We are testing the resistance of corporate systems to cyber-attacks in real life
2/4/2020
We are testing the resistance of corporate systems to cyber-attacks in real life

We offers a service providing the testing of how the companies are resistant to ransomware attacks. This is the leading cyber security provider's response to the growing interest of the local businessmen and institutions in protection of their systems. This screening includes the current situation analysis together with a system resilience test, and a final report including recommendation of appropriate solutions.

We offer two packages:

The first one includes a high-level audit of architecture, processes and real-life verification whether the company infrastructure is resistant to ransomware or not.

The other one consists of a three-month anti-phishing programme focusing on checking the employees' response to suspicious e-mails and a recommendation of further actions regarding their education, including the possibility of direct training using the AEC Security Academy product.

Our Hacking Lab, a hub for our ethical hackers, which has been recently established as part of the Security Assessment Division at AEC, has been intensively involved in detecting the corporate systems vulnerabilities to ransomware attacks as part of the rendered services. Hacking Lab experts are determining the level of security of the most state-of-the-art technologies available on the market by hacking them on purpose and searching for all their weaknesses.

"Testing the resistance of a corporate system includes endpoint security analysis and network infrastructure security analysis, " outlined Lukáš Bláha, Head of Hacking Lab. "As a follow-up activity, we check their actual condition in real-life by sending malicious software samples to a selected isolated computer while observing at which level are the existing technologies capable to detect or even to stop the attack, and thus to protect the company from becoming infected."

Then comes a turn for checks using specialized tools from various security technology manufacturers, and finally, proposal of recommendations regarding what needs to be improved sorted according to the cost-benefit scores. Meaning a list of what should be done as quickly as possible in order to bring the maximum effect for the company at the given time.

"We are aware that especially in the smaller companies the pressure for cost-efficiency of the provided technologies and services is quite high. Therefore, every time and for each one of them, we prepare a solution that will increase their security immediately, with a maximum possible effect, and for an affordable price," said the head of Hacking Lab.

According to Lukáš Bláha, attackers are becoming more and more interested in the Czech Republic and Slovakia, as shown by the attacks on the banking sector and the public institutions at the end of 2019. Phishing attacks are becoming increasingly sophisticated, and recognizing a fraudulent e-mail is getting harder and harder. All this while the truth is that the most common way the malicious software enters the corporate system is through a fraudulent e-mail.

"Phishing attacks are counting on the fact that human factor is usually the weakest link in the entire security system. And that is why we are telling the companies why and how to educate their staff in order to be able to recognize fraudulent e-mails and respond to them correctly. An educated and watchful user is actually the most basic and efficient way to protect the company data," concludes Lukáš Bláha the interview.