Internet Security Auditors - Surveillance Service Anti-Malware

Anti-Malware Service

For over a year new techniques or better tactics for the infection of user machines through Malware has been amassed and refined.

Some of these attacks are related to the tool which is now considered one of the most dangerous of the moment: MPack. But this is just one example that has been open season. Sites contaminated by worms attacks WebDav, RFI, etc are polluting sites exponentially.

The modus operandi of these cyber thieves is to infect web servers of trust, of companies of all sizes and types, to make it through these from which users troyanicen machines to get bank details, credit card details, passwords , etc.

There is no single reason why this type of attack or "contamination" unnoticed, even for owners of web pages:

The vulnerabilities exploited to gain access to the systems are automatically searchable.
The systems are not always updated and contain web applications easily exploitable security vulnerabilities.
The malicious code does not change the look of the website may be autocifrado and be unreadable.
The websites are reliable companies no longer the responsibility of the user.
Many times there is no control on the suppliers or other companies that update certain content, such as advertising.
Web pages change very quickly and so the integrity of file systems lose their usefulness in very bright environments where different companies make changes without timetables established.
Marketing departments, development, systems, etc. not report all changes in web environments, so there are changes that go unnoticed among departments.

Web applications have become the best place from which to attack users and steal your sensitive information with a single objective, economic.

As a result of constant investment in R & D, our platform provides a solution that no other has yet to be implemented, by far, a pioneer in the sector.

Our Anti-Malware Security Service has two complementary components: a preventive and a detective.

Preventive component

It can identify those vulnerabilities both systems as web applications. These vulnerabilities are being exploited by automated means, ie, can be detected in an automated way.

The characteristics of the preventive component are those:

Daily analysis, continuous or as the level of change or potential danger in critical environments.
Reports of vulnerabilities at the system level and application.
Differential reporting of changes in web resources.
Generates alerts in case of serious vulnerabilities identified.

Detective component

Let us start from a premise that we must assume the worst:

Suppose that our web sites have been violated.
Suppose you have inserted malicious code to Trojanized to users.

The Detective component tries to identify those resources that have been Trojanized web and are the source of the attack to the users of the application.

The characteristics of the Detective component are those:

Daily or continuous analysis in critical environments.
Identification of the activities of the malware on the user's computer.
Performance analysis of multimedia resources: videos, pdfs, images, flash, etc.
Independent technology development.
Notification of alerts in case of positive detection of malicious code.
Generation of reports of the pages or resources that have been Trojanized.
Multi OS platform (Windows XP, 2000, 2003, 2008, etc.).
Multi language platform (ENG, ES, CAT, etc.).
Multi VM platform (VMware, Xen, Qemu, etc.).