Data Breach Threat Analysis Service Showcased at CyberSummit

Do you know if hidden malware is siphoning off your organization’s trade secrets, market intelligence or military defense information?

Sword & Shield Enterprise Security provides a field-tested Data Breach Threat Analysis service that can find and detect this malware with proven results. The company will showcase this service and its uses against advanced threats at the 7^th Annual East Tennessee CyberSecurity Summit on Oct. 12 – 13 at the Hilton Hotel in downtown Knoxville, Tenn.

Today’s cyber attacks are more stealthy and malicious than ever before. Many attacks sneak through the traditional security defenses of Intrusion Detection Systems (IDS), Intrusion Detection Prevention (IDP) and firewalls. They are designed to remain unnoticed for as long as possible until an opportune time to inflict damage. Many of these sophisticated evasion techniques are defined as Advanced Persistent Threats (APT).

Although signs of the intrusion likely exist, many of today’s sophisticated data breaches go unnoticed for months and are often reported by third parties. In a recent data breach investigations report conducted by the U.S Secret Service, 61 percent of companies that experienced a data breach were notified of the occurrence by a third party. In addition, 86 percent of data breach victims had evidence of the breach on their network before it was detected by them or a third party.

With APT, most often spear phishing emails are used to plant malware into target networks. Once the malware is inside the network, the perpetrator’s objective is to remain undetected for as long as possible, posing as a legitimate network user. The imposter then proceeds to siphon off intellectual property, trade secrets, market intelligence and military secrets undetected by the traditional network security controls deployed in the network. It only takes one employee who is lured to open an email attachment containing the malware code to initiate the activity. The malware is most often malware for which a signature has not been developed and therefore is undetected by the intrusion detection devices and antivirus/anti-malware products deployed in the network.

Researchers are focused on how to identify and thwart these attacks, but so far there is no known way to thwart the attacks.

Sword & Shield’s Data Threat Breach Analysis is designed to find hidden malware and identify the IT resources that are infected.

“Leveraging our extensive incident response experience and forensic investigation methodology with our expertise in testing networks for vulnerabilities has put us ahead of the curve finding and remediating networks infected with the nefarious malware,” said Bill Dean, director of computer forensics for Sword & Shield and a CyberSummit presenter.

The Data Breach Threat Analysis service:

• Identifies real time attacks being perpetrated against your network
• Identifies the origin (IP address and country of origin) of the attacks
• Determines the likely intent of the attacker
• Detects malware and viruses that may have already been introduced and remains undetected.
• Determines how a system breach occurred, what hosts have been infected and what information may have been stolen.
• Provides recommendations on how to remediate the affected systems and action plans to reduce the likelihood of a reoccurrence of the attack.

For more information about Data Breach Threat Analysis visit www.swordshield.com to view Dean’s video presentation and request a consultation to learn how the service can benefit you.