has a significant foot-print across EMEA which will extend further LogLogic's reach across the region.

Additionally, software vendors Compliance Spectrum and UpperVision have used LogLogic's Open Log Services API to integrate their offerings with LogLogic's log management and intelligence (LMI) platform. Via LogLogic's Open Log Services, joint customers utilizing LogLogic's security and compliance appliances can attain greater business agility and productivity through ease-of-integration.

Further partnerships with organizations such as McAfee for its Security Innovation Alliance program, and Guardium, the database security company, demonstrate the growing role LogLogic is playing within the IT security industry.

Commenting on Q1 momentum, Dominique Levin, executive vice president marketing and strategy said, "2008 triggered a very exciting time for LogLogic as the company started the year with a hugely successful Q1. The growing number of organizations signing up to work with LogLogic in one form or another is a testament to the company's reputation within the market. In terms of what lies ahead, the EMEA region in particular is set to be a growth area for LogLogic, and the appointment of Henning alongside the new French and Spanish partners demonstrates the importance LogLogic is placing on the region."

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. The LogLogic family of MX and LX-ST appliances address the compliance, operations and risk mitigation needs of mid-market companies, as well as the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include Info Security "Product Excellence Awards" 2008, SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

London, UK – April 2, 2008 – Figures out today indicate that almost half (45 per cent) of medium to large retailers in the UK who handle credit card transactions are unable to track and trace who has been accessing data within the company network according to a survey carried out by research experts Vanson Bourne on behalf of LogLogic, the leader in log management integration.

Restrictions on budget (24 per cent), time (14 per cent) and other priorities (41 per cent) were cited as the reasons why concerned IT directors didn't have systems in place to track and trace data access.

Of the 55 per cent who are able to track and trace data access, only a quarter are able to identify and analyse potential security breaches within one hour. 31 per cent didn't know how long it would take to track and trace, while for 14 per cent of those questioned, it can take more than 8 hours, the equivalent of a working day.

Despite the launch in 2004 of the PCI Standard which is designed to protect card holder data, only 14 per cent of those questioned said that they had reached PCI compliance. Only 25 per cent of respondents said that senior management within their company viewed PCI as a valuable mandate with obvious benefits to the company and its customers.

In contrast, given the choice, 65 per cent of the IT directors surveyed said that, as a consumer, they would personally feel more re-assured purchasing from a retailer who was PCI compliant.

Compounding the situation further are the findings from an additional consumer survey from TNS - again commissioned by LogLogic - which found that 42 per cent of adults in the UK have taken data out of the workplace to work on at home - almost half of this (45 per cent) being classed as confidential. While only 14 per cent of those questioned said that they accessed data which was not directly related to their job, over one third of these said that they would change their behaviour if they knew that their IT movements were being monitored.

Commenting on the findings, Henning Ogberg, vice president, LogLogic EMEA, said: "These research findings are concerning. They come at a time where instances of identify theft and data loss are increasingly commandeering column inches across the media. As such, retailers need to reassure consumers that their personal and financial data is entirely safe and secure. It only takes a matter of seconds for a security breach to occur. But with so many companies unable to track or trace for data loss or theft, by the time any potential security risk has occurred, the damage will have been done, long before the company, and the consumer are even aware of a problem in the first place."

He continued: "Businesses should view log monitoring as the surveillance camera for their data and identity management as the locks on the door. It is critical that they protect and stand guard against threats and theft, just like they would their own homes."

Richard Edwards, Information Management Practice Director at Butler Group added: "We're not especially surprised by the findings of this survey. Indeed, the demands of exploding data growth and regulatory compliance, combined with regulations such as Sarbanes Oxley (SOX), Payment Card Industry Data Security Standards (PCI DSS), BASEL II, etc, are fueling the need for organisations to implement processes that ensure information — especially financial information — is managed in a transparent, consistent, and professional manner. In large organisations this task can consume a large amount of resources, and in smaller organisations it is often neglected altogether, and so Butler Group believes that an automated, managed solution is the only recourse for company wellbeing."

