Secure Your Data. Protect Your Reputation.

Effective Cybersecurity requires a layered offensive defense at all points of attack. 24/7 real-time monitoring to identify threats and suspicious activity. Guaranteed backup and recovery that will get you operational to day before the attack.
350%
Cyberattacks Skyrocketed in 2018
“We have seen a 350% increase in ransomware attacks, a 250% increase in spoofing or business email compromise (BEC) attacks and a 70% increase in spear-phishing attacks in companies overall.”
71%
Why Worry About Cyber Attacks
60% of small companies that suffer a cyber attack are out of business within 6 months.
11.5$B
The growing cost of RANSOMWARE
Damage costs from ransomware will rise to $11.5 billion in 2019. It is estimated that ransomware will hit one business every 14 seconds over the next year.

CyberSecured

EDR

CyberSecured

Mobile

CyberSecured

365

CyberSecured

Network

CyberSecured

Backup

Attacks vectors and how will they effect yor business

There are only two types of companies: those that have been hacked, and those that will be. Even that is merging into one category: those that have been hacked and will be again.

  • Ransomeware
  • Spear Phishing
  • Email Spoofing
  • Malware

What Exactly Is Ransomware?

Ransomware is a malicious code. A ransomware infection scans through a device’s drives, targeting specific file extensions. When the scan is complete, the ransomware encrypts these files, locking the user out.

Encryption was originally introduced to secure data storage and transfers, so that only authorized people could access the information. Decrypting the protected information is only possible using the digital key that was used for encoding.

Because the ransomware encrypts the files with a key that only the hackers hold, the only chance to regain access to the infected computer is to pay the ransom.

How Are Users Getting Infected by Ransomware?

Ransomware can strike through phishing emails, outdated software, compromised websites, poisoned online advertising or free software downloads. Servers, desktops and all types of mobile devices are at risk of infection.

All it takes for ransomware to infect a company is one user making the mistake of opening a malicious attachment.

Ransomware will also use the local network to encrypt files located on network drives and spread to other computers. This is how a single infected user can bring a department or an entire organization to its knees.

What Exactly Is Spear Phishing

Spear-phishing is a targeted attempt to steal sensitive information such as account credentials or financial information from a specific victim, often for malicious reasons.

This is achieved by acquiring personal details on the victim such as their friends, hometown, employer, locations they frequent, and what they have recently bought online. The attackers then disguise themselves as a trustworthy friend or entity to acquire sensitive information, typically through email or other online messaging.

This is the most successful form of acquiring confidential information on the internet, accounting for 91% of attacks.

The act of spear-phishing may sound simple, but spear-phishing emails have improved within the past few years and are now extremely difficult to detect without prior knowledge on spear-phishing protection. Spear-phishing attackers target victims who put personal information on the internet.

They might view individual profiles while scanning a social networking site. From a profile, they will be able to find a person’s email address, friends list, geographic location, and any posts about new gadgets that were recently purchased.

With all of this information, the attacker would be able to act as a friend or a familiar entity and send a convincing but fraudulent message to their target.

What Exactly Is Email Spoofing

Email spoofing is the fabrication of an email header in the hopes of duping the recipient into thinking the email originated from someone or somewhere other than the intended source. Because core email protocols do not have a built-in method of authentication, it is commonplace for spam and phishing emails to use said spoofing to trick the recipient into trusting the origin of the message.

The ultimate goal of email spoofing is to get recipients to open, and possibly even respond to, a solicitation. Although the spoofed messages are usually just a nuisance requiring little action besides removal, the more malicious varieties can cause significant problems, and sometimes pose a real security threat.

Although most well-known for phishing purposes, there are actually several reasons for spoofing sender addresses. These reasons can include:

  • Hiding the sender’s true identity though if this is the only goal, it can be achieved more easily by registering anonymous mail addresses.
  • Avoiding spam blacklists. If a sender is spamming, they are bound to be blacklisted quickly. A simple solution to this problem is to switch email addresses.
  • Pretending to be someone the recipient knows, in order to, for example, ask for sensitive information or access to personal assets.
  • Pretending to be from a business the recipient has a relationship with, as means of getting ahold of bank login details or other personal data.
  • Tarnishing the image of the assumed sender, a character attack that places the so-called sender in a bad light.
  • Sending messages in someone’s name can also be used to commit identity theft, for example, by requesting information from the victims financial or healthcare accounts.

Types of Malware

Worm–  the distinctive trait of the worm is that it’s self-replicating. What makes an effective worm so devastating is its ability to spread without end-user action.

Trojan–  Trojans masquerade as legitimate programs, but they contain malicious instructions.The most popular Trojan type is the fake antivirus program, which pops up and claims you’re infected, then instructs you to run a program to clean your PC.

Fileless malware – which today comprises over 50 percent of all malware and growing, is malware that doesn’t directly use files or the file system. Instead they exploit and spread in memory only or using other “non-file” OS objects such as registry keys, APIs or scheduled tasks.

Effects of Malware

  • Stealing password and other sensitive information.
  • Performance issues and damages to computer hardware.
  • Phishing attacks.
  • Ransomware attacks.
cs-banners-edr_med

CyberSecured EDR

Endpoint Detection and Response

EDR is the first line of cybersecurity defense. No longer can our devices just have a simple set it and forgot it anti-virus installed. The increasingly advanced and automated cyber attacks require behavioral heuristics to identify protect against never-before-seen threats. Its necessary that all endpoints are activity monitored,  as the cyber attack vectors are constantly evolving.

