CERT | Group-IB (original) (raw)
What is CERT?
arrow_drop_down
CERT-GIB is a round-the-clock emergency response team that performs threat monitoring, helps contain threats, and brings trusted incident responders, forensic analysts, and investigation experts on the scene if needed, thereby eliminating costly delays.
How can I subscribe to your services?
arrow_drop_down
We’re available round-the-clock to discuss your needs. You can write to us at [email protected] or call +65 3159-4398 to subscribe to our services. If you’re suspecting a breach or experiencing one, report an incident here.
How fast can you block phishing attempts, scams, or malware on a website?
arrow_drop_down
The average takedown time is less than 24 hours. However, in some domain zones, the value can be 8 hours or less.
I found malware on my website. Can you help?
arrow_drop_down
You can reach out to the CERT for recommendations on how to eliminate malicious code or to request an investigation into the nature and source of the hacking.
I received a complaint from you. What should I do to avoid this in the future?
arrow_drop_down
If you are an administrator or owner of a web resource and have received a complaint from us, then your website could have been hacked and could be used for malicious purposes.
Your first response should be to eliminate the consequences of the hack and to take measures to minimize the likelihood of the incident occurring in the future. Follow our recommendations on how to remedy the situation, which can be found in the same email.
Do you provide SLAs?
arrow_drop_down
SLAs depend on the type of services provided. As part of Managed Detection services, CERT-GIB offers round-the-clock monitoring and analysis of security events, regular notifications on important events through Managed XDR services in less than an hour, along with the monitoring of requests from clients.
As for the anti-phishing service, CERT-GIB ensures that the malicious resource is blocked in less than 24 hours, regardless of the location of the website.
What is the difference between CERT and SOC?
arrow_drop_down
Typically, SOC is an internal or outsourced team that monitors and responds to threats such as malware host infections and anomalies in the local networks. CERT-GIB, however, provides both internal threat monitoring (Managed Services) and response to threats outside the clients’ infrastructure (external threats), such as phishing resources, scam campaigns, leaks, and malware resources hosted on public servers.
The analysis of both types of threats allows CERT-GIB to act more efficiently than a traditional SOC.
How do international partnerships help CERT-GIB?
arrow_drop_down
Partnerships with international communities such as FIRST, Trusted Introducer, OIC-CERT, and APWG coalition, and cooperation with other CERT/CSIRT allow the exchange of best practices and methods for detecting and combating modern cyber threats. In view of the cross-border nature of cybercrime, we often turn to our partners for assistance in their territorial area of responsibility. Such interactions allow us to quickly obtain unique data and neutralize the cyber threat.
My company does not have a 24/7 monitoring department, how can you help?
arrow_drop_down
Our CERT-GIB provides round-the-clock monitoring, detection, and real-time response.
As part of our Managed XDR service, CERT-GIB will provide instant response to both known and unknown threats in your IT infrastructure, host isolation, forensic data collection, file quarantine, and much more.
We help organizations maximize their defense capabilities and reduce the burden of having to build/maintain their continuous cybersecurity monitoring team.
How do you use Threat Intelligence?
arrow_drop_down
Threat actors are becoming more sophisticated and adopting new TTPs, forcing security personnel to scramble, in order to keep up.
Working with advanced Cyber Threat Intelligence data enables CERT-GIB to pre-emptively detect and stop sophisticated attacks inside the customers’ infrastructure, promptly notify your team, and provide the most effective recommendations to mitigate them.