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. The LogLogic family of MX and LX-ST appliances address the compliance, operations and risk mitigation needs of mid-market companies, as well as the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include Info Security "Product Excellence Awards" 2008, SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

ST. LOUIS, MO – March 31, 2008 – SAVVIS, Inc. (NASDAQ:SVVS), a global leader in IT infrastructure services for business and government applications, today announced the launch of its Log Management Service, a new managed security service that provides customers with an easy method for storing and searching system logs and triggers alerts to help them respond to security threats in real-time.

Log Management Service adds to SAVVIS' expanding portfolio of managed security services (www.savvis.net/security), which is designed to provide fully managed, high-value security controls to organizations at their sites, within SAVVIS' datacenter environments, or in-the-cloud through SAVVIS' tier-1 global network.

"Log management is becoming a standard practice for organizations large and small across all industry segments," said Chris Richter, Vice President and General Manager of Security Services at SAVVIS. "The need for log management is driven by security and operations best practices along with regulatory requirements such as the PCI Data Security Standard which mandates that enterprises maintain comprehensive log records of all alerts, events and transactions generated by specific IT systems."

"Organizations are faced with two choices when implementing log management -- do it themselves, requiring up front investment in hardware and software, development of the log management processes and procedures and ensuring trained staff is available to manage the system, or they can subscribe to a fully managed service," Richter added.

"As compliance regulations become more stringent, organizations may need to securely store, log and manage critical information," said Irida Xheneti, Research Analyst with IDC's Security Services program. "By adding log management to its security services portfolio, SAVVIS will provide customers with a new managed service in order for the customer to address auditing, reporting and alerting requirements."

The SAVVIS Log Management solution is a fully managed service that features advanced technology from log data management and intelligence leader LogLogic. Integrated with SAVVIS' global network and hosting infrastructure, the new service is an end-to-end managed solution for log management, alerting, reporting, and archiving. It enables system logs from selected systems such as financial, intellectual property and e-commerce, to be logged and stored online for 90 days in an easily-searchable format. An additional 12 months of offsite storage is also included in the service. Different log sources and file-types can be normalized and formatted to provide a valuable record for auditing and reporting needs. Equally, SAVVIS specialists assist in identifying critical logs, developing filters and alert rules, and creating custom reports.

"IT infrastructure is growing increasingly complex as CIOs grapple with meeting new demands for security and IT controls," said Robert Yusin, EVP of WorldWide Field Operations of LogLogic. "SAVVIS' IT infrastructure services are, by design, engineered to assist customers with their security requirements. The combination of LogLogic and SAVVIS is the perfect environment for delivering a robust log alerting and archival solution as a managed service."

"The new Log Management Service is an effective solution for organizations currently managing mountains of log data using costly, unreliable and unpredictable log management and monitoring systems," Richter said. "Rather than spending valuable company resources building and maintaining internal systems, our clients rely on SAVVIS to monitor and manage their logs so they can focus on other critical business issues."

About SAVVIS

SAVVIS, Inc. (NASDAQ: SVVS) is a global leader in IT infrastructure services for business applications. With an IT services platform spanning North America, Europe, and Asia, SAVVIS is an industry leader in delivering secure, reliable, and scalable hosting, network, and application services. These solutions enable customers to focus on their core business while SAVVIS ensures the quality of their IT systems and operations. SAVVIS' strategic approach combines virtualization technology, a global network and multiple data centers, and automated management and provisioning systems. For more information about SAVVIS, visit www.savvis.net.

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. The LogLogic family of MX and LX-ST appliances address the compliance, operations and risk mitigation needs of mid-market companies, as well as the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include Info Security "Product Excellence Awards" 2008, SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

LogLogic disclaims any interest in the trademarks of others.

BURLINGTON, Mass – March 31, 2008 – Veracode Inc., the leading provider of on-demand application security testing solutions, today announced that LogLogic, the log management leader, is using Veracode SecurityReview® as an on-demand service to automate the security testing of its log management appliances. LogLogic provides Log Management and Intelligence (LMI) to CIOs and IT managers within enterprises and government organizations.

LogLogic appliances enable log data from firewalls, routers, servers, applications (commercial and homegrown), operating systems and devices to be automatically collected, stored, reported and alerted on in near real-time for user activity monitoring, industry compliance and risk mitigation. Flexible reporting capabilities and log intelligence allow for mountains of log data to be collected, analyzed and stored for greater flexibility and simplicity while reducing the cost of monitoring an organization's IT infrastructure.

