Network Security

Advanced Persistent Threats (also referred to as targeted attacks) are attacks performed by specialized teams and governments using advanced technological solutions. The attacks are mostly aimed at obtaining classified information or planting malware for further surveillance.

Using modern technologies based on such solutions as cloud sandboxing , SIEM event correlation, or Next Generation IPS and DNS inquiry analysis system, it is possible to detect those covert threats and integrate a multi-level protection against targeted attacks.

SIEM (Security Information and Event Management) is a platform for management and correlation of information relating to security of IT systems and networks. SIEM platform monitors cyber security by gathering and analyzing system data and network traffic information. SIEM facilitates detection of suspicious events based on the correlation of logs and improves the security level of IT systems by fast detection of incidents and suspicious phenomena compromising the network and infrastructure security.

Domain Name System (DNS) constitutes a weak link in the face of DNS DDoS attacks, APT, or malware propagation. Besides, the system is vulnerable to data microleaks. DDSEC (DNS Security) is an extension that is aimed at improving the Domain Name System security. Thanks to data source authentication through asymmetrical cryptography methods and digital signatures, it is capable of securing the transmission and protecting the DNS system structure from being hijacked or modified. On the other hand, DNS inquiry analysis systems can interrupt traffic to low-reputation domains, protecting users from threats they involve, and prevent malware from activation if an infection has already occurred.

Vulnerability Scanning is the basis of penetration testing and cyclic security check of key IT infrastructure. Vulnerability Scanning allows you to determine the vulnerability of a particular machine to attacks, verifying the level of threat at the same time. Through Vulnerability Scanning of devices, you may find numerous bugs and possible attack vectors that could be taken advantage of by third parties. Vulnerability Scanning allows us to verify in a simple way the current state of the systems, detect new vulnerabilities, and secure them properly.

The Secure Web Gateway (SWG) platform allows protection against threats coming from the Internet. The protection is provided in real time in the Data Center of the supplier of the solution or on-premise in the Client’s server room. SWG provides web traffic filtering tools that detect various kinds of threats, as well as DLP functionalities. With multi-level protection and access control of web 2.0 services, detailed reporting, SSL and TLS traffic inspection, and website content filtering, Secure Web Gateway is a perfect added security against threats from public networks.

SSL- and IPSEC-based VPN networks are a perfect solution for securing confidential information transmitted via the Internet. If the structures of a company are geographically distributed or its employees and Clients are highly mobile, VPN networks are crucial to maintain the appropriate data security level.

IPSec Virtual Private Networks allow secure access to company resources and applications, as well as make it possible to join remote offices and departments. SSL Virtual Private Networks, also known as Clientless VPNs, constitute a secure transport protocol, which is often used for secure remote access from any device.

IPSec is a stable standard which offers very strong encryption and protects data integrity. Furthermore, it allows any number of connections through a VPN gateway (FTP, VoIP, HTTP, etc.).

We perform in-depth and comprehensive network security audits, which are fundamental when it comes to design and deployment of effective network security solutions. Regular monitoring ensures proper operation of the systems and devices designed to secure the infrastructure and networks of our Clients.

DDoS (Distributed Denial-of-Service) are distributed attacks that are aimed at blocking access to resources. Usually, the purpose of such attacks is to steal data and destroy networking structures or disable a particular service, and lead to reputational damage and financial loss. You can protect yourself from DDoS attacks only by using the cutting-edge, advanced security solutions. One of such solutions is DDoS Protection.

The DDoS Protection system ensures security of processes and information in the networking structures of an enterprise. The system monitors network traffic and instantly reacts to any anomalies detected, blocking any traffic coming from suspicious devices.

The entry point between a local network and the Internet still constitutes a safety threat for your enterprise network. The Internet continues to be one of the sources of attacks targeted at local networks and computer systems they contain. The Comprehensive Internet Edge Security relies on providing interoperable security systems, such as:

• Firewall constituting a security basis in each and every network infrastructure;
• UTM systems allowing traffic analysis at the user and application level;
• Dedicated Intrusion Prevention Systems (IPS) analyzing traffic at the higher network layers and blocking detected network intrusions;
• Data encryption tools allowing implementation of a secure VPN connection between several entities connected via the Internet;
• DNS traffic analysis systems allowing communication to non-secure domains to be blocked.