A broadcasting station decided to install 'EDR for Server', security product for server of NPCore.
Korean broadcasting station A, a comprehensive programming channel, decided to adopt ZombieZERO EDR for Server, a cyber security product for server of NPCore (CEO. Han, Seung Chul) on August 14.
In June, Korean hosting company's servers were attacked by 'Erebus' Ransomware, so the company paid for the biggest damage in Korea, 1.3 billion won, to restore the encrypted data, but some data of the damaged hosting servers is not restored.
'Erebus' Ransomware is a variant malware that combines APT (targeting malware) and Ransomware attacking server.
Due to the large-scale incident that Ransomware attacked the server, the Korean companies operating the server had sense of crisis and and felt keenly the necessity of countermeasures.
The Korean broadcasting station A was considering this countermeasure, and recently its server was attacked by Ransomware. Fortunately they reponded properly in the early stages, so the damage did not spread, but they rushed to take measures to protect their servers from Ransomware in earnest.
The broadcasting station A proposed PoC (Proof of Concept, Pre-test of performance) to some companies that can perform the required function (whitelist-based cyber security solutions for server). Finally, three companies(NPCore, A and C company) participated in the first and second PoC. The first PoC was held on July 13 and the second PoC was held on August 2.
As a result, the performance of the "ZombieZERO EDR for Server" product of NPCore was selected as the top priority negotiator by winning the highest score in the first and second PoC.
"ZombieZERO EDR for Server" is installed on the Windows Server and blocks the execution of new/variant malwares in real time through the whitelist-based execution holding function. And it analyzes/detects known and unknown malwares through the central analyzer (ZombieZERO Inspector) to make the system execute only secure file.
Image : System Block Diagram of “ZombieZERO EDR for Server”