"As the log management leader, we must guarantee rigorous security testing of our best-in-class log management solutions," said Patricia Sueltz, president and CEO of LogLogic. "Our customers can't miss a beat. SecurityReview's service-based testing approach allows us to verify the security and strength of our products right away so we can get to market faster and help customers confidently track and monitor their logs."

LogLogic is able to capture 100% of log data from virtually any source, making it an ideal solution for regulatory compliance, network security, monitoring user activity and evaluating business performance. Log data collectors are installed on mission critical systems (e.g. ERP and HR systems) and therefore cannot afford to miss significant logs or unusual activity within an organization's IT perimeter. Leveraging Veracode SecurityReview gives LogLogic three key components not found in any one application security testing solution: an independent rating to validate the security of their products; the ability to check third-party applications and components that are part of LogLogic's solutions; and scanning for vulnerabilities such as backdoors using an on-demand service-based approach.

"Veracode SecurityReview allowed LogLogic to scale quickly by providing an independent assessment of vulnerabilities during critical milestones of the development lifecycle," said Matt Moynahan, Veracode's CEO. "As a user-friendly and affordable service, SecurityReview provides security verification early on in an application's lifecycle, enabling organizations of all sizes to avoid costly problems arising during deployment."

About Veracode

Veracode is the leading provider of on-demand application security testing solutions . Created by a world-class team of application security experts, the company delivers services to identify software flaws introduced through coding errors or malicious intent. Veracode's core service, SecurityReview uses patented binary code analysis and dynamic web analysis that is uniquely able to inspect entire application inventories, including components, and does not require companies to expose their valuable source code. Enterprises can now protect their intellectual property while preventing attacks allowed by vulnerabilities in applications.

As the most accurate and comprehensive solution, Veracode makes it simple and cost-effective to implement application security best practices and reduce operational costs related to manual reviews. Whether a company is developing applications internally, purchasing software or integrating code from partners, Veracode's SecurityReview provides insight to the security level of your applications. Outsourcing code analysis to Veracode is the easiest way to secure your software. With a pragmatic approach to application security, Veracode helps you fix what matters most to your business.

Based in Burlington, Mass., Veracode is backed by .406 Ventures, Atlas Venture and Polaris Venture Partners. www.veracode.com .

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. The LogLogic family of MX and LX-ST appliances address the compliance, operations and risk mitigation needs of mid-market companies, as well as the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include Info Security "Product Excellence Awards" 2008, SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

LogLogic disclaims any interest in the trademarks of others.

SAN JOSE, CA – March 18, 2008 – LogLogic®, the log management leader, today announced new straightforward appliances architected and priced specifically for the enterprise mid-market (annual revenues between $400 million and $1 billion). Without compromising the features and functionality that have made LogLogic the log management leader among the Fortune 500, these new log management appliances provide comprehensive log data compliance mandate assurance while making it easy for mid-market systems administrators to install, configure, operate and maintain them.

Compliance mandates — including the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX) — now require companies to track, manage, and report on their log data in order to comply with regulations and promote internal security and availability.

"Complying with regulations and audit requirements are the norm for medium to enterprise companies now-a-days," said Michael Cote, Software Industry Analyst for RedMonk. "Without getting too bogged down in creating custom built systems that require initial setup and then ongoing care-feeding, medium sized companies would really like to just plug something in and be done with it. While larger organizations may have the time, inclination, and need for more customized solutions, mid-sized companies want log management driven compliance that's low hassle and gets the job done rather than having to carve out what they need from a broader platform."

LogLogic is introducing five new mid-market log management appliances that cater to specific business requirements. Each appliance includes a Compliance Guide Book and a Compliance and Control Suite with over 100 out of the box, in-depth compliance reports and alerts. The single form factor appliance also incorporates up to one-year on-board log archival as well as a combination of indexed log data for fast Google-like search and easily customizable normalized reports. Pricing starts at $37,500.

