Executive Guardian
Your organization’s leadership is 12 times more likely to be the target of a security incident and nine times more likely to be the target of a data breach than they were last year. Find out how they can be protected.
Read the Datasheet
Gift Cardsharks: The Massive Threat Campaigns Circling Beneath the Surface
Learn about the attack group primarily targeting gift card retailers and the monetization techniques they use.
Get the Report
Threat Hunting Workshop Series
Join one of our security threat hunting workshops to get hands-on experience investigating and remediating threats.
Attend an Upcoming Workshop
Inside Magecart: New RiskIQ & Flashpoint Research Report
Learn about the groups and criminal underworld behind the front-page breaches.
Threat Hunting Guide: 3 Must-Haves for the Effective Modern Threat Hunter
The threat hunting landscape is constantly evolving. Learn the techniques, tactics, and tools needed to become a highly-effective threat hunter.
Resources
August 5, 2014
Platform Automates Global Discovery, Assessment and Intelligence Gathering to Remediate Malware Planted in Company’s Websites and Mobile Apps
LAS VEGAS — Aug 5, 2014 — RiskIQ, the company that reveals enterprise risks outside the firewall, today announced an automated platform with global reach that enables organizations to discover, scan for malware and gather threat intelligence on all websites and mobile apps that are legitimately or illegally associated with their business. The technology provides companies with actionable intelligence needed to prevent criminals from exploiting their brands to plant attacks that target unsuspecting users. RiskIQ will demonstrate its platform this week at Black Hat USA booth 122.
CLICK TO TWEET: .@RiskIQ provides X-Ray visibility into web and mobile #securitythreats http://bit.ly/UA5rqE
“The current incident prevention/response approach for information security lacks the ability to see threats that target users of a company’s websites and mobile apps. What’s needed instead is an ‘Advanced Detection’ model that can automate the monitoring and discovery of risks outside the firewall,” said Jon Oltsik, Senior Principal Analyst at ESG. “The RiskIQ technology supports Advanced Detection by enabling organizations to automate the continuous discovery and scanning of web and mobile app properties associated with their brand. By doing so, they can detect threats that put their customers at risk. In this way, RiskIQ can help address fraud and other types of attacks that are carried out by compromising a company’s online assets.”
In a recent assessment of the more than 27,000 websites associated with the top five healthcare companies in the US, the RiskIQ service discovered that 16 percent had broken SSL certificates and 77 percent contained pages that were either inactive, redirecting traffic or broken. This snapshot illustrates the scale of the problem that large companies face in trying to keep track of their legitimate web properties, police them for malware and identify sites that may be impersonating their brand.
The RiskIQ platform deploys a worldwide network of software-based virtual users to automatically discover and inventory websites, online ads and mobile apps that are legitimately or fraudulently linked to a company or any of its brands. RiskIQ’s continuous discovery capabilities can identify all instances associated with a company on the internet including those on third party sites, in embedded and referring URLs, and across 90 different app stores.
For each discovered asset, RiskIQ automatically captures full session and document object data (DOM) to create a dynamic inventory of its attributes (registration date, owner, geography, etc.). This global visibility enables organizations to conclusively know and manage their web and mobile foot print.
To pinpoint a company’s web and mobile assets that are posing a risk to its customers, RiskIQ’s virtual user software interacts with web pages, launches mobile apps and follows embedded URLs the way a human user would. This technology disarms evasion techniques used by malware to hide from traditional web crawlers and mobile app scanning agents. RiskIQ automatically and continuously assesses/classifies each web page for the presence of malware, malicious advertisements, capturing of personally identifiable information, etc. It also discovers copycat, malicious and data stealing mobile apps.
“For most companies, maintaining an inventory and policing their websites and mobile apps for malware and brand infringement is manually impossible. Nevertheless, they’re still responsible for detecting and taking down threats that place users at risk,” said Elias Manousos, CEO of RiskIQ. “We enable companies to immediately regain visibility and control over their web and mobile resources, including those that are usurping their brand, to keep them free of malware and other threats.”
To help enterprises manage, audit and uncover threat patterns across their web and mobile assets, RiskIQ provides an intelligence and analytics dashboard populated with three years of current and historical threat data. It enables users to run Big Data queries across their web and mobile assets for expired SSL certificates, third party scripts and cookies, instances of malware, typo squatting, exploit kits and more. RiskIQ can be used to discover co-occurrences, such as the presence of a specific malware across all assets, and to perform compliance assessments.
The RiskIQ platform for Web and Mobile is available immediately from RiskIQ and its business partners. Pricing is based on volume and frequency of examined assets.
