Program



    
Track A Time : 2023.9.20 13:40 ~ 14:20
The specificity of hacking attacks based on document files and case studies of threats - Responding and protecting threats based on document files by Zero-Trust CDR mail share facebook share twitter share linkedin share band share kakao

SecuLetter Co,. Ltd.
Lim, Cha Sung CEO

The cyber-attack methods are changing to use non-PE files (Document files), not to use PE files. Also, it is automated to create fishing websites and malicious e-mails, malicious documents by the generative AI and more sophisticated attacks based on social engineering methods are increasing. If malicious codes get into the inner infrastructure of an organization, it is difficult to detect them by the existing signature-based and behavior-based security technologies. So, we need security technologies that can accurately to detect and respond to the advanced intelligent security threats. SecuLetter will suggest the next generation security platform to integrate with the automated reverse engineering technology and the document disarm & reconstruction technology and will introduce the data service for threat analysis with the anti-hacking methods and the know-how of analyses by malicious code analysts.



SecuLetter Co,. Ltd. Booth no : A03

MARS PLATFORM

[SecuLetter MARS Platform]
The Malware Analysis Reverse Engineering System (MARS) platform is a core diagnostic technology that overcomes the blind spots of existing signature-based and behavior-based APT security solutions. SecuLetters core technology can be divided into three main areas as follows
- Threat Analysis: This is a technology that analyzes content identification and structure, and has accumulated experience and know-how in self-diagnosis/analysis and application know-how such as signature lookup and executable (PE) file diagnosis.
- Content Disarm & Reconstruction (CDR): This is a technology that identifies/analyzes, removes, and reconstructs active content to implement Zero Trust.
- Debugger Analysis: Automated reverse engineering techniques to detect and diagnose vulnerabilities in content. It is a simple but core technology that automates the skills of analysts.
SecuLetter products on the MARS platform accurately and quickly respond to proactive security threats wherever content or non-executable files are collected, stored, and used.

[Email Security]
MARS SLE (SecuLetter Email Security) is an email security solution that detects and blocks security threats coming in via email. It is specialized for security threats in the form of non-executable files that come into the email attachements or email body, and detects and defends even unknown attacks in advance.
SecuLetter Email Security Service, MARS SLES (SecuLetter Cloud Email Service) is a subscription-based service that provides email security solutions to protect cloud email platform. It can be integrated with commercial email solutions and cloud email services, so it can be quickly deployed and implemented.
SecuLetters recently launched Microsoft 365 email security service, DISARM Content Security for Email, is a SaaS service available to all enterprise users of the cloud-based Microsoft 365 exchange. You can select and purchase Korean or English version of the service through Microsofts official AppSource page, and the first month of service use is provided as a free trial. There are three plans in total: Basic, Standard, and Advanced, and if you use Advanced, you can use the CDR function in addition to the email security service.

[File Security]
MARS SLF (SecuLetter File Security), a file security solution, proactively detects and blocks content-based security threats and malware that infiltrate unsuspecting non-executable document files in any file-sharing environment. It is optimized for security in network-separated environments, network interconnections, document centralization solutions, or file upload areas (e.g., Web bulletin boards).

[Content Disarm and Reconstruction]
MARS SLCDR (SecuLetter CDR), a content sanitization solution, is a next-generation CDR technology developed independently by combining existing CDR technology and reverse engineering malware analysis technology. Provided as an add-on to MARS SLF, it identifies active content such as URLs, macros, JavaScript and shellcode in documents, removes executable elements and reassembles the files into a clean new documents to block potential attacks.


Tel : 0316088860


Email : julie.sohn@seculetter.com


Homepage : https://www.seculetter.com/


News


Download