It’s critical to ensure all endpoints have the latest security patch. CyberSecured EDR will intelligently manage all operating system updates keeping you up-to-date with what you need, and ignoring the unnecessary ones.

  • Multi-vector protection: Protects against threats across email, browsers, files, URLs, ads, apps, and more in real time.
  • Deep learning intelligence: Uses a layered approach to global threat intelligence to continually refine and enhance classification accuracy
  • No reimaging: Uses journaling and rollback features to restore files to their uninfected state, so you don't have to reimage
  • Zero-hour security: Uses advanced behavioral heuristics to identify and protect against never-before-seen threats
  • Enable policies by group, device, IP: Control internet usage for your users using pre-configured and custom policies by group, device or network
  • Reduce costs relating to infections: DNS Protection stops up to 90% of web-borne malware at the domain layer, so it never reaches your network.
  • All monitoring, updates, removal/remediation, and then reporting.
  • Computer maintenance agent so managed updates and computer housekeep tasks.

CyberSecured Mobile

Establishing mobile security for business is an increasingly tricky task. Device portability makes them targets for physical theft, and malicious apps continue to proliferate as a delivery method for malware designed to steal login credentials and other valuable data. As more and more employees bring their own devices to work, maintaining control over mobile device security is more important, and challenging, than ever.

CyberSecured Mobile Protection automatically scans apps and files for malware, scans URLs to block fraudulent websites, and detects phishing sites in real time, drastically reducing the opportunity for the types of user error that are typically behind business security breaches.

cs-banners-mobile2
  • Stop malicious apps: Block mobile threats before they infect your business' phones or tablets. Even reports reputation of downloaded apps
  • Always up to date: Keep users safe from new threats in real time, all the time, with Webroot's cloud data centers.
  • Secure web browsing: Protect employee identities and corporate information from malicious sites and downloads.
  • Lost device protection : Locate and lock lost or stolen devices and block unwanted callers and SMS.
  • High performance: Save bandwidth and battery life. Small device footprint and ultra-fast scans mean minimal power consumption.
  • Reduce costs relating to infections: DNS Protection stops up to 90% of web-borne malware at the domain layer, so it never reaches your network.
cs-banners-365

CyberSecured 365

CyberSecured 365 is an security management solution for Office 365 that offers threat protection, monitoring, alerts and reporting to small and medium-sized businesses. You get best practice security settings, account protection and better monitoring services.

24/7 monitoring and alerts identify threats, so we can prevent and respond to potential future issues.

Automated threat protection to prevent malicious activity from hackers and insiders with industry best practice security settings.

Built-in reporting gives us insights and more visibility into how your employees are using Office 365.

Easy-to-read activity dashboards and automated reports.

 

What We Monitor

  • Any change to security policies
  • Sign-in from unusual locations, unknown devices or IP
  • Suspicious mailbox activities
  • Administrator abuse
  • Emails sent to external sources
  • Any deleted accounts from hackers
  • Public sharing of company data
  • Management impersonation via email by hackers
  • Newly created accounts by hackers
  • The creation of SharePoint sites

What We Handle

  • Audit Logs Always On
  • Mailbox Audit Logs Always On
  • Multi-factor authentication
  • Spam notifications
  • Block harmful email attachments
  • Prevent users from making their personal info public through their calendar
  • Block mass exfiltration of company email to an external destination Alert you if users are spamming
  • Alert you if users are spamming
  • Improve users’ password habits

Real-Time Reporting

  • Built-in reporting gives us insights and more visibility into how your employees are using Office 365
  • Easy-to-read activity dashboards and automated reports

CyberSecured Network

CyberSecured Network security service protects your network against external attacks and stops unauthorized access to protect against worms, trojans, and other malicious data from taking down your network. All firmware updates, changes, and monitoring is covered.

You can connect multiple office with site-to-site VPN connections or give remote user secure access into the office network.

cs-banners-network
  • Combines reliable security features with high‑performance routing technology.
  • Create virtual network segments for security and network traffic management.
  • A site-to-site VPN secures and encrypts private data communications traveling over the Internet.
  • Easy customization options for Guest Portals include authentication, Hotspot setup, and the ability to use your own external portal server.
  • Managed Firewall service ensures the highest level of security by tracking and controlling the flow of data coming into your network using packet inspection of the traffic stream.
cs-banners-backup

CyberSecured Backup

Active Ransomware protection & Disaster Recovery

CyberSecured Backup will help organizations fulfill the 3-2-1 rule by providing off-site storage. The Active Protection feature monitors your system and prevents ransomware behavior. Active Protection builds a whitelist of valid processes running on your computer, including those that are legitimate encryption tools, plus Online Backup processes. It also prevents any program from accessing backed up files wherever they are.

When ransomware hits, the malicious program starts encrypting files. Because Active Protection automatically detects the activity of a process that is not on the whitelist, it will stop it. Active Protection will then restore any file that was already encrypted by the ransomware from a valid backup. This is done in real time and goes almost unnoticed by the user. Compared to the time spent on rebuilding a computer and restoring its system and data files, Active Protection is bliss!

  • Active Protection to backup all devices: Smartphones, tablets, desktops, laptops, and servers.
  • Backup anything from emails, files, databases, to full computer images.
  • Backup anytime to anywhere: Continuous or scheduled backup, to local storage or to the cloud, and restore as needed
  • All restores and recoveries are included.
  • Canadian Tier 3+ datacenters are SOC2 Type II-compliant which means backups are secure.
  • Data in transit and at rest is encrypted using HTTPS and the AES algorithm with a 256-bit key.