• Mid-Market PCI Appliance — Designed for retailers handling credit card transactions to comply with the PCI Data Security Standard and to safeguard credit card holder information in general.
• Mid-Market HIPAA Appliance — Designed for regional hospitals and healthcare organizations to comply with the Health Insurance Portability and Accountability Act (HIPAA).
• Mid-Market SOX Appliance — Designed for mid-sized organizations and financial institutions required to comply with the Sarbanes-Oxley (SOX) Act specifically or using the COBIT 4.1 IT best practices and controls framework.
• Mid-Market FISMA Appliance — Designed for smaller government agencies and departments to comply with Federal Information Security Management Act (FISMA).
• Mid-Market ITIL Appliance — Designed to help mid-sized organizations accelerate IT problem resolution through search and drill-down reporting and by leveraging ITIL's IT Services best practices.

"IT compliance initiatives are a top priority for us, and we know that LogLogic offers one of the premier log management appliances" said Linnie Gooch, Manager of IT Security at Wescom Credit Union. "With LogLogic, we expect to get a log management solution that allows us to do data collection, reporting, archiving, fail-back and backup functionalities."

Enterprise-Grade Functionality for the Mid-Market

LogLogic's new line of mid-market appliances offers most of the same robust functionality relied upon by more than 400 major enterprises globally to drive, meet or exceed their compliance, security and information asset protection initiatives, including the ability to process custom log sources and easily customize reports, chain of custody features for enterprise-grade log data archival protection, a fully-featured SOA and web services API and high-availability features such as fully redundant hardware components and automated backup and restore functionality.

"We've been selling to mid-market customers for more than five years, and we've found they often want top-grade enterprise solutions, but just can't make them work into their IT budgets," said Michael Davis, CEO of Savid Technologies. "With the new log management appliances, LogLogic has broadened the quality and capability of log management available at a price range that is fair for the mid-market while showing a key sensitivity to the needs of the mid-market — ease of installation, configuration, usage and most importantly, maintenance.

"Mid-market companies need solutions tailored to help them meet their unique compliance and regulatory requirements," said Dominique Levin, EVP Marketing, Products and Business Development at LogLogic. "LogLogic has a proven record of success with global enterprises and now mid-market enterprises can benefit from our extensive experience and leadership in the log management marketplace."

LogLogic's Mid-Market Aappliances are available now. ]]> http://www.loglogic.com/news/news-releases/2008/03/loglogic-launches-appliance-for-mid-market-companies/ http://www.loglogic.com/news/news-releases/2008/03/loglogic-launches-appliance-for-mid-market-companies/ News Releases Tues, 10 Mar 2008 6:00:00 -0800 SAN JOSE, CA – March 10, 2008 – LogLogic®, the log management leader, today announced that it has secured an investment from SAP Ventures, the venture capital arm of SAP AG (NYSE: SAP), the world's leading provider of business software solutions. SAP Ventures joins Series D investors Focus Ventures, Sequoia Capital, Telesoft Partners, Worldview Technology Partners, Invesco Private Capital and others in the latest investment round, which now totals $15 million.

"Our investment shows that SAP Ventures is positive about LogLogic's business and its growth opportunities, but we also like how it is positioned in an industry critical to SAP customers," said Andreas Weiskam, Partner at SAP Ventures. "SAP customers are strongly interested in Governance, Risk and Compliance (GRC) and we believe LogLogic's user activity monitoring technologies could complement the growing SAP applications portfolio in this important growth market."

LogLogic's log management platform and compliance applications improve the security, availability and compliance of heterogeneous IT environments. Log data records hold a complete audit trail of user and system activity. While access control systems, such as the SAP GRC Access Control system, can tell who should have access or authority to do what, log data shows explicitly who is doing what. Log management solutions act as the digital surveillance camera of the virtual enterprise and can be a compensating control before, during or after the deployment of segregation of duties (SoD) controls.

"SAP Ventures' investment will not only help us grow our leadership position in the industry, but we will also benefit from SAP Ventures introductions to the broader SAP ecosystem," said Pat Sueltz, CEO of LogLogic. "SAP already delivers a critical piece to the compliance and fraud prevention puzzle. We are looking to increase value for shared customers by adding visibility and control over actual user and system activities and further automate the compliance process."

