회사소개

제품

안내

고객지원

Company

Product

Information

Support

Thông tin về công ty

Sản phẩm

Thông tin

Hỗ trợ chung

Notice

Title Date
CEO Interview: Mr.Han, Seung-chul (NPCore)
NPCore will start 2019 as a strategy to strengthen its recognition as an APT defense specialist and further expand its position in the EDR and SECaaS markets. In addition, the company plans to expand to the Southeast Asian market based on domestic reference, and acquire international CC certification to make a full-fledged entry into the US procurement market. The following is the contents of the question and answer with Mr. Han, Seung-chul. thumb-3416275915_yHLlfh8S_ED959CEC8AB9ECB2A0_EB8C80ED919C_28EC9794ED94BCECBD94EC96B429_600x406Q. What is the greatest achievement in 2018? -A: In Korea, we won some large-scale anti-APT system construction projects from public institutions. As a representative example, a public institution has built a new network, introducing NPCore's anti-APT solution to external network, e-mail, and PC. Additionally, NPCore provided this institution with the control tower that can centrally monitor and manage all these solutions.  The cornerstone in overseas business is that exports exceeded 1 million dollars. We expect to see a rise in overseas sales in 2019 further more. Q. What is the flagship solution in 2019? -A:  Our flagship solution is 'ZombieZERO EDR'. Existing signature-based security solutions, such as anti-virus, are unable to respond to new and variant malware and Ransomware such as WannaCry or Pettya. In addition, traditional sandboxing techniques are also vulnerable to attacks using virtual machine bypassing malware, variant Ransomware, and SSL. To overcome these limitations, EDR (Endpoint Detection & Response) technology is becoming more important. The IOC (Indicators of Compromise) method is a post-coping method that collects traces of malware that have already been infiltrated and analyzes the patterns in the analysis system. On the other hand, NPCore's EDR responds immediately to malware before infection via execution-holding function. It also minimizes the impact of existing systems on agent operation and does not use techniques such as hooking and dll injection which are highly likely to collide. In addition, for some foreign products, the virtual analysis environment has become standardized, on the other hand, NPCore's EDR configures a virtual environment with applications that is mainly used in the local area, so its detection rate is high. Q. What are the prospects for the security market in 2019? -A: As the APT and Ransomware damages increase year by year, we expect the security market to grow in 2019. In addition, the market has been expanding from the form of purchasing and using security products to the form of easy to use security services (SECaaS -Security as a Service). Q. What is your strategy for 2019? -A: In addition to strengthening awareness and positioning as an APT specialty brand, we have established a strategy to expand our target market to the EDR and SECaaS markets. In addition, the company plans to expand its brand awareness and local network in Southeast Asia market and to advance into the US procurement market after acquiring international CC certification based on the reference delivered to domestic leading organizations. Q. What do you want to tell public or corporate security practitioners? -A: I think that there are quite a lot of people who have the idea of "I do not think our organization will become a target" even though I encountered frequent hacking incidents. This 'lack of awareness of cybersecurity' becomes the biggest vulnerability, causing hackers to take an intelligent approach and repeat the vicious cycle of finding solutions after the damage. It is time to introduce a security system that can prevent intelligent continuous attacks in advance.NPCore has developed APT-compatible solutions with its own technology and has continuously updated its products and services over the last 10 years in response to security trend changes and customer needs. We will always do our best to provide solutions that customers feel comfortable every day, and solutions that can be relieved by unexpected cyber attacks. *Original Article(KR): https://www.dailysecu.com/?mod=news&act=articleView&idxno=44610
2019.01.25

NPCore participated in 'ISEC 2017' ... 'EDR for Server' was debuted and demonstrated

Author
admin
Date
2017-09-10 17:05
Views
1115

[Picture : NPCore participated in 'ISEC 2017' held in COEX from Sep. 5th ~ 6th to show 'ZombieZERO EDR for Server', new product for server security. NPCore's sales manager Lee, Gun-Woong was watching the demo video and explaining new products to VIPs composed of gov. officials.]

Recently in Korea, there was the biggest security incident that the servers of Korean hosting company were attacked by the variant Ransomware.
So the sense of crisis for Ransomware has raised and security measures and security awareness of gov. agencies and enterprises have been further strengthened.
As a result, NPCore(CEO Han, S.C.) first introduced its new server security product, 'ZombieZERO EDR for Server' at the '11th International Security Conference (ISEC 2017)' held on Sep. 5 ~ 6.The 11th annual ISEC is the largest cyber security conference event in Korea.

In this event, NPCore showed and demonstrated 'ZombieZERO EDR for Server', which is the Whitelist-based APT / Ransomware response solution installed on the server and is aimed at the security manager of gov. agencies and enterprise along with Nicstech, Secucen and CoreInfra.

NPCore is specialized in defense solution against unknown APT and Ransomware and provides two-level defense on network and endpoint based on behavior.

Existing security solutions (signature-based Anti-virus) cannot respond against APT (targeting malware) and new / variant Ransomware such as WannaCry and Petya, and traditional Sandbox technology is vulnerable to malware bypassing virtual machine, new and variant Ransomware and attack through encryption section (SSL communication).
To overcome these limitations, the importance of EDR (End Point Detection & Response) technology has been highlighted.

In line with this, NPCore released 3 security products for endpoints (▲ ZombieZERO EDR for APT- Endpoint Security against APT, ▲ ZombieZERO EDR for Ransomware- Endpoint Security against Ransomware, ▲ ZombieZERO SECaaS (Security as a Service)- Cloud type Security)
And NPCore recently released 'ZombieZERO EDR for Server' due to the biggest recent server's security incident and built it up in the OO Broadcasting Station.

ZombieZERO EDR for Server is installed on the Windows server and blocks the execution of new/variant malwares in real time through the whitelist-based execution holding function. And it analyzes/detects known and unknown malwares through the central analyzer (ZombieZERO Inspector) to make the system execute only secure file.

[Operation sequence of 'Zombie Zero EDR for Server']

1) Server access → Blocking execution of processes not registered on the whitelist.
2) EXE file analysis :  Malicious file is blacklisted and isolated. / Normal file is added to Whitelist.
3) If the analysis result proved to be normal, the file is executed normally and you can check it. / If malicious file, the EXE file is blocked by EDR.



[Picture: NPCore's director Kim, Mu-Jeong was giving a speech on 'APT and Ransomware Defense System centered on endpoint utilizing advantage of Sandbox' at conference room A of COEX on Sep. 5.]

On the first day of the conference, NPCore's director Kim, Mu-Jeong gave a speech on 'APT and Ransomware Defense System centered on endpoint utilizing advantage of Sandbox'.
Mr. Kim proposed the direction of Ransomware blocking technology and proceeded real time Q & A via Facebook.
After the speech, many people came to the exhibition booth and asked many additional questions.
WannaCry Ransomware blocking demo video and demonstration were also conducted at the booth and led the response.

NPCore, CEO Han, Seung-chul said, "Many people from various companies including gov. agencies, military, media companies, and SI companies consulted and asked for a follow-up visit and proposal. So we were able to confirm positive responses to EDR products and achieve business results more than expected."