Prevx Incident Response

Audit, Analyze and Eradicate Threats in Your Network

Contact Us about Incident Response

Prevx Incident Response

Antivirus software should not be relied upon to protect against more than 70% of current threats targeted at organizations.

To provide the best level of protection for their networks and data, organizations must now consider performing regular scans with an alternative security product, in order to pinpoint infections that might otherwise go unnoticed by existing antivirus software for long periods of time.

Sophisticated malware, including Trojans and rootkits, are notoriously capable of bypassing most perimeter and endpoint defenses. These infections are very likely to have already infiltrated your network, allowing organized criminals to access internal systems and data with potentially devastating consequences.

Prevx Incident Response will quickly identify and eradicate threats that have bypassed your network defenses. Our proven internal audit and remediation service can check your systems quickly and easily. Using our Prevx 3.0 Enterprise software, within 24 hours we can complete a malware audit exercise for networks of up to 10,000 PCs or more. In most cases, serious infections, that were previously unknown to the organization, are found on up to 7% of internal systems. Prevx security experts will work with your IT and security staff to review all infections and provide guidance on how to capture, categorize and eradicate these infections, and also advise on how to prevent re-infection.

The Prevx software is fully compatible with other endpoint security applications. It installs in seconds and within 2 minutes will report back to the Prevx 3.0 Enterprise console with a complete map of not just the malware present on each endpoint, but all current applications.

Most organizations have little visibility of the applications and pervasive malware inside their business. However, Prevx specializes in detecting early life and industrial grade malware such as MBR rootkits and Zeus which are specifically designed to bypass traditional antivirus defenses. Prevx can REVIEW and RID even the largest organizations networks of these and any other infections within 24 hours.

Simple Deployment »

Quick and Simple Deployment

Step 1 - Scan and Review

Prevx can be safely deployed across even the largest networks in just a few hours. The software is fully compatible with other endpoint security applications. It installs in seconds and within minutes will report back to the Enterprise console a complete map of applications and malware present on each endpoint.

Step 2 - Analyze and Categorize

Within hours of deployment, Prevx will automatically categorize applications from the scan results. The results will be segmented and reported in three distinct categories:

  • White: Known Safe and Wanted
  • Grey: Likely Safe
  • Black: Known Malware and Unwanted

All Grey applications will be reviewed by the Prevx Incident Response Team to re-categorize as either white (benign, safe and wanted) or Black (malware and unwanted). Before the final categorization as Black is confirmed, a review is undertaken with the organization to avoid any false positives arising from in-house applications which may have triggered heuristic detections.

Step 3 - Automatic Remediation

Once the categorization is complete, all Black (malware and agreed unwanted) applications will be removed and infected machines fully remediated leaving only White applications.

Step 4 - Ongoing Threat Management

After the initial scan, review and remediation exercise, the Prevx 3.0 Enterprise software can be retained to provide ongoing insight into new and evolving threats and to monitor the emergence, propagation, and behaviour of applications in the enterprise.

View Case Study »

Case Study

A prospective Prevx partner had a significant malware outbreak which bypassed its existing antivirus software, infecting several hundred PCs on their internal network. As the infection spread, it placed significant load on the company's network, causing a Denial of Service, affecting thousands of users and threatening the entire operation. The incumbent antivirus software was unable to detect the issue, leaving the partner with major system and operational issues, with no visible resolution.

The Prevx Incident Response team was engaged by the company, and within 24 hours the team had detected, reviewed and remediated over 14,000 PCs, quickly restoring normal operation for the company. The Prevx Incident Response team identified pervasive infections on over 1,000 PCs including:

  • Zeus
  • Bancos
  • SDBot
  • Sinowal / MBR
  • Neprodoor
  • Zotob
  • Silentbanker
  • Pinch
  • Rogue AV
  • Multiple Adware

Contact Us

If you are interested in the Prevx Incident Response service, or require further details on our fraud prevention products and services, please contact us.

Contact Us