About SAP Ventures

Since 1996, SAP Ventures has been investing in companies that offer exciting new technologies and applications. Leveraging years of experience and drawing on a network of powerful business relationships, SAP Ventures helps entrepreneurs and management teams recruit the best people, make the right technology decisions, win new business, and build their own partner networks. The goal of SAP Ventures is to grow businesses that create shareholder value for everyone involved. For more information, visit www.sapventures.com.

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

LogLogic disclaims any interest in the trademarks of others.

Since the release of LogLogic's unprecedented Open Log Services API in December 2006, more than fifteen customers and partners have successfully developed applications, portals and integrations ranging from help desk enablement and problem isolation to compliance dashboards. Service-Oriented Architecture (SOA) allows people to reuse services, making application development simpler, faster and cheaper. Designed using the principles of SOA, LogLogic's LMI platform connects proprietary closed systems throughout the organization, making them into true 'Open Log Services' that can be re-used and repurposed throughout the enterprise for easier IT Governance, Risk, and Compliance.

"Web services have become an industry standard way to quickly and easily create multiple views of log data designed for the security expert, the compliance officer, the auditor, or the administrator," said Dominique Levin, EVP Marketing, Products & Strategy of LogLogic. " With LogLogic's Open API and its inherent ease of integration, our customers have at their fingertips access to the entire log lifecycle: collection, normalizing, indexing, statistical analysis, reporting, alerting on, and sharing of log data."

The LogLogic API gives developers easy access not only to raw log data but also to processed, normalized, or tokenized data and to a wide range of analytics options such as real-time alerts, normalized reports, and indexed search. By implementing an LMI platform that is fully SOA-compliant , businesses can integrate log management functionality with other applications to meet their business needs beyond mere security, including compliance, forensics and reporting, and operational excellence. Compliance Spectrum, a provider of governance, risk-management, and compliance solutions, and UpperVision, which offers identity compliance and identity risk-management solutions, utilized LogLogic's Open API to enable intelligent sharing of data among other applications and services, leading to greater insight into user, systems and network activity.

"We recognized the value of LogLogic's reports as compliance evidence and wanted to link it to our Compliance Maps© with the least amount of manual effort," said Colleen Murphy, Vice President of Development for Compliance Spectrum. "Our compliance lifecycle management solution, Spectra, will automatically retrieve multiple LogLogic compliance-related reports and link it to the appropriate compliance control statements. Our joint customers will benefit from faster compliance and reduced manual effort."

"The LogLogic and UpperVision integration leverages log and system identity data to correlate user activities to specific individuals and their business role, organizational membership, and access rights," said Chisiu Yang, CTO and Vice President of Engineering at UpperVision. "The combined offering provides a unique 360-degree view of user information access, ensuring all user activities are in compliance with internal policies and regulatory mandates. Customers are also able to define business workflows that are automatically launched for user review and remediation when policies are violated and to utilize comprehensive reporting and analytics for forensic analysis, role engineering, and user activity monitoring across heterogeneous environments."

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

LogLogic disclaims any interest in the trademarks of others.

SAN JOSE, CA – February 7, 2008 – LogLogic®, the log management leader, today announced it has chosen ARCA Common Criteria Testing Lab (CCTL) to conduct the IT security evaluation and validation required to achieve Evaluation Assurance Level (EAL) 2 Common Criteria certification.

Companies that supply security or security-enabled products to U.S. government agencies are required to undergo formal security evaluations, as mandated by the National Information Assurance Acquisition Policy. The Common Criteria is the international security evaluation standard and allows companies to differentiate their products from competitors and demonstrate that their security functionality performs as promised.

"Receiving Common Criteria EAL 2 certification is an important step in confirming LogLogic's mission to develop exceptional log management and intelligence solutions that allow government agencies, such as the Department of Defense, to automate security standard compliance, mitigate risk and protect information assets," said Pat Sueltz, CEO of LogLogic. "Certifications like Common Criteria show our customers that independent 3rd parties agree LogLogic delivers even under the most extreme scrutiny."

Operated by SAVVIS, Inc., a global leader in IT infrastructure services for business and government applications, the ARCA CCTL is one of only ten U.S. Government-accredited labs for Common Criteria certification. The certification process typically takes one year.

