Introduction

The outbreak of WannaCry and Petya ransomware had shocked various industries globally including government departments, telecommunications, education and SMB. Over hundred thousand computers across 150 countries were compromised and economic loss reached more than USD 4 billion. If proactive countermeasures are not taken, enterprise may result in the loss of the highly sensitive data, damaged reputation and discontinued productivity.

Nikoyo Value

Nikoyo believes implementing necessary controls to provide data availability, integrity and confidentiality by multilayered defense systems can minimize the probability of successful penetration. To secure customers’ data, we aim to offer agile and reliable solution on preventive, detective, corrective and recovery technical controls, i.e. threat prevention, data management and protection, as well as rapid storage backup and recovery.

  • Threat Prevention

Traditional malware detection algorithms are straightforward and signature-oriented.  It may be difficult to screen out polymorphic malware. In addition, there are a large number of silos that Layer 4 firewall is unable to identify by monitoring the ports and protocols only.  To mitigate the cyber threat, effective technologies can be in place to block the network security breach.

Our industry-leading platform is able to correlate and analyse the network traffic to provide automated and intelligent protection to block the unknown threats or zero-day exploits.

  • Real-time Detection

Before the pop-up message notifying that the files have been encrypted and locked, ransomware takes time to encrypt the files. It is ineffective to monitor and search for anomalous behaviour against the data with manpower. What if we are able to offer a solution that detects massive file encryption and alerts users of the malware attack?

With our solutions in place, users can rest assured that any unusual activity will be detected and stopped before damage takes place.

  • Rapid Backup and Recovery

When WannaCry broadly spread in May 2017, specialist from the Hong Kong Computer Emergency Response Team Coordination Centre (HKCERT) advised users to take 3 steps to guard against malware: 1. Disconnect PC from the Internet; 2. Backup the files; 3. Update the OS.

For mission-critical production environments, it seems step 1 and 3 are difficult to be applied, but Rapid Backup and Recovery Solution is relatively easy. We offer effective best practice for backup as remediation. Our solution leveraging storage snapshot technology provides the lowest performance overhead, optimal RPO and RTO, as well as fast data recovery.