Incident Response Services

APPLICATION SECURITY Application Code Review Threat Modeling Security Development Lifecycle Integration Service Training Services
ADVISORY & RISK MANAGEMENT Advisory Services Risk Management Services
INFRASTRUCTURE AUDIT Vulnerability Testing Video & Telecommunications Testing Penetration Testing
TRAINING Infrastructure Security Secure Applications and Code Risk Management
INCIDENT RESPONSE SERVICES

CONTACT US	+
For more information about our services: SEND US AN EMAIL >> CALL TOLL FREE (866) 760-0222

REALITY

A hacker breaches the New York Times internal network and gains access to a database containing personal information, including home telephone numbers and social security numbers of more than 3000 contributors to the New York Times. While inside the network, the hacker sets up five fictitious user names and passwords using them to rack up $300k in charges on Lexis-Nexis.

INCIDENT RESPONSE SERVICES

IOActive’s approach to Incident Response is built on a strong foundation that stresses detection, assessment, containment, forensics, and recovery. IOActive’s services are designed to meet the needs of those organizations that have already incurred a security breech as well as those who wish to create a detailed plan for incident handling if and when it occurs. We leverage industry leading security best practices (including policies, guidelines, and processes) generally accepted evidence handling procedures, and tailor our services to fit your unique situation and concerns.

RAPID INCIDENT RESPONSE

IOActive’s Incident Response team supports companies in the wake of an identified or suspected system compromise, computer misuse or other security attack. Through the identification of the type and source of event, IOActive’s knowledgeable consultants will:

Identify method of attack, depth of penetration, length of compromise and when possible, identity of attacker

Identify which information is at risk or has been altered by intruders

Successfully execute ‘disaster recovery’ actions to enable business continuity

Assess and repair damage to the network

Support prosecution and conviction of suspected hackers through the use of industry standard forensic techniques and Department of Justice compliant methodology

Evaluate and advise on improvement of detection systems and incident response policies

Develop and institute incident response plans including reporting guidelines and incident definitions

Design and conduct incident ‘fire drills’ to assess and train IT staff

DENIAL OF SERVICE RESPONSE

A distributed denial of service attack is a deliberate attempt by a hacker to deny users access to a network resource either by flooding the network to prevent legitimate traffic, disrupting connections or preventing access to users or services. Denial of service attacks can take several different forms, but ultimately all have the potential to result in loss to your organizations. Because denial of service attacks are a special breed of security incident, IOActive is pleased to offer Denial of Service Response that helps our clients to restore access to network resources is quickly and efficiently support the prosecution of suspected perpetrators through the use of accepted forensics techniques.