"We are pleased to work with LogLogic on their Common Criteria Level 2 certification," said Chris Richter, Vice President and General Manager, SAVVIS Security Products and Services. "The ARCA CCTL observes the highest standards of impartiality, integrity, and commercial confidentiality and by working with us, LogLogic is demonstrating its deep commitment to being a trusted and validated vendor to the Department of Defense and other US Government Agencies."

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

SAN JOSE, CA – February 6, 2008 – LogLogic®, the log management leader, today announced it has closed a series D round of funding, securing an additional $13.5 million in equity financing to expand global sales and marketing initiatives and accelerate innovation. This round, which brings the total equity investment in LogLogic to $47.7 million, was led by Focus Ventures and included Sequoia Capital, Telesoft Partners, Worldview Technology Partners and Invesco Private Capital.

As the largest independent vendor in the log management market, LogLogic attributes the industry's hyper-growth to compliance mandates such as the Payment Card Industry Data Security Standard (PCI DSS) as well as pressures to reduce costs by investing in automated platforms for tracking user activity and business performance. Since its founding in 2002, LogLogic has seen more than 100 percent growth year-over-year in sales of its market-leading log management appliance.

In 2007 alone, LogLogic signed over 160 new customers in the enterprise, mid-market and MSSP channels, bringing its total to more than 400 customers. Last year, LogLogic's channel initiatives brought in key partners including BMC Software, Novell, Arsenal and SecureWorks, further establishing the company's extensive global reach and best-in-class reputation as the log management leader.

"Industry regulations are creating a multi-billion dollar market opportunity for log management solutions," said Kevin McQuillan, general partner at Focus Ventures. "A lot of people want a piece of the pie. The investment opportunity with LogLogic is great – the company brings a market-leading log management appliance through tier one business partners to customers that require reliable solutions. With 100% year-to-year growth, new customer acquisitions, and a strong channel to leverage, we see LogLogic as a key player in the log management space."

According to recent SANS Technology Institute and Enterprise Strategy Group research, traditional Security Information and Event Management (SIEM) vendors address security, risk and compliance issues that comprise only 30% of log management use cases. By contrast, LogLogic takes a broader market approach by addressing 100% of use cases, including the 70% of non-security-related use cases in business performance management and problem isolation. In addition, LogLogic's open log management platform allows customers and partners to develop their own use case applications through an open web services API. This wide-spectrum ecosystem development model is a big differentiator from competitors including RSA enVision and ArcSight.

"Failure to meet compliance standards carries serious consequences for a company and its C-level executives," said Pat Sueltz, chief executive officer at LogLogic. "Organizations are making log management a priority and they are quickly reaping the benefits, from the sys-admin up the chain of command to the CEO."

LogLogic also announced today the appointment of three new executive vice presidents: Kevin Carroll, executive vice president operations, On Lee, executive vice president engineering and chief technology officer, and Diane Deutsch, executive vice president global human resources. Carroll joins LogLogic with over 25 years of experience leading world-class operations organizations at EMC Corporation, Sun Microsystems and Tyco International.

Lee joins LogLogic from Symantec Corporation where he built the Advanced Concepts Group within Symantec Research Labs to focus on developing new products in emerging areas. Prior to Symantec, Lee held various management and technical positions at Microsoft.

Deutsch joins LogLogic with over 20 years of experience in all aspects of human resources management. She previously served as senior vice president human resources at SurfControl, Inc., vice president of human resources at Chameleon Systems and director of human resources at Nuance, Avaya, Lucent and Octel.

"LogLogic has world class investors and a great team and we continue to add top talent to take LogLogic to the next level. We are expanding our global reach and accelerating our innovation roadmap to continue on our high-growth trajectory," said Sueltz.

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

Introduced by Visa and Mastercard, PCI DSS describes specific mandates and requirements for retail companies and service providers that manage credit card transactions and other critical payment card information. Requirement 10 of PCI DSS is dedicated to logging and log management and requires all companies that store, process or transmit cardholder information to implement effective log data monitoring and reporting capabilities, which start with an effective log management solution.

