회사소개

제품

안내

고객지원

Company

Product

Information

Support

Thông tin về công ty

Sản phẩm

Thông tin

Hỗ trợ chung

Notice

Title Date
National Univ. Hospital Introduced Anti-APT Solution by NPCore
  • Protect hospital’s network and endpoint from advanced cyberattacks
NPCore (CEO Seung-chul Han) announced that it provided the APT(Advanced Persistent Threat) attack response solution to the national university hospital to defend against recently increasing cyberattacks targeting hospitals and medical institutions. This year, there were a lot of cybersecurity incidents where the weaknesses of information security of domestic medical institutions were revealed. In April, medical institutions including famous university hospital were attacked by Deface, and earlier in January, Cryptojacking (malware for cryptocurrency mining) was carried to the hospital. Photo by rawpixel on Unsplash

Photo by rawpixel on Unsplash

On the other hand, APT attack and Ransomware solution 'ZombieZERO Inspector' delivered by NPCore to university hospital can cope with new and variant malware which is difficult to cope with vaccine and prevent damage due to intelligent attack. ZombieZERO Inspector configures the same sandbox environment as user PC environment to provide detection results after malicious behavior monitoring and analysis. It collects packets on the network and performs analysis of four stages of signature and behavior based analysis. It supports analysis of various document formats such as PE file (DLL, EXE), compressed file, MS-Office, HWP and PDF. It also analyzes the outbound and inbound URLs and IP access patterns to double detect and block C&C server and malware access. The malware detection rate can be further improved by additionally introducing ZombieZERO EDR(Endpoint Detection & Response), an endpoint APT attack defense solution. ZombieZERO products link and analyze network information with agent analysis information of endpoint. Last year, the National Hospital introduced 'ZombieZERO EDR for Server' to protect the server. It holds the execution of malware and detects it through a behavior-based engine in the sandbox, preventing infection in advance, and responding to encryption and latent malware attacks that bypass the network security system. Interworking with new Ministry of Education Cyber Security Center (ECSC) is one of the main reasons why NPCore's APT solution has been adopted. ZombieZERO Inspector is an integrated hardware that passes the ECSC "MTM / ETM Standard Interoperability Specification" test. "Through this project, we have blocked the influx of new malware into the university hospital system and established an active defense system that can detect and block zero-day attacks and existing security system bypass attacks in real time," said CEO of NPCore.
2018.12.21

NPCore Joined Vietnam·Malaysia Cyber Security Partnership Meeting

Author
admin
Date
2018-12-04 12:05
Views
259

NPCore Joined Vietnam·Malaysia Cyber Security Partnership Meeting


베트남 로드쇼2

 

NPCore met with Vietnamese and Malaysian companies in the information security business meeting held in Ho Chi Minh City, Vietnam and Kuala Lumpur, Malaysia from 19th to 23rd.


In recent years, Vietnam and Malaysia have been attracting a great deal of attention to information security issues both politically and socially.


In June, Vietnam established Law on cybersecurity which is the first domestic law in the cybersecurity field and is expected to be implemented from January 1, 2019. Malaysia is also experiencing a major social upheaval recently with the Ransomware accident of the media group. Media Prima, who was attacked in Ransomware in mid-November, was reportedly asked by an attacker for a bit coin of US $ 6.2 million. 

 

Meanwhile, NPCore said that it was able to receive a good response from local companies because it already has a proven records of providing its solution "Zombie ZERO" to Malaysian and Vietnamese government agencies. 

 

Zombie ZERO is an APT(Advanced Persistent Threat) and Ransomware solution that can proactively respond to new and variant malware that cannot be prevented by Anti-virus. By combining artificial intelligence(AI) technology, it determines threat level and responds to cyber threats based on 4 steps analysis - signature analysis, static analysis, dynamic analysis, reputation analysis. It also automates the process of detection and blocking by learning whitelist and blacklist pattern.

 

CEO Seung-Chul Han, "We have participated in the Southeast Asia Information Security Business Conference hosted by KISIA and KISA every year, and I feel that the interest in APT and Ransomware solution is getting higher as the awareness level of Southeast Asia information security is improved. We will link our partnership with local companies to export results in the first half of next year."