Index Engines has announced a new dashboard for its CyberSense security analytics product, which provides intuitive, easy-to-understand post-attack forensic reports that deliver powerful insights into data corruption due to a ransomware attack.
CyberSense detects signs of the most sophisticated attack vectors by scanning backup and snapshot data utilising over 200 content-based analytics and machine learning to identify corruption and the last good version of files and databases, empowering intelligent and rapid recovery to minimise downtime.
“Ransomware attacks are becoming more sophisticated and more challenging to recover from,” Index Engines vice president Jim McGann explained. “In the ongoing battle against cyber criminals, organisations need to arm themselves with the most powerful and insightful capabilities on the market today.
“This is why CyberSense stands alone in delivering full content analytics which will uncover even the most advanced data corruption along with a new powerful and intuitive post-attack dashboard, which will allow customers to quickly recover from disruption and minimise business downtime.”
CyberSense boasts hundreds of users worldwide and detects signs of ransomware with 99.5% accuracy, based on testing of over 20 million clean and infected backup sets. While the accuracy was unparalleled, the previous interface could be too complex for users in crisis mode. The new CyberSense interface simplifies the user experience, providing detailed insight into the who, what, where, and when of an attack.
Should signs of an attack be identified, analytics are provided to assist cybersecurity specialists in the recovery process, including providing:
• High-level detail on why the machine learning generated an alert and the scope of the attack.
• Pre-programmed and customisable reports needed to investigate the attack in a single dashboard including:
• Who was impacted; what servers.
• How much damage was done.
• Listing corrupted files and the last good version.
• Ability to analyse the corrupted files to determine user account and executable used to corrupt data.
• When the corruption occurred and what backups should be recovered.
• Exportable analytics needed to scope and analyse attacks independently to streamline the recovery process.
This new interface will be available to CyberSense customers in the 3rd quarter of 2022, with the first release focused on post-attack recovery.
© Technews Publishing (Pty) Ltd. | All Rights Reserved.