The PCI Compliance Starter Package includes LogLogic's enterprise-class log management platform for monitoring, collecting, storing, reporting and alerting on logs from virtually any data source, Arsenal's onsite implementation and PCI compliance consulting services and two free months of managed PCI log retention services from SecureWorks. The bundle includes a "quick start gap assessment" to determine the current state of PCI compliance and development of a roadmap for achieving and maintaining compliance goals.

"In today's complex world of regulatory compliance, CIOs face time-consuming and crippling audits if they are not meeting compliance guidelines," said Robert Yusin, vice president, worldwide field operations for LogLogic. "For customers, achieving PCI compliance is more than buying a solution. The PCI Starter Package empowers customers with Arsenal's industry-leading expertise and places companies on the fast track to PCI compliance."

"Over the past few years, log management has gone from an act of housekeeping at the IT management level to a mandatory best practice for enterprise security and regulatory compliance," said Tony Spurlin, managing principal at Arsenal Security Group. "Our customers are demanding mature battle-tested log management solutions, so we partnered with the best."

"Our customers depend on log management to identify and respond to security threats and meet today's growing landscape of regulatory compliance standards," said Corey Merchant, vice president of product management at SecureWorks. "By partnering with LogLogic and Arsenal, we are enabling customers to intelligently manage, fully digest and efficiently report on all data logs from various devices."

The PCI Compliance Starter Package scales to benefit businesses of all sizes. From enterprises with little to no existing monitoring, logging, or alerting technologies to small retailers unsure of the specific technologies or core PCI requirements pertaining to them, customers will quickly be able to understand the storage, processing and transmission of sensitive cardholder data and implement an enterprise class solution that meets the requirements of PCI DSS Compliance.

The PCI Starter Program will be available soon from Arsenal Security Group.

Additionally, LogLogic and Arsenal, along with SecureWorks, recently hosted a webcast titled "Best Practices in Starting Your PCI DSS Compliance Initiatives". The webcast featured representatives from the three companies as well as Mike Rothman, an analyst at Security Incite.

About LogLogic

LogLogic® provides the world's leading enterprise-class platform for collecting, storing, reporting and alerting on 100 percent of IT log data from virtually any device, operating system or application. LogLogic 4 LX and ST systems address the compliance, operations and risk mitigation needs of the most demanding global enterprises. LogLogic's innovations include creating the world's first search engine for fast-moving IT log data, and Compliance Suites that automate using that data to enforce critical controls and regulations. LogLogic has established a position as the market visionary and leader, with awards that include SC Magazine 'Approved for SC Labs Rating' in 2006 and 2007, IT Week's 'Editor's Choice Award', AlwaysOn Top 100 Private Company 2006, Best of Interop 2005, SC Magazine's 'Best Computer Forensics', Info Security's 'Hot Company 2006', and designation to the Red Herring 100 in 2006. For more information, visit www.loglogic.com and http://blog.loglogic.com.

About Arsenal Security Group

Arsenal Security Group as a Qualified Security Assessment Company for the Payment Card Industry is a leader in developing security strategies that support the key metrics of your business while addressing various compliance and regulatory mandates. Arsenal Security Group's brings such innovation to the market, like its Smart Search Technology™ combined with award winning service, delivering the capability to scan and identify for the presence and location of critical information throughout your computing environment, information like sensitive PII, and PHI, as well as confidential Customer Cardholder information. Arsenal Security Group is a leader in the industry, by developing consensus between Line of Business owners and IT departments, Arsenal Security Group is your trusted partner for providing security, compliance and risk management consulting services.

About SecureWorks

With over 2,000 clients, SecureWorks is one of the market's leading Security-as-a-Service (Saas) providers. Organizations are protected from external and internal cyber-threats through SecureWorks' On-Demand Security Information and Event Management (SIEM) platform, the SecureWorks Counter Threat Unit™, and three fully synchronous Security Operations Centers (SOCs) staffed with SANS GIAC certified analysts working 24x7 to safeguard client systems. SecureWorks has won SC Magazine's MSSP of the Year 2006 & 2007, Best Intrusion Prevention 2006 and has been named to the Inc 500 and Deloitte lists of fastest-growing companies. www.secureworks.com