NETSCOUT Unveils AI-Enhanced DDoS Defense Solutions

NETSCOUT has announced new AI-backed enhancements to its NETSCOUT Arbor Edge Defense and NETSCOUT Arbor Enterprise Manager Adaptive Distributed Denial of Services (DDoS) solution. These enhancements aim to further automate operations, improve defense capabilities, and streamline reporting for customers.

The updates utilize AI to automate defenses against various attack vectors, allowing customers to accelerate their response to DDoS attacks and better protect critical applications and services. The Arbor Edge Defense and Arbor Enterprise Manager solution leverages the ATLAS Intelligence Feed, which collects real-time internet traffic data from over 700 Tbps across more than 500 ISPs and 2,000 enterprise sites in over 100 countries. This represents approximately 50% of global internet activity. AI/ML algorithms within the ATLAS cloud infrastructure process this data to deliver actionable intelligence to NETSCOUT solutions. The ATLAS Intelligence Feed provides intelligence on devices involved in DDoS attacks, enabling mitigation of up to 80% of all DDoS attacks without additional analysis.

Chris Rodriguez, research director, security and trust, International Data Corporation (IDC), noted the increasing demand for integrated application protection and availability technologies to identify and mitigate DDoS threats. According to IDC buyer research from April 2025, 41% of organizations reported that online attacks, including DDoS incidents, resulted in damages exceeding $100,000, with 5% reporting over $1 million. Rodriguez stated, “With the increased use of AI/ML to launch cyber-attacks, organizations need to invest in intelligent solutions to continuously detect new attack types and threats to avoid costly damage to critical IT infrastructure”.

New features in the Arbor Edge Defense and Arbor Enterprise Manager solution support deployment in multi-site enterprise environments and further automate the mitigation of sophisticated DDoS attacks:

• Strengthened data segmentation through scoped user access allows administrators to limit the visibility of operations teams to specific defended locations and infrastructures.
• Automated IP protocol flooding detection and mitigation aim to block these attacks.
• Enhanced DDoS dashboard provides detailed information for operations teams, even with automated defenses.
• On-demand, automated reports facilitate information flow across security teams and management.

Scott Iekel-Johnson, area vice president, DDoS and threat intelligence at NETSCOUT, commented, “We’re continually innovating to stay ahead of the growing array of DDoS cybersecurity threats as part of our Adaptive DDoS Protection strategy. With these enhancements, we’re helping customers intelligently automate their defenses—delivering stronger protection against evolving DDoS attacks while simplifying how they manage and analyze threats.”