Cyber Security

Information Security Services

Cyber threat intelligence

Cyber Threat Intelligence (CTI) is to research and analyze trends and technical evolution of cyber crimes, hacking and cyber spying, especially when it comes to advanced persistent threats (APT). With in-depth study of a modern threat landscape, we can elaborate preventive measures in order to be proactive in today’s cyber battle. Our cybersecurity experience and insights into how cyber criminals actually prepare and perform their attacks helped us transform our proprietary investigation toolkit into the best cybercrime evidence collection and investigation practices.

The combination of our expertise, malware and data intelligence from a 100,000-profile database, as well as open sources, let us scrutinize any tricky situation and send proactive attack notifications to customers.

What we use

• Fast data correlation via machine learning algorithms
• Anti-phishing technology
• Automated extraction of malware codes
• Tools to reveal and extract compromised data
• Web fingerprinting
• Machine learning detection engines

Security assessment and pentests

According to statistics, Most of websites (86%) with mandatory sign-up have one severe vulnerability at least. It takes an average of 193 days to patch a vulnerability, but just one hour or even less to pilfer cash and data.

Our assessment gives a true picture of your business security. Our experts can see all system vulnerabilities ‘through hacker’s eyes’ and provide customers with relevant information security recommendations.

• Web vulnerability analysis
• Audit of trade secret and personal data protection solutions
• Network infrastructure vulnerability checks
• POS and mPOS security assessment
• Audit of online banking and mobile apps and platforms
• DoS/DDoS protection, stress testing
• Network assessment and optimization for mobile carriers

Pentests are part of a comprehensive security audit. Penetration Testing (Pentest) is a hacking simulation showing probable attack vectors and corporate security landscape from an attacker’s perspective.

Digital forensics

Our digital forensics and cyber investigations provide a sound evidence base for hacking victims to apply to the court and win the litigation.

NGN International digital forensics and malware analysis mean:

• Top-notch investigators and threat intelligence analytics
• Actionable digital evidence
• Full information about incidents
• Malicious code detection in customer’s network
• Strong court case

We will reconstruct incident and obtain digital evidence for a winning litigation. Let’s fight back!

Incident Response

Our intelligence-powered toolkit helps us gain insights into hacker’s actions and build a complete picture of the attack in order to recover business continuity.

Incidents covered:

• Mobile banking fraud and unauthorized access
• DoS/DDoS, malware and ransomware attacks
• Fraudulent websites, botnets, and suspicious activities
• Data loss and money theft

Incident Response in three steps 

1. Traffic monitoring for anomalies and suspicious behavior
2. Forensic workstation and server analysis to reveal attack vector
3. Malware analysis to find other assets exposed

Red Teaming

Red Teaming is a comprehensive, multipart attack simulation that shows whether corporate apps, networks, security controls and employees can combat a real-life hacking attempt. Red Team Assessment includes advanced tactics, techniques, and procedures (TTPs) from hackers' arsenals.

• Exploiting vulnerabilities in routers, switches and other appliances
• Social engineering techniques targeted at employees, contractors, and business partners
• Leveraging shortcomings in warehouses, data centers, buildings, etc.

What do customers get

• Senior management report
• Technical insights and security improvement recommendations
• Prompt vulnerability notifications

Comprehensive security audits

To gain a real insight into the customer’s current IT environment and its potential vulnerabilities, we propose a comprehensive security audit. It’s one of the three main types of security diagnostics (on a par with vulnerability assessments and penetration testing).

Security audits measure an information system performance against a list of criteria.

Comprehensive security audit covers

• Vulnerabilities
• Internal network configurations and operations
• People & policies (including password, remote access, encryption , mobile usage and file sharing policies)
• Physical security

Finally, all of these pieces will come together in the form of a cohesive written report with findings and recommendations for the next steps. Our customers use this report as a roadmap to get their IT environments shored up.

Development of information security concept, implementation strategy, policies, techniques, and regulations

Security implementation and assurance require a prudent plan to avoid wasting a lot of time and effort.

The information security vision and roadmap are the cornerstone documents that shape long-term security development and establish key security principles, goals, and objectives in a short-, mid-, and long-term perspective, thus helping customers to schedule milestones and establish relevant information security policies.

Our security team is committed to elaborating an effective roadmap to achieve all of the customer’s security objectives.

Awareness raising programs

According to the statistics, more than 80% of all cyber incidents are caused by human error. Although enterprises lose millions, while recovering from staff-related incidents, traditional training programs usually fail to achieve the desired behavioral changes and motivation.

NGN International experts have developed a range of unique master classes, as well as special-purpose courses and training sessions for various audiences, from specialized forensic experts to top managers.

Understanding what lies behind any learning and teaching process helps to build an effective educational program. Our programs not only deliver knowledge, but change habits and form the new behavior patterns that are the real goal of awareness training.

DMARC Email Authentication

 As a business owner, you want to make sure that your customers only see emails you’ve sent yourself. Emails are one of the easiest ways for cyber attackers to compromise the security of a company and its servers.

DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication system that protects your organization’s domains from spoofi­ng, phishing and other cyber-attacks. It builds on the widely deployed email veri­fication techniques: SPF (Sender Policy Framework) and DKIM (Domain Keys Identifi­ed Mail).

• Block unauthorized email 
• Monitor threats in real time
• Boost your brand image
• Improve your deliver ability 

Brand Protection

To promptly protect bank clients from Internet fraud, we offer Brand Protection, a brand abuse prevention service. It identifies attacks on your brand and detects phishing sites and mobile applications. When cooperating with a brand, the Brand Protection team detects and blocks 'look-alike' fraud domain. Social media communities illegally using a corporate brand are detected and closed as well.

• Joining forces 
• Detecting and assessing a resource 
• Blocking a malicious resource 
• Dealing with the aftermath